1

Security Risk Assessment Jobs in Chicago, IL (NOW HIRING)

IG Compliance & Security Analyst Cooley is seeking an IG Compliance & Security Analyst to join the ... Conduct formal risk assessment reviews to determine the critical points of business exposure

Senior Physical Security Manager

Chicago, IL ยท On-site +1

$160K - $180K/yr

Hardening & Risk Assessment: Conduct comprehensive Physical Security Risk Assessments (PSRA) for all sites. Identify vulnerabilities and implement physical hardening measures (ballistic glass ...

Senior Physical Security Manager

Chicago, IL ยท On-site

$160K - $180K/yr

Hardening & Risk Assessment: Conduct comprehensive Physical Security Risk Assessments (PSRA) for all sites. Identify vulnerabilities and implement physical hardening measures (ballistic glass ...

Security Coordinator

Hodgkins, IL ยท On-site

$61K - $74K/yr

Conduct regular security audits and risk assessments to identify vulnerabilities and security gaps at the facility. * Identify, evaluate, and document security risks to the organization and develop ...

IT Risk and Compliance Analyst

Chicago, IL ยท On-site

$90K - $115K/yr

The IT Risk and Compliance Analyst position is a highly visible, client facing role which works ... This role will work with the clients in response to security assessments and due diligence ...

Conduct comprehensive risk assessments of third-party vendors, including evaluating their security practices, financial stability, and compliance with regulatory requirements. * Maintain a vendor ...

Develop and implement an enterprise security risk management (ESRM) framework aligned with business priorities, including ongoing assessment of threats, vulnerabilities, and geopolitical risks.

Develop and implement an enterprise security risk management (ESRM) framework aligned with business priorities, including ongoing assessment of threats, vulnerabilities, and geopolitical risks.

Develop and implement an enterprise security risk management (ESRM) framework aligned with business priorities, including ongoing assessment of threats, vulnerabilities, and geopolitical risks.

next page

Showing results 1-20

Security Risk Assessment information

See Chicago, IL salary details

$10

$51

$72

How much do security risk assessment jobs pay per hour?

As of Jul 4, 2026, the average hourly pay for security risk assessment in Chicago, IL is $51.93, according to ZipRecruiter salary data. Most workers in this role earn between $42.12 and $61.92 per hour, depending on experience, location, and employer.

What is a Security Risk Assessment job?

A Security Risk Assessment job involves identifying, analyzing, and mitigating potential security threats to an organization's systems, data, and operations. Professionals in this role evaluate vulnerabilities, assess risks, and recommend security controls to protect against cyber threats, fraud, and compliance issues. They work with IT teams, management, and stakeholders to ensure security measures align with business objectives and regulatory requirements. This job often requires knowledge of cybersecurity frameworks, risk management methodologies, and relevant industry standards.

What are the key skills and qualifications needed to thrive in the Security Risk Assessment position, and why are they important?

To thrive in Security Risk Assessment, a strong background in risk analysis, information security principles, and regulatory compliance is essential, often supported by a degree in cybersecurity or related fields. Familiarity with risk assessment tools, frameworks like NIST or ISO 27001, and certifications such as CISSP or CISA are highly valued. Exceptional attention to detail, analytical thinking, and effective communication skills set top professionals apart in this role. These competencies enable accurate identification of potential security threats and development of strategic mitigation plans, which are crucial for safeguarding organizational assets.

What are some common challenges faced in a Security Risk Assessment role?

Professionals in Security Risk Assessment often face the challenge of keeping up with constantly evolving cyber threats and adapting assessment methodologies accordingly. Balancing thorough analysis with the need to provide timely recommendations can be demanding, especially when collaborating with multiple departments or stakeholders. Additionally, communicating complex risk findings to non-technical audiences requires both clarity and diplomacy. Overcoming these challenges is critical for delivering actionable insights that drive effective security decision-making and protect organizational assets.

What are the most commonly searched types of Security Risk Assessment jobs in Chicago, IL? The most popular types of Security Risk Assessment jobs in Chicago, IL are:
What are popular job titles related to Security Risk Assessment jobs in Chicago, IL? For Security Risk Assessment jobs in Chicago, IL, the most frequently searched job titles are:
What job categories do people searching Security Risk Assessment jobs in Chicago, IL look for? The top searched job categories for Security Risk Assessment jobs in Chicago, IL are:
IG Compliance & Security Analyst

IG Compliance & Security Analyst

Cooley LLP

Chicago, IL โ€ข On-site

Full-time

Medical, Dental, Vision, Life, PTO

Posted 6 days ago


Job description

IG Compliance & Security Analyst

Cooley is seeking an IG Compliance & Security Analyst to join the Information Governance & Data Privacy team.


Position summary: The Information Governance (IG) Compliance & Security Analyst executes day-to-day compliance and security activities, including performing vendor and internal security assessments, supporting audits, and responding to client security requests. This role tracks risks, monitors adherence to policies and frameworks (e.g., ISO 27001, NIST), and works to document evidence, manage findings, and support remediation efforts. The analyst partners with business teams to address compliance requirements, maintain audit readiness, and apply best practices to reduce risk.


Cooley (IG) embraces a culture of customer service excellence and all members of the department are expected to move this agenda forward. To that end, the IG Compliance & Security Analyst is expected to recognize that the Cooley IG Department is a service organization first and foremost and will be evaluated on this requirement equal in importance to the technical or operational responsibilities outlined later in this document. Specific duties and responsibilities include, but are not limited to, the following:


Position responsibilities:

  • Perform vendor security assessments and audits to prove up vendor's compliance with firm security policies and procedures in connection with vendor contracts, or internal inquiries
  • Respond to clients' security assessment requests and audits to demonstrate firm's security compliance
  • Participate in the management of the firm's ISO 27001 certification by engaging with auditors, collecting and presenting evidence, understanding the relevant firm policies, and working in the GRC platform
  • Conduct both internal and external audits to ensure compliance with all industry-mandated regulations
  • Work on compliance initiatives to ensure operational effectiveness with applicable laws and regulations, as well as internal policies and procedures
  • Monitor activities of assigned IS areas to ensure compliance with internal policies and standards
  • Participate in the development and implementation of new business initiatives to ensure functionality required to support compliance
  • Provide guidance to business functions on compliance/security-related matters
  • Coordinate audit-related tasks to ensure the readiness of managers and their teams for audit testing and facilitate the timely resolution of any audit findings
  • Conduct/support periodic risk assessments and develop appropriate mitigation plans in support of deliverables
  • Conduct formal risk assessment reviews to determine the critical points of business exposure
  • Evaluate and recommend commercial governance, risk and compliance vendors and tools
  • Participate in the maintenance of the firm's governance, risk and compliance platforms..
  • Develop and maintain metrics that assess the firm's governance, risk and compliance initiatives
  • Assess and track the firm's compliance to existing and future global regulations in privacy and security
  • Assess and track the firm's compliance with standard security frameworks such as ISO and NIST
  • Assist in the identification of risks, threats and vulnerabilities to firm
  • Track risks and mitigation efforts
  • Continued education in governance, risk and compliance forums and organizations to learn new ideas to solve problems
  • Collaborate with team in evaluating effectiveness of the internal security control framework and recommend adjustments as business needs change
  • Perform periodic security risk assessments and advise business stakeholders on best practices to reduce risk and overall breach profile
  • Adhere to department's internal workflow processes
  • All other duties as assigned or required


Skills and experience:

Required:

  • After orientation at Cooley LLP, exhibit proficiency in the Microsoft Office suite, iManage and other firm applications
  • Ability to work extended and/or weekend hours, as required
  • Ability to travel, as required
  • 3+ years' experience in governance, risk and compliance (GRC) processes, solutions, information security and auditing; Eligible for consideration of Senior designation with 5+ years' directly applicable work experience, along with the proven ability to operate at an elevated level
  • CISSP or equivalent certifications and/or experience
  • Demonstrated ability to apply technology-related knowledge and experience in solving compliance issues
  • Background in security controls, auditing, network and system security
  • Proven practical experience in information security and well-rounded knowledge of technology
  • Experience with managing and implementing ISO 27001 or NIST compliance practices
  • Demonstrated experience evaluating the security posture of vendors and system architecture
  • Prior experience implementing and running incident management programs and systems
  • Prior experience in reviewing vendor agreements for security issues and providing recommendations
  • Project management experience

Preferred:

  • Bachelor's degree in Information Technology or Computer Information Systems
  • Prior law firm experience
  • Desired certifications: PCIP, ISA/QSA, CISSP, CISA, CISM, and related GIAC
  • Experience acting in an independent audit function
  • Experience implementing GDPR, HIPAA, SOC 2 audits
  • Experience with Smarsh, Logicgate, Bitsight, Ironclad
  • Proven experience in vendor contract administration.
  • Additional security certifications

Competencies:

  • Exceptional customer service skills
  • Ability to express technical concepts in business terms
  • Able to work well under deadlines in a changing environment and complete multiple projects effectively and concurrently
  • Motivated team player with a commitment to contribute meaningfully to the team's objectives, and ambition to improve skillset
  • Excellent analytical, problem-solving and project management skills
  • Excellent oral and written communication skills, including technical and user documentation
  • Excellent active listening skills
  • Ability to balance security best practices with business objectives
  • Proven track record of excellent decision-making, integrity and working with members of technology management, business users and employees
  • Detail orientated and strong organizational skills
  • Ability to work independently and under high pressure with tight schedules and deadlines
  • Ability to interact well with all levels of business professionals
  • Capable of grasping new concepts quickly and without prior experience
  • Ability to interact and coordinate with several teams to achieve objectives
  • Ability to solve problems independently and simultaneously, effectively managing multiple tasks
  • Professional demeanor at all times

Cooley offers a competitive compensation and excellent benefits package and is committed to fair and equitable employment practices.


EOE.


The expected annual pay range for this position with a full-time schedule is $88,000 - $124,000. Please note that final offer amount will be dependent on geographic location, applicable experience and skillset of the candidate. Senior level candidates may be considered for this position and would be eligible for a higher salary range based on experience.


We offer a full range of elective benefits including medical, health savings account (with applicable medical plan), dental, vision, health and/or dependent care flexible spending accounts, pre-tax commuter benefits, life insurance, AD&D, long-term care coverage, backup care for children and/or adults and other parental support benefits. In addition to elective benefit options, benefited employees receive firm-paid life insurance, AD&D, LTD, short term medical benefits as well as 21 days of Paid Time Off ("PTO") and 10 paid holidays each year. We provide generous parental leave and fertility benefits. New employees will attend a detailed benefit orientation to learn more about our many benefits and resources.