... Risk Management program ... The role involves managing multiple tasks related to IT and Information Security controls ...
... Risk Management program ... The role involves managing multiple tasks related to IT and Information Security controls ...
Information Security Risk & Controls Analyst
Mattoon, IL · On-site
$24.52 - $30.65/hr
This role will evolve within the Enterprise Risk Management Department and work directly with the Information Security Risk Officer to provide effective oversight and monitoring of IT and Information ...
Information Security Risk & Controls Analyst
Mattoon, IL · On-site
$24.52 - $30.65/hr
This role will evolve within the Enterprise Risk Management Department and work directly with the Information Security Risk Officer to provide effective oversight and monitoring of IT and Information ...
Information Security Risk & Controls Analyst
Mattoon, IL · On-site
$24.52 - $30.65/hr
This role will evolve within the Enterprise Risk Management Department and work directly with the Information Security Risk Officer to provide effective oversight and monitoring of IT and Information ...
Information Security Risk & Controls Analyst
Mattoon, IL · On-site
$24.52 - $30.65/hr
This role will evolve within the Enterprise Risk Management Department and work directly with the Information Security Risk Officer to provide effective oversight and monitoring of IT and Information ...
Principal Information Security Risk Management - AI
Chicago, IL · Hybrid
$221K - $276K/yr
The Principal Information Security Risk Management, AI is responsible for ensuring enterprise-wide Generative AI (GenAI), Agentic AI, LLMs, and ML security programs are effective, risk-aligned, and ...
Principal Information Security Risk Management - AI
Chicago, IL · Hybrid
$221K - $276K/yr
The Principal Information Security Risk Management, AI is responsible for ensuring enterprise-wide Generative AI (GenAI), Agentic AI, LLMs, and ML security programs are effective, risk-aligned, and ...
Prepare compliance documentation, risk assessments, metrics, and reports for management, regulatory ... Bachelor's degree in Information Security, Cybersecurity, Risk Management, or related field. A ...
Prepare compliance documentation, risk assessments, metrics, and reports for management, regulatory ... Bachelor's degree in Information Security, Cybersecurity, Risk Management, or related field. A ...
Management or participation in Cybersecurity, Information Security, Risk, Compliance and/or Data Privacy Programs or Projects * Sample projects/programs could include but are not limited to:
Management or participation in Cybersecurity, Information Security, Risk, Compliance and/or Data Privacy Programs or Projects * Sample projects/programs could include but are not limited to:
... security risk oversight for areas of the enterprise that manage technology. As part of this oversight role, experience with cybersecurity domains, operations, architecture, governance, information ...
... security risk oversight for areas of the enterprise that manage technology. As part of this oversight role, experience with cybersecurity domains, operations, architecture, governance, information ...
Management or participation in Cybersecurity, Information Security, Risk, Compliance and/or Data Privacy Programs or Projects * Sample projects/programs could include but are not limited to:
Management or participation in Cybersecurity, Information Security, Risk, Compliance and/or Data Privacy Programs or Projects * Sample projects/programs could include but are not limited to:
Governance & Risk Analyst
Chicago, IL · On-site
$85K - $95K/yr
The role requires strong analytical skills, stakeholder engagement, and familiarity with information security, privacy, and regulatory frameworks. Key Responsibilities Third-Party Risk Management ...
Governance & Risk Analyst
Chicago, IL · On-site
$85K - $95K/yr
The role requires strong analytical skills, stakeholder engagement, and familiarity with information security, privacy, and regulatory frameworks. Key Responsibilities Third-Party Risk Management ...
Senior Cyber Risk Analyst
Chicago, IL · On-site
$110K - $130K/yr
Actively support the broader Enterprise Risk Management (ERM) program by translating technical cyber risks into business impacts, ensuring seamless reporting to ERM leadership. Strategic Security ...
Senior Cyber Risk Analyst
Chicago, IL · On-site
$110K - $130K/yr
Actively support the broader Enterprise Risk Management (ERM) program by translating technical cyber risks into business impacts, ensuring seamless reporting to ERM leadership. Strategic Security ...
Senior Cyber Risk Analyst
Chicago, IL · Hybrid
$110K - $130K/yr
Actively support the broader Enterprise Risk Management (ERM) program by translating technical cyber risks into business impacts, ensuring seamless reporting to ERM leadership. Strategic Security ...
Senior Cyber Risk Analyst
Chicago, IL · Hybrid
$110K - $130K/yr
Actively support the broader Enterprise Risk Management (ERM) program by translating technical cyber risks into business impacts, ensuring seamless reporting to ERM leadership. Strategic Security ...
The Risk Management Support Task Leads functions as a top-level technical contributor and ... evaluating security controls, tracking categorizations, and finalizing ATO packages. • ...
The Risk Management Support Task Leads functions as a top-level technical contributor and ... evaluating security controls, tracking categorizations, and finalizing ATO packages. • ...
The Security Risk Assessor will be responsible for identifying, prioritizing, reporting, and ... skills Project Management Education Work with blueStone Recruiting, we understand Information ...
The Security Risk Assessor will be responsible for identifying, prioritizing, reporting, and ... skills Project Management Education Work with blueStone Recruiting, we understand Information ...
... security and risk management experience. - Advanced awareness of current information security standards and developments (CSF, NIST, ISO), the COSO framework, as well as the emerging cyber threat ...
... security and risk management experience. - Advanced awareness of current information security standards and developments (CSF, NIST, ISO), the COSO framework, as well as the emerging cyber threat ...
... security and risk management experience. - Advanced awareness of current information security standards and developments (CSF, NIST, ISO), the COSO framework, as well as the emerging cyber threat ...
... security and risk management experience. - Advanced awareness of current information security standards and developments (CSF, NIST, ISO), the COSO framework, as well as the emerging cyber threat ...
The Risk Management Support Task Leads functions as a top-level technical contributor and ... Provide expert Information Systems Security Engineering (ISSE) lifecycle alignment in strict ...
The Risk Management Support Task Leads functions as a top-level technical contributor and ... Provide expert Information Systems Security Engineering (ISSE) lifecycle alignment in strict ...
The Risk Management Support Task Leads functions as a top-level technical contributor and ... Provide expert Information Systems Security Engineering (ISSE) lifecycle alignment in strict ...
The Risk Management Support Task Leads functions as a top-level technical contributor and ... Provide expert Information Systems Security Engineering (ISSE) lifecycle alignment in strict ...
The Risk Management Support Task Leads functions as a top-level technical contributor and ... Provide expert Information Systems Security Engineering (ISSE) lifecycle alignment in strict ...
The Risk Management Support Task Leads functions as a top-level technical contributor and ... Provide expert Information Systems Security Engineering (ISSE) lifecycle alignment in strict ...
The Risk Management Support Task Leads functions as a top-level technical contributor and ... Provide expert Information Systems Security Engineering (ISSE) lifecycle alignment in strict ...
The Risk Management Support Task Leads functions as a top-level technical contributor and ... Provide expert Information Systems Security Engineering (ISSE) lifecycle alignment in strict ...
Risk Management Task Lead
Belleville, IL · On-site
OCH Technologies is seeking a Risk Management Task Lead to support a government program at Scott ... Address risk factors, threats, vulnerabilities, likelihood of exploit, and security control ...
Quick apply
Risk Management Task Lead
Belleville, IL · On-site
OCH Technologies is seeking a Risk Management Task Lead to support a government program at Scott ... Address risk factors, threats, vulnerabilities, likelihood of exploit, and security control ...
Security Risk Management information
See Illinois salary details
$10.02 - $15.27
2% of jobs
$15.27 - $20.52
0% of jobs
$20.52 - $25.77
1% of jobs
$25.77 - $31.02
1% of jobs
$31.02 - $36.27
1% of jobs
$40.21 is the 25th percentile. Wages below this are outliers.
$36.27 - $41.53
26% of jobs
$41.53 - $46.78
11% of jobs
The median wage is $48.65 / hr.
$46.78 - $52.03
22% of jobs
$52.03 - $57.28
9% of jobs
$57.69 is the 75th percentile. Wages above this are outliers.
$57.28 - $62.53
17% of jobs
$62.53 - $67.78
9% of jobs
$10
$48
$67
How much do security risk management jobs pay per hour?
As of Jun 21, 2026, the average hourly pay for security risk management in Illinois is $48.85, according to ZipRecruiter salary data. Most workers in this role earn between $39.62 and $58.22 per hour, depending on experience, location, and employer.
What are the typical challenges faced by professionals in Security Risk Management, and how can they be addressed?
Professionals in Security Risk Management often encounter challenges such as rapidly evolving threats, balancing security with business operations, and ensuring organization-wide compliance with regulations. Staying current with the latest risk trends and fostering cross-department collaboration are key strategies for overcoming these obstacles. Additionally, clear communication of risks to non-technical stakeholders and ongoing training are essential for building a proactive security culture and effective risk mitigation.
Can I make $200,000 a year in cyber security?
Security Risk Management professionals can potentially earn $200,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISM, and roles in high-demand industries or senior leadership positions. Salary levels vary based on location, company size, and individual expertise, but high-level cybersecurity roles often offer compensation in this range.
Can you make $500,000 a year in cyber security?
Security Risk Management professionals can potentially earn $500,000 or more annually, especially at senior levels, in leadership roles, or within large organizations. Achieving this income typically requires extensive experience, advanced certifications like CISSP or CISM, and expertise in high-demand areas such as threat intelligence or security architecture.
Is security risk management a good career?
Security risk management is a viable career that involves identifying, assessing, and mitigating security threats to organizations. It often requires certifications such as CISSP or CISM and skills in risk analysis, security policies, and incident response. The field offers opportunities across various industries with increasing demand for cybersecurity expertise.
What is Security Risk Management?
Security Risk Management is the process of identifying, assessing, and mitigating risks to an organization's information, assets, and operations. It involves evaluating potential threats and vulnerabilities, determining their potential impact, and implementing strategies to minimize or control these risks. The goal is to protect the organization from security breaches, data loss, and other threats while ensuring compliance with legal and regulatory requirements. Security Risk Management is essential for maintaining business continuity and safeguarding reputation.
What are the key skills and qualifications needed to thrive in Security Risk Management, and why are they important?
To excel in Security Risk Management, you need a solid understanding of risk assessment frameworks, cybersecurity principles, and compliance standards, often supported by a degree in information security or related fields. Familiarity with risk management tools, security incident response systems, and certifications such as CISSP or CISM is typically required. Strong analytical thinking, communication, and decision-making skills help professionals navigate complex threats and collaborate across departments. These competencies are crucial for effectively identifying, mitigating, and communicating risks to protect organizational assets and ensure regulatory compliance.
What is the difference between Security Risk Management vs Security Analyst?
| Aspect | Security Risk Management | Security Analyst |
|---|---|---|
| Certifications | CRISC, CISSP, CISM | CompTIA Security+, CISSP, CEH |
| Work Environment | Strategic, policy-focused, risk assessment | Operational, monitoring, incident response |
| Employer & Industry Usage | Organizations managing enterprise security risks | Security teams, cybersecurity firms, IT departments |
Security Risk Management focuses on identifying, assessing, and mitigating security risks at an organizational level, often involving policy development and strategic planning. In contrast, Security Analysts primarily monitor security systems, analyze threats, and respond to incidents. Both roles are essential but differ in scope and responsibilities within the cybersecurity field.
Is SOC 1 entry level?
SOC 1 (Service Organization Control 1) reports are audit reports used to evaluate internal controls at a service organization and are not job roles. In the context of security risk management, entry-level positions typically require foundational knowledge of security principles, certifications like CompTIA Security+ or CISSP, and experience with risk assessment tools, but SOC 1 itself is not an entry-level role.
What are popular job titles related to Security Risk Management jobs in Illinois? For Security Risk Management jobs in Illinois, the most frequently searched job titles are:
- Security Analyst Part Time
- Information Technology Security Analyst
- Commission Dam Operator
- Work From Home Security Risk Analyst
- Cis Security Officer
- Experienced Information Security Manager
- Physical Security Analyst
- Freelance Physical Security Analyst
- Information Security Risk Analyst
- Senior Security Architect
What job categories do people searching Security Risk Management jobs in Illinois look for? The top searched job categories for Security Risk Management jobs in Illinois are:
What cities in Illinois are hiring for Security Risk Management jobs? Cities in Illinois with the most Security Risk Management job openings:
Full-time
Posted 22 days ago
First Mid Bank & Trust rating
7.8
Based on 5 frontline employees who took The Breakroom Quiz
65th of 141 rated banks
Job description
Job Summary:
First Mid is a financial services company seeking an Information Security Risk & Controls Analyst to support their Information Security Risk Management program. The role involves managing multiple tasks related to IT and Information Security controls, conducting audits, and ensuring documentation and reporting processes are accurate and current.
Responsibilities:
• Assist with user access reviews, including privileged account validation.
• Assist with SOX, GLBA, FFIEC, and OCC audits and exams by gathering and organizing evidence.
• Support monitoring of IT audit, regulatory, and penetration test findings to ensure timely remediation.
• Help maintain a software asset database and perform risk assessments on new IT assets, vendors, and system changes.
• Execute recurring monthly and quarterly second-line validation monitoring of Information Security control activities.
• Maintain and update information security risk documentation.
• Assist with evidence gathering and validation of Information Security Risk Assessments, ensuring documentation is complete, accurate, and maintained for audit and regulatory review.
• Assist with the monitoring of antivirus, patch management, and vulnerability remediation tracking.
• Support the preparation of Key Risk Indicator (KRI) metrics and risk trend reporting for management and governance committees.
• Contribute to information security risk-related communications and associate awareness efforts.
• Provide administrative support during incident response activities, including evidence collection, logging, and reporting.
• Assist with planning and documentation for the annual cybersecurity tabletop exercise.
• Participate in Enterprise Risk Management and IT governance discussions as directed by the Information Security Risk Officer.
• Collaborate with IT and other departments as needed to ensure seamless execution of second-line validation responsibilities.
• Complete annual training associated with job functions.
• Perform other duties as assigned.
Qualifications:
Required:
• Associate’s or Bachelor’s degree in Information Security, Risk Management, or a related field required.
• 1+ years of Information Security, IT Audit, or IT Risk Management experience required; banking or financial services experience a plus.
• Strong analytical and problem-solving skills with close attention to detail.
• Ability to interpret and report on data trends and risk indicators.
• Strong proficiency in Microsoft Excel, including the ability to organize, analyze, and validate data using formulas, pivot tables, filters, and basic data analysis techniques.
• Ability to manage multiple tasks and meet deadlines in a fast-paced regulatory environment.
Preferred:
• Exposure to regulatory frameworks such as GLBA, FFIEC, NIST, or SOX preferred.
• Field-related certification (e.g., Security+, CISA, or CySA+) a plus, or willingness to obtain in the future.
• Familiarity with banking applications preferred.
Company:
First Mid Bancshares, Inc. is a community-focused organization headquartered in Mattoon, Illinois. Founded in 1865, the company is headquartered in Mattoon, USA, with a team of 501-1000 employees. The company is currently Late Stage.
First Mid is a financial services company seeking an Information Security Risk & Controls Analyst to support their Information Security Risk Management program. The role involves managing multiple tasks related to IT and Information Security controls, conducting audits, and ensuring documentation and reporting processes are accurate and current.
Responsibilities:
• Assist with user access reviews, including privileged account validation.
• Assist with SOX, GLBA, FFIEC, and OCC audits and exams by gathering and organizing evidence.
• Support monitoring of IT audit, regulatory, and penetration test findings to ensure timely remediation.
• Help maintain a software asset database and perform risk assessments on new IT assets, vendors, and system changes.
• Execute recurring monthly and quarterly second-line validation monitoring of Information Security control activities.
• Maintain and update information security risk documentation.
• Assist with evidence gathering and validation of Information Security Risk Assessments, ensuring documentation is complete, accurate, and maintained for audit and regulatory review.
• Assist with the monitoring of antivirus, patch management, and vulnerability remediation tracking.
• Support the preparation of Key Risk Indicator (KRI) metrics and risk trend reporting for management and governance committees.
• Contribute to information security risk-related communications and associate awareness efforts.
• Provide administrative support during incident response activities, including evidence collection, logging, and reporting.
• Assist with planning and documentation for the annual cybersecurity tabletop exercise.
• Participate in Enterprise Risk Management and IT governance discussions as directed by the Information Security Risk Officer.
• Collaborate with IT and other departments as needed to ensure seamless execution of second-line validation responsibilities.
• Complete annual training associated with job functions.
• Perform other duties as assigned.
Qualifications:
Required:
• Associate’s or Bachelor’s degree in Information Security, Risk Management, or a related field required.
• 1+ years of Information Security, IT Audit, or IT Risk Management experience required; banking or financial services experience a plus.
• Strong analytical and problem-solving skills with close attention to detail.
• Ability to interpret and report on data trends and risk indicators.
• Strong proficiency in Microsoft Excel, including the ability to organize, analyze, and validate data using formulas, pivot tables, filters, and basic data analysis techniques.
• Ability to manage multiple tasks and meet deadlines in a fast-paced regulatory environment.
Preferred:
• Exposure to regulatory frameworks such as GLBA, FFIEC, NIST, or SOX preferred.
• Field-related certification (e.g., Security+, CISA, or CySA+) a plus, or willingness to obtain in the future.
• Familiarity with banking applications preferred.
Company:
First Mid Bancshares, Inc. is a community-focused organization headquartered in Mattoon, Illinois. Founded in 1865, the company is headquartered in Mattoon, USA, with a team of 501-1000 employees. The company is currently Late Stage.
About First Mid
Sourced by ZipRecruiter
Industry
Finance and insurance
Company size
501 - 1,000 Employees
Headquarters location
Mattoon, IL, US
Year founded
1865