1

Senior Cyber Security Risk Analyst Jobs in Oregon

Senior Analyst - Ukrainian Proficient Location: United States Work Environment: US Remote Role ... Use DDIQ and open-source research to identify risk-relevant information and determine its ...

... seeking a Cyber Security Analyst to support the Department of Veterans Affairs (VA) Health ... Experience with the VA Risk and Governance Tool Nice to Have: * Experience as a VA ISSO, ISO or ...

As the Senior Manager, Technology Risk you will lead the second-line technology and information ... Oversee completion of the FFIEC Cybersecurity Assessment Tool (CAT) or equivalent framework ...

$77K - $85K/yr

Conduct continuous security monitoring, vulnerability assessments, and risk analysis; coordinate ... CISSP, CISM, or equivalent senior security certification * Experience in a federal government or ...

New

Stay current on IT risk and cybersecurity trends * Mentor junior team members Qualifications ... Excellent analytical, communication, and client service skills Why MGO: We offer a collaborative ...

Performing vulnerability assessments, risk analysis, and security impact evaluations ... Developing and maintaining cybersecurity documentation, procedures, diagrams, and reports.

next page

Showing results 1-20

Senior Cyber Security Risk Analyst information

What are the key skills and qualifications needed to thrive as a Senior Cyber Security Risk Analyst, and why are they important?

To thrive as a Senior Cyber Security Risk Analyst, you need in-depth knowledge of risk assessment methodologies, cyber security frameworks (such as NIST or ISO 27001), and a strong background in IT or computer science, often supported by a bachelor's degree and relevant certifications. Familiarity with risk management tools, vulnerability scanning platforms, and security information and event management (SIEM) systems is typically required. Strong analytical thinking, communication skills, and the ability to influence stakeholders are critical soft skills for excelling in this role. These competencies help ensure organizations can proactively identify, assess, and mitigate security risks, thereby protecting sensitive assets and maintaining compliance.

What is the difference between Senior Cyber Security Risk Analyst vs Cyber Security Risk Analyst?

AspectSenior Cyber Security Risk AnalystCyber Security Risk Analyst
CertificationsCCSP, CISSP, CISACCSP, CISSP, CISA
Work EnvironmentMore strategic, leadership roles, mentoringOperational, technical risk assessments
ResponsibilitiesOversees risk management programs, policy developmentPerforms risk assessments, vulnerability analysis

The main difference lies in experience and scope. Senior Cyber Security Risk Analysts typically handle strategic planning and leadership, while Cyber Security Risk Analysts focus on technical risk assessments. Both roles require similar certifications and work within the same industry environment, but the senior position involves more oversight and decision-making responsibilities.

How much does a cybersecurity risk analyst make?

A cybersecurity risk analyst typically earns between $70,000 and $120,000 annually, depending on experience, certifications, and location. Senior analysts with specialized skills or certifications like CISSP or CISA can earn higher salaries, often exceeding $130,000. Salary ranges may vary based on industry and company size.

How does a Senior Cyber Security Risk Analyst typically collaborate with other departments to manage organizational risks?

A Senior Cyber Security Risk Analyst often works closely with IT, compliance, legal, and business units to assess and mitigate cybersecurity risks across the organization. This collaboration involves conducting risk assessments, sharing findings with relevant stakeholders, and developing strategies to address vulnerabilities. Effective communication and teamwork are essential, as the analyst must translate technical risks into business impacts and ensure all departments understand their roles in risk management. Regular meetings and cross-functional projects are common, fostering a proactive security culture throughout the organization.

What does a Senior Cyber Security Risk Analyst do?

A Senior Cyber Security Risk Analyst is responsible for identifying, assessing, and mitigating potential cybersecurity threats to an organization. They analyze security risks, develop strategies to protect sensitive data, and ensure compliance with industry regulations and best practices. Their role often involves conducting risk assessments, recommending security improvements, and collaborating with IT and business teams to strengthen the organization's overall cybersecurity posture.

Can you make $200,000 in cyber security?

Senior Cyber Security Risk Analysts can potentially earn $200,000 or more annually, especially with extensive experience, advanced certifications like CISSP, and working in high-demand industries or senior leadership roles. Salary varies based on location, company size, and individual expertise. Developing skills in risk assessment, threat management, and security frameworks can help achieve higher compensation levels.

Can you make $500,000 a year in cyber security?

Senior Cyber Security Risk Analysts typically earn between $100,000 and $200,000 annually, depending on experience, certifications, and location. Reaching a $500,000 salary usually requires advanced roles such as security executives or consultants with extensive expertise, often supplemented by bonuses or profit sharing. High salaries in cybersecurity are associated with senior leadership, specialized skills, and working in high-demand industries or large organizations.

Is 25 too late for cyber security?

For a Senior Cyber Security Risk Analyst, starting a career in cybersecurity at 25 is not too late, as many professionals transition into the field after gaining relevant skills, certifications like CISSP or CISM, and experience in IT or risk management. Age is less important than acquiring the necessary technical knowledge, problem-solving abilities, and staying current with evolving security threats.
What are popular job titles related to Senior Cyber Security Risk Analyst jobs in Oregon? For Senior Cyber Security Risk Analyst jobs in Oregon, the most frequently searched job titles are:
What job categories do people searching Senior Cyber Security Risk Analyst jobs in Oregon look for? The top searched job categories for Senior Cyber Security Risk Analyst jobs in Oregon are:
What cities in Oregon are hiring for Senior Cyber Security Risk Analyst jobs? Cities in Oregon with the most Senior Cyber Security Risk Analyst job openings:
Information Security Risk Analyst

Information Security Risk Analyst

Lam Research Corporation

Tualatin, OR • On-site

Full-time

Posted 8 days ago


Lam Research rating

8.7

Company rating: 8.7 out of 10

Based on 45 frontline employees who took The Breakroom Quiz

46th of 430 rated machine equipment manufacturers


Job description

Job Summary
The Cyber Threat Analytics Analyst is responsible for identifying, developing, and improving the organization's ability to detect malicious behavior, suspicious activity, and security anomalies across the enterprise. This role is part Information Security team focused on bringing detection development, threat analysis operationalization, SIEM correlation, behavioral analytics, and AI-assisted threat detection capabilities into the organization.The analyst will work closely with Security Operations, Incident Response, and Vulnerability Management teams to improve detection coverage, reduce false positives, and identify threats that may bypass traditional controls.
Job Responsibilities
  • Develop, test, tune, and maintain SIEM detection rules, log correlation searches, alerts, dashboards, and analytics.
  • Translate threat intelligence, adversary tactics, and emerging attack trends into actionable detections.
  • Build and improve analytics to identify malicious behavior, compromised accounts, lateral movement, and anomalous activity.
  • Use AI-driven analytics, UEBA, and behavioral baselining to identify activity that deviates from normal user, endpoint, network, cloud, and application behavior.
  • Map detection content to MITRE ATT&CK tactics and techniques to identify coverage strengths and gaps.
  • Partner with SOC analysts to improve alert triage, investigation playbooks, enrichment, and escalation criteria.
  • Support Incident Response during active investigations by analyzing logs, identifying patterns, and developing new detections from lessons learned.
  • Identify gaps in logging, telemetry, and visibility and recommend improvements to security monitoring coverage.
  • Document detection logic, assumptions, data sources, expected behavior, response guidance, and tuning decisions.
  • Track detection effectiveness, alert fidelity, false positive rates, detection coverage, and time-to-detect improvements.

Who We're Looking For
We are looking for an analytical and curious cybersecurity professional who enjoys finding patterns in large volumes of security data. The ideal candidate understands how attackers operate, how enterprise systems generate security telemetry, and how to turn threat intelligence into meaningful detections. The right person for this role should be comfortable working across SIEM data, endpoint telemetry, identity logs, cloud activity, email security events, network data, and behavioral analytics platforms. They should be able to think like an attacker, understand normal business behavior, and identify signals that indicate suspicious or malicious activity.
Strong candidates will have experience in one or more of the following areas:
  • Security Operations Center analysis
  • Threat hunting
  • SIEM rule development
  • Threat intelligence analysis
  • Incident response
  • Detection tuning
  • Behavioral analytics or UEBA
  • Cloud, endpoint, identity, or network security monitoring

Preferred Qualifications
  • Experience with SIEM platforms such as Microsoft Sentinel, Splunk, Exabeam, Securonix, or similar tools.
  • Experience writing detection queries using KQL, SPL, SQL, or similar query languages.
  • Familiarity with Microsoft Defender XDR, Defender for Endpoint, Defender for Identity, Microsoft Sentinel, Entra ID, or similar security platforms.
  • Understanding of MITRE ATT&CK and common adversary tactics, techniques, and procedures.
  • Experience using threat intelligence to create detections and threat hunting hypotheses.
  • Experience with AI-assisted analytics, UEBA, anomaly detection, or behavioral baselining.
  • Familiarity with cloud security monitoring across Azure, AWS, or Google Cloud.
  • Ability to analyze logs from identity systems, endpoints, firewalls, proxies, email gateways, SaaS applications, and cloud platforms.
  • Experience documenting detection logic, investigation steps, and response guidance.
  • Scripting or automation experience with Python, PowerShell, Logic Apps, or similar tools.
  • Familiarity with MISP, STIX/TAXII, threat intelligence feeds, or indicator management.
  • Certifications such as GCIH, GCIA, GCDA, GMON, GCTI, GCFA, Security+, CySA+, CISSP, or equivalent experience.

Our commitment
We believe it is important for every person to feel valued, included, and empowered to achieve their full potential. By bringing unique individuals and viewpoints together, we achieve extraordinary results.
Lam Research ("Lam" or the "Company") is an equal opportunity employer. Lam is committed to and reaffirms support of equal opportunity in employment and non-discrimination in employment policies, practices and procedures on the basis of race, religious creed, color, national origin, ancestry, physical disability, mental disability, medical condition, genetic information, marital status, sex (including pregnancy, childbirth and related medical conditions), gender, gender identity, gender expression, age, sexual orientation, or military and veteran status or any other category protected by applicable federal, state, or local laws. It is the Company's intention to comply with all applicable laws and regulations. Company policy prohibits unlawful discrimination against applicants or employees.
Lam offers a variety of work location models based on the needs of each role. Our hybrid roles combine the benefits of on-site collaboration with colleagues and the flexibility to work remotely and fall into two categories - On-site Flex and Virtual Flex. 'On-site Flex' you'll work 3+ days per week on-site at a Lam or customer/supplier location, with the opportunity to work remotely for the balance of the week. 'Virtual Flex' you'll work 1-2 days per week on-site at a Lam or customer/supplier location, and remotely the rest of the time.
Our Perks and Benefits
At Lam, our people make amazing things possible. That's why we invest in you throughout the phases of your life with a comprehensive set of outstanding benefits.

What Lam Research employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom


Lam Research logo

About Lam Research

Sourced by ZipRecruiter

Lam Research designs and builds products for semiconductor manufacturing, including equipment for thin film deposition, plasma etch, photoresist strip, and wafer cleaning processes.

Industry

Manufacturing

Company size

10,000+ Employees

Headquarters location

Fremont, CA, US

Year founded

1980

Social media