ZipRecruiter

Log In

1

Security Risk Jobs (NOW HIRING)

eBay, Inc.

Information Security Risk Manager

San Jose, CA · On-site

$172K - $229K/yr

Description The Information Security Risk Manager is responsible for managing the Global Information Security risk program across eBay. This individual will work directly with business leaders to ...

Grow Therapy

Senior/Staff TPM, Security Risk

New York, NY · On-site

$152K - $241K/yr

The Opportunity We are looking for a Security Risk Program Manager to take Grow Therapy's security risk program to the next level of maturity. Reporting directly to the Head of Security, you'll be ...

next page

Showing results 1-20

All JobsSecurity Risk Jobs

Security Risk information

See salary details

$10

$50

$69

How much do security risk jobs pay per hour?

As of Jun 29, 2026, the average hourly pay for security risk in the United States is $50.41, according to ZipRecruiter salary data. Most workers in this role earn between $40.87 and $60.10 per hour, depending on experience, location, and employer.

What is the difference between Security Risk vs Security Analyst?

AspectSecurity RiskSecurity Analyst
Required CredentialsKnowledge of security principles, risk assessment skillsCertifications like CompTIA Security+, CISSP, or CISA
Work EnvironmentIdentifying potential threats, assessing vulnerabilitiesMonitoring security systems, analyzing security data
Employer & Industry UsageUsed across industries to identify threatsCommonly employed in cybersecurity teams
Search & Comparison IntentUnderstanding risk factors and mitigationAnalyzing security incidents and improving defenses

Security Risk involves identifying and assessing potential threats to an organization, focusing on risk management strategies. Security Analysts, on the other hand, monitor and analyze security systems to detect and respond to threats. While both roles require security knowledge and certifications, Security Risk professionals focus on risk assessment, whereas Security Analysts are more involved in operational security monitoring.

What are security risk professionals?

Security risk professionals are experts who identify, assess, and mitigate potential threats to an organization's physical and digital assets. Their responsibilities include conducting risk assessments, developing security policies, and ensuring compliance with regulations. They work to minimize vulnerabilities that could lead to data breaches, theft, or other security incidents. These professionals may also train staff on security best practices and respond to security incidents as they arise.

Can you make $500,000 a year in cyber security?

Security risk professionals, such as senior cybersecurity managers or specialists with extensive experience and advanced certifications, can potentially earn $500,000 or more annually, especially in high-demand industries or senior leadership roles. Achieving this level typically requires a combination of specialized skills, leadership responsibilities, and often working in large organizations or consulting firms.

Is SOC 1 entry level?

SOC 1 (System and Organization Controls 1) reports are audit reports used by organizations to demonstrate controls over financial reporting. The term SOC 1 itself does not refer to a job role; however, professionals involved in SOC 1 audits, such as auditors or IT security specialists, typically require experience in internal controls and auditing standards, with entry-level roles often requiring relevant certifications like CPA or CISA. Entry-level positions in cybersecurity or audit firms may assist with SOC 1 assessments, but the certification and experience level vary by role.

What is the highest paying security job?

The highest paying security jobs are often executive-level roles such as Chief Security Officer (CSO) or Security Director, which can earn six-figure salaries. These positions typically require extensive experience, leadership skills, and knowledge of risk management, cybersecurity, and compliance.

What are some common challenges faced by Security Risk professionals, and how can they overcome them?

Security Risk professionals often face challenges such as staying updated with rapidly evolving threats, balancing security needs with business objectives, and gaining buy-in from stakeholders for risk mitigation strategies. To overcome these, it’s essential to engage in continuous learning, build strong cross-functional relationships, and communicate the value of security initiatives in business terms. Developing robust reporting and assessment processes can also help identify risks early and ensure effective collaboration across departments.

What are the key skills and qualifications needed to thrive as a Security Risk Analyst, and why are they important?

To thrive as a Security Risk Analyst, you need a strong understanding of information security principles, risk assessment methodologies, and relevant regulations, typically supported by a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), vulnerability assessment tools, and certifications like CISSP or CISM are highly valued. Analytical thinking, attention to detail, and effective communication skills help convey risk findings and collaborate with diverse stakeholders. These competencies are crucial for identifying threats, minimizing vulnerabilities, and ensuring organizational resilience against security risks.

Is security risk management a good career?

Security risk management is a growing field that involves identifying, assessing, and mitigating security threats to organizations. It requires strong analytical skills, knowledge of security protocols, and often certifications like CISSP or CISM. The profession offers opportunities in various industries, with increasing demand for professionals to protect digital and physical assets.
More about Security Risk jobs
What cities are hiring for Security Risk jobs? Cities with the most Security Risk job openings:
What states have the most Security Risk jobs? States with the most job openings for Security Risk jobs include:
What job categories do people searching Security Risk jobs look for? The top searched job categories for Security Risk jobs are:
Security Risk jobs near you
Infographic showing various Security Risk job openings in the United States as of June 2026, with employment types broken down into 73% Full Time, 25% Part Time, and 2% Contract. Highlights an 94% Physical, 2% Hybrid, and 4% Remote job distribution, with an average salary of $104,848 per year, or $50.4 per hour.
Security, Risk and Compliance Consultant

Security, Risk and Compliance Consultant

SEI

Phoenix, AZ

Other

Posted 19 days ago

Job description

WHAT WE DO

Our Security, Risk and Compliance consultants work with clients at all levels of the organization, from the C-suite to the shop floor, helping them to deliver on their most strategic initiatives. We're known for making realistic, data-driven decisions that deliver value in tangible ways to our clients. Our clients ask for us on projects that require a superior combination of technical and business capabilities, people and management skills, and a collaborative mindset. We excel in understanding complex programs and strategic initiatives and breaking them into actionable pieces.

We are actively looking for professionals in the following areas:

  • Compliance
  • Information Security
  • Risk Management
  • Data Privacy

The ideal candidate's experience may include but is not limited to the following:

  • Management or participation in Cybersecurity, Information Security, Risk, Compliance and/or Data Privacy Programs or Projects
    • Sample projects/programs could include but are not limited to:
      • Compliance framework mapping and implementation,
      • Regulatory mapping and implementation
      • Audit, risk or regulatory remediation management,
      • Readiness for new laws and regulations,
      • Risk, Compliance or Information Security risk reporting and monitoring
      • Creation of roadmaps to mature or advance Risk, Compliance or Information Security Strategies/Programs/Controls
      • Design and enablement of cyber controls functions and processes
      • Change management related to regulatory adoption or compliance changes
      • Audit or certification readiness
    • Familiarity or direct experience with GRC/Cybersecurity solutions, tools and technologies
    • Control design or maturation for high-demand technical areas such as ERP, Identity and Access Management, Business Continuity and Resiliency, Cloud
    • Knowledge of and/or application of industry specific regulations, laws, and standards such as the EU-GDPR, CCPA/CPRA, HIPAA, PCI
    • Knowledge of and/or application of compliance and security frameworks and standards such as COSO, NIST, ISO
    • Management of regulatory, internal or external audits, or experience as an auditor
    • Projects or roles requiring coordination across lines of defense working with technical, business, compliance, risk and audit teams to deliver solutions
    • Work or projects with military or federal government agencies in Risk, Compliance or Information Security/Cyber Security sectors
    • Certifications: CIPP, CRCM, CRM, ARM, CISSP, CISM

QUALIFICATIONS

Required-

  • Alignment to our core values: Excellence, Participation, Integrity, and Collaboration
  • Hungry, Humble, Smart
  • Demonstrated business and technology acumen
  • Strong written and verbal communication skills
  • Understanding and experience solving real business problems
  • Proven track record of delivering results
  • Experience working with and/or leading a team
  • Ability to work across industries, roles, functions & technologies
  • Authorization for permanent employment in the United States (this position is not eligible for immigration sponsorship)

Preferred-

  • Bachelor's degree
  • 8+ years professional experience
  • Experience across our service offerings

The Company collects and uses Personal Information for human resources, employment, benefits administration, and business-related purposes.  To comply with our regulatory obligations under the California Consumer Privacy Act ("CCPA"), the Company is required to notify you of the Personal Information we collect.  To access our CCPA Policy including the categories of Personal Information we collect and the purposes for which we intend to use this information, please visit SEI's Privacy Policy.

Apply