Company Description A Major International Bank in Midtown Manhattan is seeking an AVP of Information Security Risk Management. Fluency in Mandarin is required due to the nature of the Position/Client ...
Company Description A Major International Bank in Midtown Manhattan is seeking an AVP of Information Security Risk Management. Fluency in Mandarin is required due to the nature of the Position/Client ...
Security Risk Analyst - AI
New York, NY · Remote
$55 - $63/hr
Security Risk Assessment - experience with risk management frameworks and methodologies for applications, AI solutions, and medical devices. * Risk Remediation - experience drafting risk acceptances ...
Quick apply
Security Risk Analyst - AI
New York, NY · Remote
$55 - $63/hr
Security Risk Assessment - experience with risk management frameworks and methodologies for applications, AI solutions, and medical devices. * Risk Remediation - experience drafting risk acceptances ...
AI Security Risk Analyst
Manhattan, NY · Remote
$70 - $85/hr
Ability to maintain and enforce security risk management frameworks and methodologies - leveraging risk management methodologies to assess applications (in house or vendor applications/ AI solutions ...
AI Security Risk Analyst
Manhattan, NY · Remote
$70 - $85/hr
Ability to maintain and enforce security risk management frameworks and methodologies - leveraging risk management methodologies to assess applications (in house or vendor applications/ AI solutions ...
Senior/Staff TPM, Security Risk
New York, NY · On-site
$152K - $241K/yr
The Opportunity We are looking for a Security Risk Program Manager to take Grow Therapy's security risk program to the next level of maturity. Reporting directly to the Head of Security, you'll be ...
Senior/Staff TPM, Security Risk
New York, NY · On-site
$152K - $241K/yr
The Opportunity We are looking for a Security Risk Program Manager to take Grow Therapy's security risk program to the next level of maturity. Reporting directly to the Head of Security, you'll be ...
Then join our Risk Management and Data Security team in Enterprise Cybersecurity & Risk (ECR) at Estée Lauder Companies (ELC). Our Risk Management and Data Protection team is responsible for ...
Then join our Risk Management and Data Security team in Enterprise Cybersecurity & Risk (ECR) at Estée Lauder Companies (ELC). Our Risk Management and Data Protection team is responsible for ...
Information Security Risk Analyst
New Brunswick, NJ · On-site
$108K/yr
Acts as an SME for the end-to-end management of findings related to information security assessments for vendors and applications. * Assists in creating policies and procedures to help reduce risk.
Information Security Risk Analyst
New Brunswick, NJ · On-site
$108K/yr
Acts as an SME for the end-to-end management of findings related to information security assessments for vendors and applications. * Assists in creating policies and procedures to help reduce risk.
Management or participation in Cybersecurity, Information Security, Risk, Compliance and/or Data Privacy Programs or Projects * Sample projects/programs could include but are not limited to:
Management or participation in Cybersecurity, Information Security, Risk, Compliance and/or Data Privacy Programs or Projects * Sample projects/programs could include but are not limited to:
Head of Security & Risk
New York, NY · On-site +1
Build and Own Enterprise Risk Management : Build M0's enterprise risk program from scratch. Cover security, operational, regulatory, and counterparty risk, including the risk register, annual ...
Head of Security & Risk
New York, NY · On-site +1
Build and Own Enterprise Risk Management : Build M0's enterprise risk program from scratch. Cover security, operational, regulatory, and counterparty risk, including the risk register, annual ...
Build and Own Enterprise Risk Management : Build M0's enterprise risk program from scratch. Cover security, operational, regulatory, and counterparty risk, including the risk register, annual ...
Quick apply
Build and Own Enterprise Risk Management : Build M0's enterprise risk program from scratch. Cover security, operational, regulatory, and counterparty risk, including the risk register, annual ...
Management or participation in Cybersecurity, Information Security, Risk, Compliance and/or Data Privacy Programs or Projects * Sample projects/programs could include but are not limited to:
Management or participation in Cybersecurity, Information Security, Risk, Compliance and/or Data Privacy Programs or Projects * Sample projects/programs could include but are not limited to:
Lead, Risk Management
New York, NY · On-site
Risk Management Lead As the Cybersecurity Risk Management Lead within ECR's Risk and Solutions team, you will work to minimize overall security risk by identifying risks, monitoring requests through ...
Lead, Risk Management
New York, NY · On-site
Risk Management Lead As the Cybersecurity Risk Management Lead within ECR's Risk and Solutions team, you will work to minimize overall security risk by identifying risks, monitoring requests through ...
Security Risk Assessment Manager Location_formattedLocationLong: Newark, New Jersey US
Security Risk Assessment Manager Location_formattedLocationLong: Newark, New Jersey US
AI Risk Governance & Program Management * Lead the development, maintenance, and ongoing ... Identify emerging AI risks related to bias, explainability, data quality, security, resilience ...
AI Risk Governance & Program Management * Lead the development, maintenance, and ongoing ... Identify emerging AI risks related to bias, explainability, data quality, security, resilience ...
AI Risk Governance & Program Management * Lead the development, maintenance, and ongoing ... Identify emerging AI risks related to bias, explainability, data quality, security, resilience ...
AI Risk Governance & Program Management * Lead the development, maintenance, and ongoing ... Identify emerging AI risks related to bias, explainability, data quality, security, resilience ...
Description The Enterprise Technology & Security (ETS) Risk Director directs a team of risk professionals, developing comprehensive risk management strategies, and ensuring the organization ...
Description The Enterprise Technology & Security (ETS) Risk Director directs a team of risk professionals, developing comprehensive risk management strategies, and ensuring the organization ...
Description The Enterprise Technology & Security (ETS) Risk Director directs a team of risk professionals, developing comprehensive risk management strategies, and ensuring the organization ...
Description The Enterprise Technology & Security (ETS) Risk Director directs a team of risk professionals, developing comprehensive risk management strategies, and ensuring the organization ...
... security and risk management experience. - Advanced awareness of current information security standards and developments (CSF, NIST, ISO), the COSO framework, as well as the emerging cyber threat ...
... security and risk management experience. - Advanced awareness of current information security standards and developments (CSF, NIST, ISO), the COSO framework, as well as the emerging cyber threat ...
... security and risk management experience. - Advanced awareness of current information security standards and developments (CSF, NIST, ISO), the COSO framework, as well as the emerging cyber threat ...
... security and risk management experience. - Advanced awareness of current information security standards and developments (CSF, NIST, ISO), the COSO framework, as well as the emerging cyber threat ...
Clearly and concisely document and communicate risk assessment results with requester, security architects and management, as appropriate. * Conduct and formulate appropriate risk scoring, as it ...
Clearly and concisely document and communicate risk assessment results with requester, security architects and management, as appropriate. * Conduct and formulate appropriate risk scoring, as it ...
This function combines technical security, automation, and GRC expertise to strengthen HRT ... Vulnerability management * Vendor risk management * Penetration testing * Access management
This function combines technical security, automation, and GRC expertise to strengthen HRT ... Vulnerability management * Vendor risk management * Penetration testing * Access management
Security Risk Management information
See New York salary details
$11.31 - $17.24
2% of jobs
$17.24 - $23.17
0% of jobs
$23.17 - $29.10
1% of jobs
$29.10 - $35.03
1% of jobs
$35.03 - $40.95
1% of jobs
$45.40 is the 25th percentile. Wages below this are outliers.
$40.95 - $46.88
26% of jobs
$46.88 - $52.81
11% of jobs
The median wage is $54.93 / hr.
$52.81 - $58.74
22% of jobs
$58.74 - $64.67
9% of jobs
$65.14 is the 75th percentile. Wages above this are outliers.
$64.67 - $70.60
17% of jobs
$70.60 - $76.53
9% of jobs
$11
$55
$76
How much do security risk management jobs pay per hour?
As of Jun 28, 2026, the average hourly pay for security risk management in New York is $55.15, according to ZipRecruiter salary data. Most workers in this role earn between $44.71 and $65.77 per hour, depending on experience, location, and employer.
What are the typical challenges faced by professionals in Security Risk Management, and how can they be addressed?
Professionals in Security Risk Management often encounter challenges such as rapidly evolving threats, balancing security with business operations, and ensuring organization-wide compliance with regulations. Staying current with the latest risk trends and fostering cross-department collaboration are key strategies for overcoming these obstacles. Additionally, clear communication of risks to non-technical stakeholders and ongoing training are essential for building a proactive security culture and effective risk mitigation.
Can I make $200,000 a year in cyber security?
Security Risk Management professionals can potentially earn $200,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISM, and roles in high-demand industries or senior leadership positions. Salary levels vary based on location, company size, and individual expertise, but high-level cybersecurity roles often offer compensation in this range.
Can you make $500,000 a year in cyber security?
Security Risk Management professionals can potentially earn $500,000 or more annually, especially at senior levels, in leadership roles, or within large organizations. Achieving this income typically requires extensive experience, advanced certifications like CISSP or CISM, and expertise in high-demand areas such as threat intelligence or security architecture.
Is security risk management a good career?
Security risk management is a viable career that involves identifying, assessing, and mitigating security threats to organizations. It often requires certifications such as CISSP or CISM and skills in risk analysis, security policies, and incident response. The field offers opportunities across various industries with increasing demand for cybersecurity expertise.
What is Security Risk Management?
Security Risk Management is the process of identifying, assessing, and mitigating risks to an organization's information, assets, and operations. It involves evaluating potential threats and vulnerabilities, determining their potential impact, and implementing strategies to minimize or control these risks. The goal is to protect the organization from security breaches, data loss, and other threats while ensuring compliance with legal and regulatory requirements. Security Risk Management is essential for maintaining business continuity and safeguarding reputation.
What are the key skills and qualifications needed to thrive in Security Risk Management, and why are they important?
To excel in Security Risk Management, you need a solid understanding of risk assessment frameworks, cybersecurity principles, and compliance standards, often supported by a degree in information security or related fields. Familiarity with risk management tools, security incident response systems, and certifications such as CISSP or CISM is typically required. Strong analytical thinking, communication, and decision-making skills help professionals navigate complex threats and collaborate across departments. These competencies are crucial for effectively identifying, mitigating, and communicating risks to protect organizational assets and ensure regulatory compliance.
What is the difference between Security Risk Management vs Security Analyst?
| Aspect | Security Risk Management | Security Analyst |
|---|---|---|
| Certifications | CRISC, CISSP, CISM | CompTIA Security+, CISSP, CEH |
| Work Environment | Strategic, policy-focused, risk assessment | Operational, monitoring, incident response |
| Employer & Industry Usage | Organizations managing enterprise security risks | Security teams, cybersecurity firms, IT departments |
Security Risk Management focuses on identifying, assessing, and mitigating security risks at an organizational level, often involving policy development and strategic planning. In contrast, Security Analysts primarily monitor security systems, analyze threats, and respond to incidents. Both roles are essential but differ in scope and responsibilities within the cybersecurity field.
Is SOC 1 entry level?
SOC 1 (Service Organization Control 1) reports are audit reports used to evaluate internal controls at a service organization and are not job roles. In the context of security risk management, entry-level positions typically require foundational knowledge of security principles, certifications like CompTIA Security+ or CISSP, and experience with risk assessment tools, but SOC 1 itself is not an entry-level role.
What are popular job titles related to Security Risk Management jobs in New York? For Security Risk Management jobs in New York, the most frequently searched job titles are:
What job categories do people searching Security Risk Management jobs in New York look for? The top searched job categories for Security Risk Management jobs in New York are:
Full-time
Posted yesterday
Job description
Company Description
A Major International Bank in Midtown Manhattan is seeking an AVP of Information Security Risk Management.
Job Description
Fluency in Mandarin is required due to the nature of the Position/Client
CANDIDATES LOCAL TO THE NY/NJ METRO AREA ONLY. NO RE-LOCATION
FULL NAME AND CONTACT INFORMATION MUST BE INCLUDED ON THE RESUME
Job Description
- responsible for the day-to-day operation of the Bank's information security systems. This includes its organization, installation, support, and the validation and escalation of alerts when applicable.
- provide security, stability and reliability to all security infrastructure, policies and operations. Duties include security architecture reviews, the coordination of security projects, security monitoring and remediation, training, security alert notification and response and internal and external audits. Qualifications:
Qualifications
Have a Bachelor Degree or Master Degree of major in information technology/computer science
Have at least 5 years of relevant experience (information security/vulnerability management/security architecture/network and computer systems administration) in the financial services industry.
Experiences in systems administration such as Windows Server, Active Directory management, working with security tools like Nitro, Palo Alto and McAfee and in designing secure systems, assessing the validity of identified vulnerabilities are highly desirable.
Bilingual abilities in Chinese and English
Have at least 5 years of relevant experience (information security/vulnerability management/security architecture/network and computer systems administration) in the financial services industry.
Experiences in systems administration such as Windows Server, Active Directory management, working with security tools like Nitro, Palo Alto and McAfee and in designing secure systems, assessing the validity of identified vulnerabilities are highly desirable.
Bilingual abilities in Chinese and English
Additional Information
About Premium Technology
Sourced by ZipRecruiter
Industry
Finance and insurance
Company size
11 - 50 Employees
Headquarters location
NY, US
Year founded
2001