ZipRecruiter

Log In

2

Work From Home Security Risk Analyst Jobs (NOW HIRING)

CivicPlus, LLC

Information Security Risk Analyst

$70K - $101K/yr

What We're Looking For We know that excellent candidates come from diverse backgrounds. Even if you ... Applicants must be authorized to work in the US. * We encourage you to apply as soon as possible ...

Apogee Global RMS

Risk Analyst

San Jose, CA · On-site +1

The team's work supports client advisory engagements, executive briefings, and the firm's broader ... Bachelor's degree in a relevant field, such as intelligence studies, security studies ...

Apogee Global RMS

Risk Analyst

San Jose, CA · Remote

The team's work supports client advisory engagements, executive briefings, and the firm's broader ... Bachelor's degree in a relevant field, such as intelligence studies, security studies ...

Apogee Global RMS

Risk Analyst

San Jose, CA · Remote

The team's work supports client advisory engagements, executive briefings, and the firm's broader ... Bachelor's degree in a relevant field, such as intelligence studies, security studies ...

Pavago

Risk Analyst

... compliance, IT, security, legal, and executive leadership teams. Responsibilities Risk ... • Work closely with finance, operations, legal, compliance, IT, and business leaders to ...

Fin

Risk Analyst

New York, NY · Remote

$100K - $175K/yr

... assessment framework from the ground up. Key Responsibilities * Develop and implement a ... Lead cross-functional risk assessments for new product launches, ensuring security and fraud ...

next page

Showing results 1-20

People also search for

All JobsWork From Home Security Risk Analyst Jobs

Work From Home Security Risk Analyst information

See salary details

$10

$50

$69

How much do work from home security risk analyst jobs pay per hour?

As of Jun 4, 2026, the average hourly pay for work from home security risk analyst in the United States is $50.41, according to ZipRecruiter salary data. Most workers in this role earn between $40.87 and $60.10 per hour, depending on experience, location, and employer.

What is a Work From Home Security Risk Analyst job?

A Work From Home Security Risk Analyst is responsible for identifying, assessing, and mitigating security risks related to remote work environments. They analyze potential threats, ensure compliance with security policies, and recommend solutions to protect company data and systems. This role often involves working with IT and cybersecurity teams to strengthen security protocols and prevent breaches. Additionally, they may conduct security audits, develop risk management strategies, and train employees on best practices for remote work security.

What are the key skills and qualifications needed to thrive in the Work From Home Security Risk Analyst position, and why are they important?

To thrive as a Work From Home Security Risk Analyst, you need a strong understanding of information security principles, risk assessment methodologies, and analytical thinking, typically supported by a relevant degree or experience in cybersecurity or a related field. Familiarity with industry-standard frameworks (such as NIST or ISO 27001), tools like vulnerability scanners, SIEM platforms, and certifications like CISSP or CISA, is highly valued. Excellent communication, attention to detail, and self-motivation are vital soft skills for working independently and effectively with remote teams. These competencies are crucial for accurately identifying threats, assessing risk, and enabling secure business operations in a virtual work environment.

What are typical challenges faced by Work From Home Security Risk Analysts, and how can they be addressed?

One common challenge for Work From Home Security Risk Analysts is ensuring secure communication and collaboration with colleagues across remote environments and diverse time zones. Maintaining up-to-date knowledge of emerging threats and compliance requirements can also be demanding, given the rapidly evolving cybersecurity landscape. To address these challenges, it's helpful to leverage secure collaboration tools, maintain regular communication with your team, and participate in ongoing training or industry forums. Consistent workflow organization and proactive problem-solving also contribute to success in this dynamic, remote role.

How to make $80,000 a year working from home?

A Work From Home Security Risk Analyst can earn $80,000 or more annually by gaining relevant certifications such as CISSP or CISA, developing strong cybersecurity skills, and gaining experience in risk assessment and threat analysis. Many roles offer remote work options and flexible schedules, with salaries increasing with expertise and responsibility. Building a strong professional network and staying current with industry tools can also help achieve higher income levels.
More about Work From Home Security Risk Analyst jobs
What cities are hiring for Work From Home Security Risk Analyst jobs? Cities with the most Work From Home Security Risk Analyst job openings:
What states have the most Work From Home Security Risk Analyst jobs? States with the most job openings for Work From Home Security Risk Analyst jobs include:
What job categories do people searching Work From Home Security Risk Analyst jobs look for? The top searched job categories for Work From Home Security Risk Analyst jobs are:
Work From Home Security Risk Analyst jobs near you
Infographic showing various Work From Home Security Risk Analyst job openings in the United States as of May 2026, with employment types broken down into 2% Locum Tenens, 2% As Needed, 65% Full Time, 28% Part Time, 1% Contract, and 2% Nights. Highlights an 94% Physical, 2% Hybrid, and 4% Remote job distribution, with an average salary of $104,848 per year, or $50.4 per hour.
Information Security Risk Analyst

Information Security Risk Analyst

CivicPlus, LLC

Remote

$70K - $101K/yr

Full-time

Medical, Dental, Vision, Retirement

This job post has expired today. Applications are no longer accepted.

CivicPlus rating

7.5

Company rating: 7.5 out of 10

Based on 5 frontline employees who took The Breakroom Quiz

119th of 185 rated software companies

Job description

Description
Your Impact
The Information Security Risk Analyst is responsible for identifying, assessing, tracking, and communicating information security risks across the organization. This role supports a maturing cybersecurity program by managing acceptable enterprise and third-party risks and leading security training initiatives.
About CivicPlus
At CivicPlus, we strive to bring our company vision to life through innovation and collaboration. Supported by approachable leadership and transparent communication, we're empowered to make an impact on local government and the residents they serve. Grow your career alongside great people, where authenticity is welcome, successes are celebrated, and potential is nurtured.
What You'll Do
As an InfoSec Risk Analyst, you will:
  • Identify and translate inherent and residual risk through likelihood, impact, treatment plans, and ownership.
  • Define and track risk and awareness key metrics to measure program effectiveness and communicate to leadership and governance committees.
  • Conduct and manage enterprise information security risk assessment through recognized frameworks (including NIST 800-30) and maintain an information security risk register.
  • Lead third-party security risk assessments for vendors, partners, and service providers through analysis of assurance documentation, security testing summaries, and security questionnaires.
  • Maintain the information security risk register and third-party vendor risk inventory to track and monitor ongoing risks and approved exceptions.
  • Develop and lead enterprise security awareness training, including phishing simulations and targeted role-based training for security education and reporting.
  • Support internal and external security and compliance assessments through risk evidence and documentation.
  • Partner closely with organizational functions and key stakeholders to understand and address organizational risks across systems and processes, and ensure security risks are understood, prioritized, and treated in alignment with organizational risk appetite.

What We're Looking For
We know that excellent candidates come from diverse backgrounds. Even if you don't meet 100% of the listed requirements, we encourage you to apply!
Preferred Qualifications:
Experience
  • 4 - 6 Years of experience in information security, cybersecurity, risk management, or related field
  • Working experience managing enterprise/third-party risk assessments, risk registers, and security training programs.
  • Working experience supporting compliance audits and certifications, including NIST 800-53 (FedRAMP/GovRAMP), ISO 27001, PCI, and/or SOC 2

Certifications
  • Security+, GSEC, or equivalent
  • Bachelor's degree in Cybersecurity, Information Security, Information Systems, Risk Management, or a related field (preferred)

Skills
  • Strong understanding of cybersecurity risk management principles and methodologies (such as NIST 800-30), modern security control frameworks (such as NIST 800-53), and Cloud / SaaS risk management and considerations (AWS, Azure, GCP)
  • Ability to translate and communicate technical risks into clear business impact for non-technical stakeholders, including metrics (KPIs/KRIs) reporting and presentation
  • Development of risk management and assessment policy and procedure documentation
  • Inquisitive mindset for continuous monitoring and improvement within a mature security program

Why CivicPlus?
This role offers:
  • Shape how security risk is managed across CivicPlus. Identify, assess, and guide the treatment of enterprise and third-party risks that impact our platforms and customers.
  • Turn complex security risk into clear business insight. Partner with leaders across the organization to translate technical risk into actionable decisions.
  • Build a stronger security culture. Lead enterprise security awareness initiatives, including phishing simulations and role-based training that help employees stay ahead of threats.
  • Contribute to a growing cybersecurity program. Help mature risk management practices, frameworks, and reporting that strengthen CivicPlus' overall security posture.

Compensation and Benefits
  • Estimated Salary Grade Range: $70,300 - $101,300
    • Anticipated Hiring Range: $70,000 - $80,000
    • The actual salary offer will carefully consider a wide range of factors, including your skills, qualifications, experience and is based on a 40-hour work week.
  • Benefits: Comprehensive health insurance, dental insurance, vision insurance, Flexible Time Off, 401(k) plan, and more.

Our Hiring Process
  • Introductory call with Talent Acquisition
  • Interview with the Hiring Manager
  • Interviews with Team Leadership (may include multiple conversations)
  • Offer

Note: The process may vary slightly depending on the role.
Additional Information
  • CivicPlus is currently unable to provide visa sponsorship for this position now or in the future. Applicants must be authorized to work in the US.
  • We encourage you to apply as soon as possible, as applications will be reviewed on a rolling basis, and the posting may close earlier at the discretion of the Talent Acquisition team
  • At CivicPlus, we embrace AI and automation as tools that help people work smarter, move faster, and focus on higher-value work that strengthens communities. We encourage thoughtful, responsible use of technology to improve efficiency, support innovation, and enhance the employee and customer experience-while keeping human judgment, collaboration, and accountability at the center of what we do.

Equal Opportunity Commitment
CivicPlus is proud to be an Equal Employment Opportunity employer. We celebrate and support diversity for the benefit of our employees, products, clients, and communities. Reasonable accommodations are available during the interview process.

Apply