1

Senior Information Security Risk Analyst Jobs (NOW HIRING)

As a Senior Cyber Risk Analyst, you will manage the Cyber Risk Management Program and ensure the ... Required : • 5+ years of technical experience in information security, risk management, or GRC ...

next page

Showing results 1-20

Senior Information Security Risk Analyst information

See salary details

$31

$58

$75

How much do senior information security risk analyst jobs pay per hour?

As of Jul 6, 2026, the average hourly pay for senior information security risk analyst in the United States is $58.45, according to ZipRecruiter salary data. Most workers in this role earn between $45.43 and $65.62 per hour, depending on experience, location, and employer.

What is the difference between Senior Information Security Risk Analyst vs Information Security Analyst?

AspectSenior Information Security Risk AnalystInformation Security Analyst
CertificationsCISSP, CISA, CRISCCISSP, Security+, CEH
Work EnvironmentFocus on risk assessment, policy development, and strategic planningImplementing security measures, monitoring, and incident response
Employer & Industry UsageFinancial, healthcare, and large enterprises with complex security needsVariety of industries, including tech, retail, and government

Senior Information Security Risk Analysts typically handle advanced risk assessments and strategic security planning, often requiring certifications like CISSP or CISA. Information Security Analysts focus on implementing security controls and monitoring systems. Both roles are vital in maintaining organizational security but differ in scope and seniority.

How does a Senior Information Security Risk Analyst typically collaborate with other departments to manage organizational risk?

A Senior Information Security Risk Analyst regularly works with various departments such as IT, legal, compliance, and business units to identify and address security risks. This collaboration often includes conducting risk assessments, reviewing new projects for potential vulnerabilities, and providing guidance on security best practices. Effective communication skills are essential, as the analyst must translate technical risks into business impacts and help teams implement appropriate controls. Close teamwork ensures that security is integrated into all business processes and that the organization remains compliant with relevant regulations.

What are the key skills and qualifications needed to thrive as a Senior Information Security Risk Analyst, and why are they important?

A Senior Information Security Risk Analyst requires a deep understanding of cybersecurity frameworks, risk assessment methodologies, and regulatory compliance, usually backed by a degree in information security or a related field. Familiarity with tools like risk management software (e.g., Archer, RSA), SIEM systems, and certifications such as CISSP, CISM, or CRISC are typically expected. Exceptional analytical thinking, attention to detail, and strong communication skills set top performers apart in this role. These competencies are crucial to effectively identify, evaluate, and mitigate security risks, ensuring the organization's information assets remain protected against evolving threats.

What does a Senior Information Security Risk Analyst do?

A Senior Information Security Risk Analyst is responsible for identifying, evaluating, and mitigating risks to an organization's information systems and data. They conduct risk assessments, develop security policies, and recommend measures to protect against cyber threats and vulnerabilities. Additionally, they work closely with IT and business teams to ensure compliance with regulations and industry standards, and they often play a key role in incident response and security awareness training.
More about Senior Information Security Risk Analyst jobs
What cities are hiring for Senior Information Security Risk Analyst jobs? Cities with the most Senior Information Security Risk Analyst job openings:
What states have the most Senior Information Security Risk Analyst jobs? States with the most job openings for Senior Information Security Risk Analyst jobs include:
What job categories do people searching Senior Information Security Risk Analyst jobs look for? The top searched job categories for Senior Information Security Risk Analyst jobs are:
Senior Cyber Risk Analyst

Senior Cyber Risk Analyst

Tempus AI

Chicago, IL • On-site

Full-time

Posted 22 days ago


Tempus AI rating

7.8

Company rating: 7.8 out of 10

Based on 8 frontline employees who took The Breakroom Quiz

108th of 202 rated software companies


Job description

Job Summary:
Tempus AI is a company focused on advancing the healthcare industry through precision medicine. As a Senior Cyber Risk Analyst, you will manage the Cyber Risk Management Program and ensure the organization's cybersecurity posture is robust and compliant with regulatory standards.
Responsibilities:
• Own the Risk Lifecycle: Serve as the primary owner for the "care and feeding" of the Cyber Risk Register. Oversee the end-to-end lifecycle of cybersecurity risks, including identification, logging, analysis, treatment tracking, and closure.
• Apply standardized risk assessment methodologies to accurately calculate risk impact/severity, likelihood/occurence, and controls/detectability, ensuring risks are prioritized effectively.
• Develop and maintain intuitive risk dashboards and Key Risk Indicators (KRIs). Provide clear, data-driven reports to the Director of Data Security, the CISO, and executive leadership regarding our current risk posture and remediation progress.
• Actively support the broader Enterprise Risk Management (ERM) program by translating technical cyber risks into business impacts, ensuring seamless reporting to ERM leadership.
• Provide technical expertise during Mergers and Acquisitions (M&A). Conduct pre-acquisition security risk analyses and ensure post-acquisition inherited risks are properly ingested into the Cyber Risk Register and tracked to remediation.
• Coordinate with Technology, Legal, and Security teams to ensure risk mitigation efforts align with required regulatory standards (e.g., HIPAA, HITRUST, GDPR, ISO 27001)
Qualifications:
Required:
• 5+ years of technical experience in information security, risk management, or GRC within the technology, AI, or healthcare industries.
• Deep understanding of cybersecurity principles, threat landscapes, and control frameworks (e.g., NIST CSF, NIST 800-53, ISO 27001, HITRUST).
• Proven track record of building, maintaining, or heavily contributing to a Cyber Risk Register.
• Experience with risk quantification methodologies and leading GRC platforms (e.g., ServiceNow GRC, RSA Archer, AuditBoard, or similar).
• Exceptional ability to manage multiple concurrent programs, working proactively to align multi-disciplinary stakeholders toward secure outcomes.
• Excellent written and verbal communication skills.
• Ability to act as a 'translator' of risk—taking complex technical vulnerabilities and clearly articulating the business risk to diverse teams of biologists, medical professionals, engineers, operators, and data scientists.
Company:
Tempus is a technology company advancing precision medicine through the practical application of artificial intelligence in healthcare. Founded in 2015, the company is headquartered in Chicago, USA, with a team of 1001-5000 employees. The company is currently Late Stage.

What Tempus AI employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom