1

Security Risk Consultant Jobs in California (NOW HIRING)

Today, our expertise extends broadly across closely related security and risk-based fields - from accessibility consulting and risk analysis to process safety, forensic investigations, security risk ...

Fire Protection Consultant

San Diego, CA · On-site

$86K - $129K/yr

Today, our expertise extends broadly across closely related security and risk-based fields - from accessibility consulting and risk analysis to process safety, forensic investigations, security risk ...

Intern

Concord, CA · On-site

$16.50 - $22/hr

Today, our expertise extends broadly across closely related security and risk-based fields - from accessibility consulting and risk analysis to process safety, forensic investigations, security risk ...

Today, our expertise extends broadly across closely related security and risk-based fields - from accessibility consulting and risk analysis to process safety, forensic investigations, security risk ...

... consultants, and contract service providers to ensure operational effectiveness and fiscal responsibility. * Prepare and deliver executive-level reports, security metrics, risk assessments, and ...

... consultants, and contract service providers to ensure operational effectiveness and fiscal responsibility. * Prepare and deliver executive-level reports, security metrics, risk assessments, and ...

next page

Showing results 1-20

Security Risk Consultant information

See California salary details

$9

$50

$107

How much do security risk consultant jobs pay per hour?

As of Jul 4, 2026, the average hourly pay for security risk consultant in California is $50.24, according to ZipRecruiter salary data. Most workers in this role earn between $24.42 and $62.88 per hour, depending on experience, location, and employer.

How much does a risk consultant earn?

A security risk consultant's average salary varies by experience and location but typically ranges from $70,000 to $120,000 annually. Entry-level positions may start lower, while experienced professionals with certifications like CISSP or CISM can earn higher salaries, especially in high-demand industries or regions.

What are the key skills and qualifications needed to thrive as a Security Risk Consultant, and why are they important?

To thrive as a Security Risk Consultant, you need expertise in risk assessment, security frameworks, regulatory compliance, and a relevant degree such as in cybersecurity or information security. Familiarity with tools like risk management software, vulnerability assessment platforms, and recognized certifications such as CISSP or CISM is typically required. Strong analytical thinking, communication skills, and the ability to influence stakeholders set top consultants apart. These skills ensure the accurate identification and mitigation of security risks, safeguarding organizational assets and compliance with industry standards.

Can you make $500,000 a year in cyber security?

Security Risk Consultants and other cybersecurity professionals can potentially earn $500,000 or more annually, especially with senior roles, extensive experience, specialized skills, and certifications like CISSP or CISA. High earnings are often associated with leadership positions, consulting, or working in high-demand industries, but such salaries are not typical for entry-level roles. Achieving this level usually requires years of experience, advanced expertise, and a strong professional network.

How does a Security Risk Consultant typically collaborate with clients and internal teams during a risk assessment project?

Security Risk Consultants work closely with clients to understand their unique risk landscape, often conducting interviews and site visits to gather information. They collaborate with internal teams such as cybersecurity analysts, compliance experts, and IT staff to analyze data and develop comprehensive risk mitigation strategies. Throughout the project, consultants maintain open communication with stakeholders, presenting findings, making recommendations, and ensuring that solutions align with the client's business objectives and regulatory requirements. This collaborative approach helps build trust and ensures the delivery of actionable, tailored security solutions.

What does a Security Risk Consultant do?

A Security Risk Consultant assesses potential threats and vulnerabilities within an organization’s physical or digital infrastructure. They help identify risks, develop mitigation strategies, and ensure compliance with security regulations and best practices. Their responsibilities often include conducting risk assessments, advising on security policies, and recommending improvements to reduce exposure to threats. Security Risk Consultants work with clients across various industries to safeguard assets, data, and people. Their expertise helps organizations proactively address security challenges and minimize potential losses.

How much does a security consultant get paid?

The average salary for a security risk consultant varies depending on experience, location, and certifications, but typically ranges from $70,000 to $120,000 annually. Senior consultants with specialized skills or certifications like CISSP or CISA can earn higher salaries, and some may work on a contract basis or have additional bonuses.

What is the difference between Security Risk Consultant vs Security Analyst?

AspectSecurity Risk ConsultantSecurity Analyst
CertificationsCompTIA Security+, CISSP, CISMCompTIA Security+, CISSP, CEH
Work EnvironmentConsulting firms, corporate security teamsIT departments, security operations centers
Primary FocusAssessing and managing security risks, advising clientsMonitoring security systems, incident response
Industry UsageFinance, healthcare, government, consultingTechnology, finance, government agencies

While both roles involve cybersecurity, Security Risk Consultants focus on evaluating and advising on security risks for organizations, often working in consulting settings. Security Analysts primarily monitor and respond to security threats within an organization’s IT infrastructure. Understanding these differences helps in choosing the right career path or job search focus.

What do security risk consultants do?

Security risk consultants analyze an organization’s security posture to identify vulnerabilities and develop strategies to mitigate risks. They conduct assessments, review policies, and recommend security measures, often using tools like risk management frameworks and security audits. Their work helps organizations protect sensitive data and comply with industry standards.
What are popular job titles related to Security Risk Consultant jobs in California? For Security Risk Consultant jobs in California, the most frequently searched job titles are:
What job categories do people searching Security Risk Consultant jobs in California look for? The top searched job categories for Security Risk Consultant jobs in California are:
Infographic showing various Security Risk Consultant job openings in California as of June 2026, with employment types broken down into 1% As Needed, 88% Full Time, 10% Part Time, and 1% Contract. Highlights an 93% Physical, 3% Hybrid, and 4% Remote job distribution, with an average salary of $104,504 per year, or $50.2 per hour.

Partner, Global Head of Crisis Advisory and Risk Consulting

Control Risks

San Francisco, CA • On-site

Full-time

Posted 4 days ago


Job description

This role may be based in Washington DC, NYC, Chicago, Houston, or San Francisco. The application deadline for this role is Tuesday 7 July at 5pm ET.

The Global Head of Crisis Advisory and Risk Consulting is a US-based senior leadership role responsible for setting and executing the global strategy for a market-leading crisis advisory and risk consulting business. This individual will lead a globally distributed team of experts helping clients prepare for, respond to, and recover from complex crises, critical incidents, and enterprise risk events.

The role requires a highly credible leader with established client relationships, deep experience advising Boards and C-Suite executives across the security, intelligence and resilience portfolios, proven operational expertise in hands-on crisis response following serious incidents, and a proven track record of commercial success leading and growing an international consulting practice. Market knowledge and/or experience in key growth markets is a must.

The successful candidate must also be a dynamic people leader with experience leading high-performing teams, recognized for demonstrating Control Risks' core values around teamwork and collaboration, and be forward-thinking in leveraging AI and emerging technologies to transform both internal delivery and client-facing solutions.

Key Responsibilities

Strategic Leadership

  • Execute the global vision, strategy, and growth plan for the Crisis Advisory and Risk Consulting practice, strengthening the firm's position in the US, Canada, UK, Europe and Japan.
  • Scale a high-performing, globally integrated practice with consistent service quality, strong collaboration, and clear market differentiation.
  • Identify emerging security, geopolitical, operational, reputational, and regulatory risks and translate them into compelling advisory offerings with the Senior Security Leadership Team and Service Line leads.
  • Adopt approved AI platforms and technology partnerships to improve efficiency, delivery models, and technology-enabled client solutions.
  • Establish a structured process to evaluate emerging AI and technology platforms and source ideas across the practice.
  • Partner with Security leadership, Clients & Markets, and Global Service Lines to align priorities and support joint go-to-market efforts.

Client Leadership and Advisory

  • Advise Boards, CEOs, executive committees, and C-Suite leaders on crisis preparedness, incident response, resilience, and high-impact risk issues in a fee-earning capacity.
  • Generate, lead, and oversee strategic engagements involving crisis management, serious incidents, reputational threats, cyber events, workplace violence, regulatory scrutiny, or other disruptions.
  • Provide hands-on strategic crisis advisory support after serious incidents, guiding response, stakeholder coordination (client and internal), recovery, and lessons learned.
  • Embed AI-enabled insights and tools to improve delivery speed, efficiency, deliverables, and client outcomes.

Commercial Growth and Business Management

  • Deliver sustained revenue growth and profitability, using the Security PMO to improve resourcing and develop talent.
  • Win major engagements, grow key accounts, improve margins, and develop new services in response to market demand.
  • Identify and commercialize AI-driven offerings that generate new revenue streams and strengthen market differentiation.
  • Own business planning, pipeline development, forecasting, and performance management for the practice.
  • Strengthen client, partner, and internal relationships to drive cross-sell and integrated solutions.

Team and Practice Development

  • Lead, mentor, and inspire team members across multiple geographies.
  • Foster a culture of excellence, agility, teamwork, accountability, inclusion, and innovation.
  • Champion AI literacy and adoption so practitioners can use new tools and ways of working.
  • Support talent acquisition, succession planning, and leadership development to build long-term bench strength.
  • Maintain best practices, methodologies, and quality standards across crisis advisory and risk consulting engagements.

Thought Leadership and Market Presence

  • Serve as brand ambassador and recognized thought leader in security, crisis management, resilience, and risk advisory.
  • Regularly contribute to content, executive briefings, keynotes, media interviews, and industry engagement.
  • Shape perspectives on security, crisis management, risk, and AI-enabled transformation.
  • Enhance the firm's reputation through innovative thinking and impactful client outcomes.