Principal Engineer I, Cyber - IT Security Governance Location: CityScape What you'll do: As a ... Strong analytical mindset with the ability to use data and automation to enhance risk ...
Principal Engineer I, Cyber - IT Security Governance Location: CityScape What you'll do: As a ... Strong analytical mindset with the ability to use data and automation to enhance risk ...
Designing data models for risk and controls domains, including key risk indicators, issues and ... analytics and dashboards. * Implementing data quality checks, lineage, metadata, and access ...
Designing data models for risk and controls domains, including key risk indicators, issues and ... analytics and dashboards. * Implementing data quality checks, lineage, metadata, and access ...
Cloud Security Senior Consultant - M365
$56.50 - $77/hr
Document platform technical issues, analysis, client communication, and resolution as part of cyber risk mitigation steps. * Execute on M365 security engagements during different phases of the ...
Cloud Security Senior Consultant - M365
$56.50 - $77/hr
Document platform technical issues, analysis, client communication, and resolution as part of cyber risk mitigation steps. * Execute on M365 security engagements during different phases of the ...
Develop, tune, and support analytics/detection rules, including performance monitoring and ... Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Threat ...
Develop, tune, and support analytics/detection rules, including performance monitoring and ... Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Threat ...
Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Incident ... Hands-on experience with Microsoft Sentinel, Azure Monitor, Log Analytics, Data Collection Rules ...
Risk & Compliance * Identity & Access Management * Data Protection * Cyber Design * Incident ... Hands-on experience with Microsoft Sentinel, Azure Monitor, Log Analytics, Data Collection Rules ...
Includes design of the cyber organization, governance, and risk assessments. Qualifications ... Analyzing processes, controls, and tools to identify opportunities for ServiceNow configuration and ...
Includes design of the cyber organization, governance, and risk assessments. Qualifications ... Analyzing processes, controls, and tools to identify opportunities for ServiceNow configuration and ...
Consultant - ServiceNow
Columbus, OH · Remote
Includes design of the cyber organization, governance, and risk assessments. Qualifications ... Analyzing processes, controls, and tools to identify opportunities for ServiceNow configuration and ...
Consultant - ServiceNow
Columbus, OH · Remote
Includes design of the cyber organization, governance, and risk assessments. Qualifications ... Analyzing processes, controls, and tools to identify opportunities for ServiceNow configuration and ...
... processes and cyber risk management in an OT / SCADA environment in two or more areas such as: * Cyber security * Secure Supply Chain * Security Analytics * Security Operations Centers
... processes and cyber risk management in an OT / SCADA environment in two or more areas such as: * Cyber security * Secure Supply Chain * Security Analytics * Security Operations Centers
... processes and cyber risk management in an OT / SCADA environment in two or more areas such as: * Cyber security * Secure Supply Chain * Security Analytics * Security Operations Centers
... processes and cyber risk management in an OT / SCADA environment in two or more areas such as: * Cyber security * Secure Supply Chain * Security Analytics * Security Operations Centers
You'll play a key role in proactive cyber defense by collaborating across InfoSec teams, enhancing ... Use internal and external threat intelligence, risk insights, and adversary behavior research to ...
You'll play a key role in proactive cyber defense by collaborating across InfoSec teams, enhancing ... Use internal and external threat intelligence, risk insights, and adversary behavior research to ...
Risk Manager - Insurance
$110K - $145K/yr
Conduct comprehensive risk evaluations across property, casualty, liability, professional, cyber, and related exposures to identify risk profiles. * Exposure Analysis: Analyze loss history ...
Risk Manager - Insurance
$110K - $145K/yr
Conduct comprehensive risk evaluations across property, casualty, liability, professional, cyber, and related exposures to identify risk profiles. * Exposure Analysis: Analyze loss history ...
Leading Azure cloud cyber risk engagements across governance, identity, application security ... Experience with Azure data, analytics, or artificial intelligence and machine learning services The ...
Leading Azure cloud cyber risk engagements across governance, identity, application security ... Experience with Azure data, analytics, or artificial intelligence and machine learning services The ...
Cloud Security Senior Consultant - Azure Infrastructure & AI
Columbus, OH · On-site
$63.25 - $84/hr
Supporting delivery of Azure cloud cyber risk engagements across governance, identity, application ... Experience with Azure data, analytics, or artificial intelligence and machine learning services The ...
Cloud Security Senior Consultant - Azure Infrastructure & AI
Columbus, OH · On-site
$63.25 - $84/hr
Supporting delivery of Azure cloud cyber risk engagements across governance, identity, application ... Experience with Azure data, analytics, or artificial intelligence and machine learning services The ...
... analytics, and AI-enabled capabilities. * Own the third-party risk framework and partner across Procurement, Finance, Legal, Cyber, Risk, and Technology to strengthen vendor governance, manage risk ...
... analytics, and AI-enabled capabilities. * Own the third-party risk framework and partner across Procurement, Finance, Legal, Cyber, Risk, and Technology to strengthen vendor governance, manage risk ...
Supporting delivery of Azure cloud cyber risk engagements across governance, identity, application ... Experience with Azure data, analytics, or artificial intelligence and machine learning services The ...
Supporting delivery of Azure cloud cyber risk engagements across governance, identity, application ... Experience with Azure data, analytics, or artificial intelligence and machine learning services The ...
CYBER SECURITY
Delaware, OH · On-site
This role focuses on monitoring cyber threats, detecting vulnerabilities, and ensuring the security ... Assessment, Risk Analysis, SIEM Tools, Network Security, Endpoint Security, Identity & Access ...
CYBER SECURITY
Delaware, OH · On-site
This role focuses on monitoring cyber threats, detecting vulnerabilities, and ensuring the security ... Assessment, Risk Analysis, SIEM Tools, Network Security, Endpoint Security, Identity & Access ...
VP IT Information Security & Audit
Columbus, OH · On-site
$149K - $187K/yr
... cyber risk in an always-on manufacturing environment. Our company enjoys a modern technology stack, including SAP HANA on Microsoft Azure for ERP and Microsoft-based platforms for data, analytics ...
VP IT Information Security & Audit
Columbus, OH · On-site
$149K - $187K/yr
... cyber risk in an always-on manufacturing environment. Our company enjoys a modern technology stack, including SAP HANA on Microsoft Azure for ERP and Microsoft-based platforms for data, analytics ...
IT Vendor Financials & Contract Manager
Columbus, OH · On-site +1
Partner with Procurement, Legal, Finance, Cyber, Risk, and Service Area owners to ensure vendor ... Performance Analytics (PA) * Strategic Portfolio Management (SPM) * IT Service Management (ITSM ...
IT Vendor Financials & Contract Manager
Columbus, OH · On-site +1
Partner with Procurement, Legal, Finance, Cyber, Risk, and Service Area owners to ensure vendor ... Performance Analytics (PA) * Strategic Portfolio Management (SPM) * IT Service Management (ITSM ...
SAP Security and GRC Manager / Engineering Manager II Our Deloitte Cyber team helps organizations ... Configure and implement SAP GRC Access Control capabilities, including Access Risk Analysis, Access ...
SAP Security and GRC Manager / Engineering Manager II Our Deloitte Cyber team helps organizations ... Configure and implement SAP GRC Access Control capabilities, including Access Risk Analysis, Access ...
The team leads a strategic cyber risk program that adapts to a rapidly changing threat landscape ... Networking knowledge and experience in traffic analysis using tools such as Wireshark. * Experience ...
The team leads a strategic cyber risk program that adapts to a rapidly changing threat landscape ... Networking knowledge and experience in traffic analysis using tools such as Wireshark. * Experience ...
Cyber Risk Analyst information
See salary details
$44.5K - $54.2K
9% of jobs
$54.2K - $63.9K
2% of jobs
$63.9K - $73.5K
6% of jobs
$73.5K - $83.2K
1% of jobs
$87.2K is the 25th percentile. Wages below this are outliers.
$83.2K - $92.9K
17% of jobs
$92.9K - $102.6K
11% of jobs
The median wage is $106.5K / yr.
$102.6K - $112.3K
11% of jobs
$112.3K - $122K
17% of jobs
$123.6K is the 75th percentile. Wages above this are outliers.
$122K - $131.6K
10% of jobs
$131.6K - $141.3K
13% of jobs
$141.3K - $151K
4% of jobs
$44.5K
$107.5K
$151K
How much do cyber risk analyst jobs pay per year?

Full-time
Medical, Dental, Retirement
Re-posted 7 days ago
Job description
Job Title:
Principal Engineer I, Cyber - IT Security GovernanceLocation:
CityScapeWhat you'll do:
As a Principal IT Security Governance Engineer, you will serve as a senior individual contributor responsible for leading and advancing the organization's cybersecurity governance, risk management, and maturity initiatives. This role combines deep expertise in cyber risk, control design, CRI Profile maturity, and policy management with a strong understanding of modern engineering practices, data, automation, and AI-driven capabilities.You will drive complex, cross-functional initiatives that embed secure, compliant, and scalable practices into technology, data, and AI solutions, ensuring alignment with enterprise risk management objectives and regulatory expectations. This includes designing and implementing governance frameworks, control structures, and engineering-enabled solutions that enhance the effectiveness, consistency, and automation of risk assessments, RCSAs, and control monitoring.
In this role, you will act as both a governance and technical authority, partnering closely with engineering, data, and risk teams to translate evolving technologies into defensible, regulator-ready processes, controls, and documentation. You will leverage data, automation, and AI to improve visibility into risk posture, drive operational efficiency, and enable sustained improvements in cybersecurity maturity and program scalability.
- Own and lead cybersecurity governance initiatives spanning risk identification, control design, policy management, and maturity improvement.
- Serve as a subjectmatter expert for cyber risk management, providing guidance on control effectiveness, risk treatment, and residual risk decisions.
- Drive execution of cybersecurity Risk & Control SelfAssessments (RCSAs), ensuring alignment to ERM standards and regulatory expectations.
- Own and manage CRI Profile assessments, maturity scoring, evidence standards, and remediation tracking. Partner with technology, security, and risk teams to drive improved and sustained maturity gains.
- Maintain traceability between risks, controls, assessment results, and remediation activities.
- Lead the development, maintenance, and rationalization of cybersecurity policies, standards, and procedures in alignment with industry best practices (e.g., GLBA, FFIEC, NIST).
- Design, document, and maintain cyber risk statements, control descriptions, and control narratives suitable for audits and regulatory exams.
- Support internal audits, regulatory exams, and second line credible challenge through structured responses, evidence packaging, and issue management.
- Track and report on control performance, risk posture, and remediation progress using defined metrics and governance forums.
- Manage complex projects requiring coordination across IT, Information Security, ERM, Privacy, and Audit.
- Act as a trusted advisor to senior leaders on risk posture, maturity trends, and program health.
- Produce clear, executiveready artifacts including risk summaries, maturity dashboards, remediation roadmaps, and briefing materials.
- Develop and maintain automation solutions (e.g., scripting, workflow tools, AI-assisted processes) to improve efficiency of risk assessments, control testing, and evidence collection.
- Enable data-driven insights and reporting through engineering-oriented solutions (e.g., dashboards, metrics automation, control monitoring).
- Drive integration of AI and automation into RCSA, CRI assessments, and risk reporting processes to improve scalability, consistency, and accuracy.
What you'll need:
- 8+ years of related experience in Cybersecurity, Information Security Governance, IT Risk, or Enterprise Risk Management.
- Bachelor's degree in Information Systems, Computer Science, Cybersecurity, Risk Management, or a related field. Masters or MBA in related field preferred.
- Advanced to expert experience with:
- Cyber Risk Management frameworks (NIST CSF, CRI Profile, FFIEC, ISO 27001 principles).
- RCSAs, risk identification, control design, and residual risk assessment.
- Policy, standard, and procedure lifecycle management.
- Regulatory and audit engagement support in a financial services environment.
- Strong ability to translate complex technical and regulatory concepts into clear, defensible documentation.
- Proven experience managing cross functional initiatives with competing priorities.
- Expert speaking and writing communication skills.
- Demonstrated experience leveraging or governing AI/ML, automation, or advanced analytics within cybersecurity, risk, or compliance domains preferred.
- Strong understanding of data architectures, data flows, and system integrations, with the ability to assess associated cyber and privacy risks preferred.
- Familiarity with emerging regulatory expectations related to AI, model risk, and data usage in financial services preferred.
- Working knowledge of software engineering or scripting practices (e.g., Python, PowerShell, automation workflows) to support scalable governance solutions preferred.
- Strong analytical mindset with the ability to use data and automation to enhance risk identification, monitoring, and reporting preferred.
- Relevant industry certifications (e.g., CISA, CRISC, CISSP, CISM, CGEIT, ITIL) preferred.
Benefits you'll love:
We offer all the important things you'd want - like competitive salaries, an ownership stake in the company, medical and dental insurance, time off, a great 401k matching program, tuition assistance program, an employee volunteer program, and a wellness program. In addition, you'll have the opportunity to bolster your business knowledge, learning the ins and outs of how successful companies operate and manage their finances, giving you invaluable hands-on experience to help grow your career!
About the company:
Western Alliance Bank, Member FDIC, is a wholly owned subsidiary of Western Alliance Bancorporation. Serving clients nationwide, Western Alliance Bank includes six legacy bank brands - Alliance Association Bank, Alliance Bank of Arizona, Bank of Nevada, Bridge Bank, First Independent Bank and Torrey Pines Bank - that remain part of the company's heritage, as well as AmeriHome Mortgage, a Western Alliance Bank Company.
Western Alliance Bancorporation is committed to equal employment and will consider all qualified applicants without regard to race, sex, color, religion, age, nation origin, marital status, disability, protected veteran status, sexual orientation, gender identity or genetic information. Western Alliance Bancorporation is committed to working with and providing reasonable accommodations for individuals with disabilities. If you are an individual with a disability and require a reasonable accommodation to complete any part of the application process and/or need an alternative method of applying, please email HR@westernalliancebank.com or call 602-386-2488. When contacting us, please provide your contact information and state the nature of your accessibility issue. We will only respond to inquiries concerning requests that involve a reasonable accommodation in the application process.
Western Alliance Bancorporation