1

Security Risk Management Specialist Jobs (NOW HIRING)

Risk Management Specialist

Ukiah, CA · On-site

$78K - $116K/yr

Risk Management, Claims, Legal, Patient Safety, Quality, Accreditation, Regulatory, and Licensing ... Facilities, Safety, Nursing, Pharmacy, Security, and Patient Relations). Works with Safety ...

Gilbane is seeking a Risk Management Specialist to be the primary point of contact for all insurance related matters for one or more Business Units (BUs) with developing or recently proficient ...

New

next page

Showing results 1-20

Security Risk Management Specialist information

See salary details

$37.5K

$72.9K

$138.5K

How much do security risk management specialist jobs pay per year?

As of Jul 10, 2026, the average yearly pay for security risk management specialist in the United States is $72,927.00, according to ZipRecruiter salary data. Most workers in this role earn between $50,000.00 and $84,500.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Security Risk Management Specialist, and why are they important?

To thrive as a Security Risk Management Specialist, you need expertise in risk assessment, threat analysis, and security frameworks, often supported by a degree in information security or a related field. Familiarity with tools such as risk management software, SIEM systems, and certifications like CISSP or CISM are commonly expected. Strong analytical thinking, communication, and problem-solving abilities make someone stand out in this role. These skills and qualifications are crucial for identifying vulnerabilities, mitigating threats, and ensuring organizational resilience against security risks.

Is security risk management a good career?

Security risk management specialists analyze and mitigate security threats to organizations, often requiring knowledge of cybersecurity, risk assessment, and compliance standards. The field offers strong job growth, competitive salaries, and opportunities across various industries, making it a viable and rewarding career choice for those interested in protecting assets and information.

How much do security management specialists make?

Security Risk Management Specialists typically earn a median annual salary of around $80,000 to $100,000, depending on experience, certifications, and location. Senior roles or those with specialized skills can earn higher salaries, often exceeding $120,000 annually.

How does a Security Risk Management Specialist typically collaborate with other departments to enhance organizational security?

Security Risk Management Specialists frequently work cross-functionally, partnering with IT, legal, compliance, and operations teams to identify, assess, and mitigate potential security risks. They often facilitate risk assessments, lead security awareness training, and help develop incident response plans in collaboration with key stakeholders. This role requires strong communication skills to translate technical risks into business terms, ensuring all departments understand their role in maintaining security. Regular meetings and project involvement across teams are common, fostering a proactive security culture throughout the organization.

What is the difference between Security Risk Management Specialist vs Security Analyst?

AspectSecurity Risk Management SpecialistSecurity Analyst
CertificationsCompTIA Security+, CISSP, CISMCompTIA Security+, CISSP, CEH
Work EnvironmentRisk assessment, policy development, security planningMonitoring security systems, incident response, vulnerability analysis
Industry UsageCorporate security, government agencies, consulting firmsIT departments, cybersecurity firms, financial institutions

The Security Risk Management Specialist focuses on identifying and mitigating security risks through strategic planning and policy development. In contrast, the Security Analyst primarily monitors security systems and responds to incidents. Both roles require similar certifications and are vital in protecting organizational assets, but their daily tasks and focus areas differ.

What are Security Risk Management Specialists?

Security Risk Management Specialists are professionals who identify, assess, and develop strategies to mitigate risks that could threaten an organization’s assets, data, and operations. They analyze potential security threats, develop policies and procedures, and monitor compliance to ensure the safety of people and information. Their work involves collaborating with other departments to implement security measures and respond to incidents. These specialists are vital for organizations to manage risks and maintain regulatory compliance.

What does a risk management specialist do?

A risk management specialist identifies, assesses, and prioritizes potential security threats to an organization. They develop strategies and implement policies to mitigate risks, often using tools like risk assessment frameworks and security protocols. Their work helps protect assets, personnel, and information from various threats.

Can I make $200,000 a year in cyber security?

Security Risk Management Specialists can potentially earn $200,000 or more annually, especially with extensive experience, advanced certifications like CISSP, and leadership roles. High salaries are often associated with senior positions, specialized skills, and working in industries with high security demands.
More about Security Risk Management Specialist jobs
What job categories do people searching Security Risk Management Specialist jobs look for? The top searched job categories for Security Risk Management Specialist jobs are:
Infographic showing various Security Risk Management Specialist job openings in the United States as of July 2026, with employment types broken down into 1% As Needed, 82% Full Time, 14% Part Time, 1% Temporary, and 2% Contract. Highlights an 88% Physical, 2% Hybrid, and 10% Remote job distribution, with an average salary of $72,927 per year, or $35.1 per hour.
Senior Security Risk Management SME

Senior Security Risk Management SME

One Federal Solution

Washington, DC • Hybrid

Other

Posted 24 days ago


Job description

One Federal Solution provides senior-level cybersecurity risk management expertise supporting A&A, FISMA compliance, IC security standards, continuous monitoring, CDS, and secure cloud/hybrid environments. We apply NIST, CNSSI 1253, and RMF principles to strengthen security posture, automate compliance activities, and deliver risk-based solutions for federal mission needs.

Senior Security Risk Management SME Task and Duties:

  • Provide senior-level security risk management subject matter expertise.
  • Support Authorization and Assessment (A&A), FISMA compliance, IC cybersecurity policy and standards, continuous monitoring, CDS, and secure cloud/hybrid engineering.
  • Apply emerging and evolving security risk management practices, including automation of A&A and continuous monitoring activities.
  • Apply NIST 800-series and CNSSI 1253 security controls, risk management framework principles, and related guidance.
  • Advise on secure cloud and hybrid engineering risk posture, compliance, and remediation approaches.

Senior Security Risk Management SME Qualifications:

  • Minimum 10 years of total related experience.
  • Minimum 2 years of recent experience in each of the following: A&A, FISMA compliance, IC cybersecurity policy and standards, continuous monitoring, CDS, and secure cloud/hybrid engineering.
  • Experience automating A&A and continuous monitoring activities.
  • Experience applying NIST 800-series and CNSSI 1253 security controls and risk management framework guidance.
  • Mandatory certification in CISM, CAP, or GRC Certification in good standing at award and throughout the period of performance, or comparable demonstrable experience.
  • Desired: certifications in AWS, Microsoft Azure, and Microsoft Office 365 cloud platforms.
About One Federal Solution

One Federal Solution (OFS) is an innovative Professional Services provider with over 20 years of experience supporting Defense and Civilian agencies. OFS specializes in Business Intelligence, Acquisition and Procurement, and other Professional Services. We are pioneers, builders, thought leaders, and pride ourselves on thinking outside the box to co-create with our customers, helping them achieve exceptional enterprise-wide outcomes. As a certified Service-Disabled Veteran-Owned Small Business (SDVOSB), OFS is committed to providing high-performance professionals who deliver excellence to our government partners.