Security Risk Assessment ISO 270012 SOX ITGC SOC1 or SOC2 DevSecOps OWASP * top 10 Security Risk ... Identity and Access Management ISO 22301 ISO 27005 Control testing Control * assessment Knowledge ...
Quick apply
Security Risk Assessment ISO 270012 SOX ITGC SOC1 or SOC2 DevSecOps OWASP * top 10 Security Risk ... Identity and Access Management ISO 22301 ISO 27005 Control testing Control * assessment Knowledge ...
Information Security Specialist
Paducah, KY · Hybrid
$21.35 - $26.69/hr
This role provides hands-on experience in vendor management and risk mitigation while aligning security efforts with company objectives. By integrating security measures with business goals, the ...
Quick apply
Information Security Specialist
Paducah, KY · Hybrid
$21.35 - $26.69/hr
This role provides hands-on experience in vendor management and risk mitigation while aligning security efforts with company objectives. By integrating security measures with business goals, the ...
Information Security Specialist
Paducah, KY · On-site
$21.35 - $26.69/hr
This role provides hands-on experience in vendor management and risk mitigation while aligning security efforts with company objectives. By integrating security measures with business goals, the ...
Information Security Specialist
Paducah, KY · On-site
$21.35 - $26.69/hr
This role provides hands-on experience in vendor management and risk mitigation while aligning security efforts with company objectives. By integrating security measures with business goals, the ...
Director, Fraud Risk Oversight
Covington, KY · On-site +1
$110K - $222K/yr
... Management programs and capabilities. Central to the Risk Group's mission is close collaboration with partners throughout the Firm - including Business Leaders, Legal, Compliance, Audit, and Security ...
Director, Fraud Risk Oversight
Covington, KY · On-site +1
$110K - $222K/yr
... Management programs and capabilities. Central to the Risk Group's mission is close collaboration with partners throughout the Firm - including Business Leaders, Legal, Compliance, Audit, and Security ...
Risk Management: Identify, assess, and mitigate information security risks through continuous monitoring and risk assessments * Policy Development: Update and maintain security policies in response ...
Risk Management: Identify, assess, and mitigate information security risks through continuous monitoring and risk assessments * Policy Development: Update and maintain security policies in response ...
... risk management platform. • Work with development teams to define practical, risk-based ... Web, mobile, and API security, Authentication and authorization models (OAuth2, OIDC, JWT, SAML ...
... risk management platform. • Work with development teams to define practical, risk-based ... Web, mobile, and API security, Authentication and authorization models (OAuth2, OIDC, JWT, SAML ...
Principal Product Security Engineer
Frankfort, KY · On-site +1
Experience with security risk management techniques. * Demonstrated organizational skills, attention to detail, the ability to handle multiple assignments simultaneously in a timely manner and be ...
Principal Product Security Engineer
Frankfort, KY · On-site +1
Experience with security risk management techniques. * Demonstrated organizational skills, attention to detail, the ability to handle multiple assignments simultaneously in a timely manner and be ...
Principal Product Security Engineer
Bowling Green, KY · On-site +1
Experience with security risk management techniques. * Demonstrated organizational skills, attention to detail, the ability to handle multiple assignments simultaneously in a timely manner and be ...
Principal Product Security Engineer
Bowling Green, KY · On-site +1
Experience with security risk management techniques. * Demonstrated organizational skills, attention to detail, the ability to handle multiple assignments simultaneously in a timely manner and be ...
Principal Product Security Engineer
Lexington, KY · On-site +1
Experience with security risk management techniques. * Demonstrated organizational skills, attention to detail, the ability to handle multiple assignments simultaneously in a timely manner and be ...
Principal Product Security Engineer
Lexington, KY · On-site +1
Experience with security risk management techniques. * Demonstrated organizational skills, attention to detail, the ability to handle multiple assignments simultaneously in a timely manner and be ...
Principal Product Security Engineer
Louisville, KY · On-site +1
Experience with security risk management techniques. * Demonstrated organizational skills, attention to detail, the ability to handle multiple assignments simultaneously in a timely manner and be ...
Principal Product Security Engineer
Louisville, KY · On-site +1
Experience with security risk management techniques. * Demonstrated organizational skills, attention to detail, the ability to handle multiple assignments simultaneously in a timely manner and be ...
Principal Product Security Engineer
Covington, KY · On-site +1
Experience with security risk management techniques. * Demonstrated organizational skills, attention to detail, the ability to handle multiple assignments simultaneously in a timely manner and be ...
Principal Product Security Engineer
Covington, KY · On-site +1
Experience with security risk management techniques. * Demonstrated organizational skills, attention to detail, the ability to handle multiple assignments simultaneously in a timely manner and be ...
Principal Product Security Engineer
Owensboro, KY · On-site +1
Experience with security risk management techniques. * Demonstrated organizational skills, attention to detail, the ability to handle multiple assignments simultaneously in a timely manner and be ...
Principal Product Security Engineer
Owensboro, KY · On-site +1
Experience with security risk management techniques. * Demonstrated organizational skills, attention to detail, the ability to handle multiple assignments simultaneously in a timely manner and be ...
Risk Identification and Assessment Supplier Security Overall SCRM governance and strategy Cross-functional collaboration across the supply chain to manage and mitigate risks Why Join Us This position ...
Risk Identification and Assessment Supplier Security Overall SCRM governance and strategy Cross-functional collaboration across the supply chain to manage and mitigate risks Why Join Us This position ...
Risk Identification and Assessment Supplier Security Overall SCRM governance and strategy Cross-functional collaboration across the supply chain to manage and mitigate risks Why Join Us This position ...
Risk Identification and Assessment Supplier Security Overall SCRM governance and strategy Cross-functional collaboration across the supply chain to manage and mitigate risks Why Join Us This position ...
Implement and monitor risk management, security, and cash handling policies. * Resolve escalated customer service issues. * Support strategic service initiatives and branch goals * Follow all ...
Quick apply
Implement and monitor risk management, security, and cash handling policies. * Resolve escalated customer service issues. * Support strategic service initiatives and branch goals * Follow all ...
Supply Chain Risk Management Lead
Lexington, KY · On-site
$95K - $167.44K/yr
Risk Identification and Assessment Supplier Security Overall SCRM governance and strategy Cross-functional collaboration across the supply chain to manage and mitigate risks Why Join Us This position ...
Supply Chain Risk Management Lead
Lexington, KY · On-site
$95K - $167.44K/yr
Risk Identification and Assessment Supplier Security Overall SCRM governance and strategy Cross-functional collaboration across the supply chain to manage and mitigate risks Why Join Us This position ...
Cybersecurity Specialist
Frankfort, KY · On-site
... Managed Security Services group. * Investigate and respond to alerts and incidents using the Microsoft 365 Defender suite. * Assist with security risk assessments, vulnerability scanning and ...
Cybersecurity Specialist
Frankfort, KY · On-site
... Managed Security Services group. * Investigate and respond to alerts and incidents using the Microsoft 365 Defender suite. * Assist with security risk assessments, vulnerability scanning and ...
$41.75 - $55.75/hr
Quote from Hiring Manager: The IT Governance/Risk/Compliance Analyst position offers a dynamic ... Ensure data security and privacy compliance by providing guidance on appropriate access controls ...
$41.75 - $55.75/hr
Quote from Hiring Manager: The IT Governance/Risk/Compliance Analyst position offers a dynamic ... Ensure data security and privacy compliance by providing guidance on appropriate access controls ...
Compliance and Risk Manager
$114K - $121K/yr
It administers the Vendor Management Program through ongoing due diligence and risk assessments of ... security policies and procedures and report discrepancies or suspicious activity to manager ...
Compliance and Risk Manager
$114K - $121K/yr
It administers the Vendor Management Program through ongoing due diligence and risk assessments of ... security policies and procedures and report discrepancies or suspicious activity to manager ...
Compliance and Risk Manager
$114K - $121K/yr
It administers the Vendor Management Program through ongoing due diligence and risk assessments of ... security policies and procedures and report discrepancies or suspicious activity to manager ...
Quick apply
Compliance and Risk Manager
$114K - $121K/yr
It administers the Vendor Management Program through ongoing due diligence and risk assessments of ... security policies and procedures and report discrepancies or suspicious activity to manager ...
Security Risk Management information
See Kentucky salary details
$8.98 - $13.68
2% of jobs
$13.68 - $18.39
0% of jobs
$18.39 - $23.10
1% of jobs
$23.10 - $27.81
1% of jobs
$27.81 - $32.51
1% of jobs
$36.04 is the 25th percentile. Wages below this are outliers.
$32.51 - $37.22
26% of jobs
$37.22 - $41.93
11% of jobs
The median wage is $43.61 / hr.
$41.93 - $46.63
22% of jobs
$46.63 - $51.34
9% of jobs
$51.71 is the 75th percentile. Wages above this are outliers.
$51.34 - $56.05
17% of jobs
$56.05 - $60.76
9% of jobs
$8
$43
$60
How much do security risk management jobs pay per hour?
As of May 29, 2026, the average hourly pay for security risk management in Kentucky is $43.78, according to ZipRecruiter salary data. Most workers in this role earn between $35.48 and $52.21 per hour, depending on experience, location, and employer.
What are the key skills and qualifications needed to thrive in Security Risk Management, and why are they important?
To excel in Security Risk Management, you need a solid understanding of risk assessment frameworks, cybersecurity principles, and compliance standards, often supported by a degree in information security or related fields. Familiarity with risk management tools, security incident response systems, and certifications such as CISSP or CISM is typically required. Strong analytical thinking, communication, and decision-making skills help professionals navigate complex threats and collaborate across departments. These competencies are crucial for effectively identifying, mitigating, and communicating risks to protect organizational assets and ensure regulatory compliance.
What are the typical challenges faced by professionals in Security Risk Management, and how can they be addressed?
Professionals in Security Risk Management often encounter challenges such as rapidly evolving threats, balancing security with business operations, and ensuring organization-wide compliance with regulations. Staying current with the latest risk trends and fostering cross-department collaboration are key strategies for overcoming these obstacles. Additionally, clear communication of risks to non-technical stakeholders and ongoing training are essential for building a proactive security culture and effective risk mitigation.
What is Security Risk Management?
Security Risk Management is the process of identifying, assessing, and mitigating risks to an organization's information, assets, and operations. It involves evaluating potential threats and vulnerabilities, determining their potential impact, and implementing strategies to minimize or control these risks. The goal is to protect the organization from security breaches, data loss, and other threats while ensuring compliance with legal and regulatory requirements. Security Risk Management is essential for maintaining business continuity and safeguarding reputation.
What is the difference between Security Risk Management vs Security Analyst?
| Aspect | Security Risk Management | Security Analyst |
|---|---|---|
| Certifications | CRISC, CISSP, CISM | CompTIA Security+, CISSP, CEH |
| Work Environment | Strategic, policy-focused, risk assessment | Operational, monitoring, incident response |
| Employer & Industry Usage | Organizations managing enterprise security risks | Security teams, cybersecurity firms, IT departments |
Security Risk Management focuses on identifying, assessing, and mitigating security risks at an organizational level, often involving policy development and strategic planning. In contrast, Security Analysts primarily monitor security systems, analyze threats, and respond to incidents. Both roles are essential but differ in scope and responsibilities within the cybersecurity field.
What are popular job titles related to Security Risk Management jobs in Kentucky? For Security Risk Management jobs in Kentucky, the most frequently searched job titles are:
What job categories do people searching Security Risk Management jobs in Kentucky look for? The top searched job categories for Security Risk Management jobs in Kentucky are:
Job description
Job Title: Vulnerability Management Consultant
Job Location: Erlanger, KY
Job Type: Contract
Job Description:
- Review Projects and their technical design documents for Information security risks and advise on suitable controls and mitigations at early stages of the program
- Fair understanding of Technology Landscape Applications Infrastructure Cloud and review
- Clients information security and related threats and vulnerabilities legal and regulatory
- requirements
- Good Understanding on Security Standards like ISO 270012 SOX ITGC SOC1 or SOC2
- DevSecOps OWASP top 10 Business Impact analysis ISO 22301 ISO 27005
- Assess and classify all potential business and infrastructure information risks
- Review and advise on information security risks of vendor offerings Newleveraging existing SAAS PAASIAAS services including integration with Client environment
- Conduct risk assessment on Applications Network Systems according to Client policies applicable Standards legal regulatory requirements
- Identify the risks in the Client Projects provide recommendations for remediation of identified risks
- Translate Technical legal and Regulatory Compliance obligations into a cohesive collection of Security Controls and provides the respective stakeholders with the IRM requirements and its implementation methodologies
- Identify or design the controls for implementation based on the outcome of Risk Assessment its remediation and residual risk
- Ensure all the controls outlined for an applicationInfrastructure are designed effectively
- Review Vulnerability Assessment and Penetration Test scan results and recommend the risks to be remediated
- Review and approve the control design of supplier and their organization technical specifications against Client security control requirements
- Ensure all the risks are documented classified and tracked with appropriate action as per the IRM standards
- Work with Project Managers Business Analysts Architecture and Support Team to ensure Client Information Risk Management standards are being followed
- Test the control effectiveness post implementation or deployment of controls and technologies
- Conduct Security governance with Client stakeholders
Technical Skills:
- Understanding of Cloud Security SAAS IAAS and PAAS and Onpremise infrastructure
- Understanding of secure application development and support
- Knowledge on Network Security Data Security Practices EndPoint Security Identity and
- Access Management
- Knowledge on Business Continuity Plan and Disaster Recovery
Key Words:
- Security Risk Assessment ISO 270012 SOX ITGC SOC1 or SOC2 DevSecOps OWASP
- top 10 Security Risk Management Business Impact analysis Design Controls Data
- Security Security Policy review Business Continuity Cloud Security Network Security
- Identity and Access Management ISO 22301 ISO 27005 Control testing Control
- assessment
Knowledge and Skills:
- Projects Stake holder Management Governance Management Reporting
- Very good communication skills Agile Project delivery
- Cloud Security controls Data Security SeInfo baselines Privacy requirements
Education:
- BTech CA MBA MS Info Sec MTech
- Industry Certifications
- ISO 27001 Lead Auditor or Lead Implementor CISA CRISC CISM CISSP
Mandatory Skills : Infra Vulnerability Management - Qualys, Infra Vulnerability Management - Rapid 7,Infra Vulnerability Management - Tenable IO, Infra Vulnerability Management - Tenable Nessus, SC, CS,Infra Vulnerability management/Triaging/ Remdiation Advisory / ServiceNow /ITSM /CMDB
About Staffingine
Sourced by ZipRecruiter
Industry
Recruiting and staffing services
Company size
51 - 200 Employees
Headquarters location
Atlanta, GA, US
Year founded
2016