343 security risk analyst jobs at 263 companies in United States

3d
Save
Mark Applied
Hide
Security Risk Analyst
Hamilton, New Jersey, United States
$69k-$97k/yr OnsiteFull Time
RWJBarnabas Health
RWJBarnabas Health: Provides comprehensive academic healthcare services and medical research.
1+ YOEExperience performing security risk assessments in healthcare, knowledge of HIPAA privacy/security, 1+ year enterprise IT experience, CompTIA Security/Network preferred, bachelor's in IT preferred.
1w
Save
Mark Applied
Hide
Security Risk Analyst
Minneapolis, Minnesota, United States
$74k-$105k/yr OnsiteFull Time
Xcel Energy
Xcel EnergyNASDAQ: XEL: Provides electricity and natural gas services to multi-state customers.
3+ YOEMinimum 3 years security experience, 2 years risk assessment/audit experience, knowledge of security frameworks (NIST/ISO), GRC tooling, IT security technologies, and strong communication skills.
Archer, ProcessUnity
2mo
Save
Mark Applied
Hide
Cyber Security Risk Analyst
New York, New York, United States
$170k-$230k/yr OnsiteFull Time
Federal Reserve System
Federal Reserve System: The central bank of the United States.
Cloud security risk assessments, risk management (NIST 800-53), application security testing, DevSecOps, vendor risk management.
1mo
Save
Mark Applied
Hide
Information Security Risk Analyst
New Brunswick, New Jersey, United States
$108k-$165k/yr HybridFull Time
Rutgers University
Rutgers University: Providing higher education degrees and conducting academic research.
5+ YOEBachelor's in a related field and 5+ years information security experience; knowledge of HIPAA, GLBA, PCI DSS, NIST CSF; experience with GRC/VRM; strong communication and risk assessment skills.
HIPAA, GLBA, PCI DSS, NIST CSF, NIST 800-171, ISO 27001, ISO 27002, GRC, VRM
1mo
Save
Mark Applied
Hide
VP, Lead Security Risk Analyst
Los Angeles or Santa Ana
$145k-$170k/yr OnsiteFull Time
Banc of California
Banc of CaliforniaNYSE: BANC: Commercial bank providing business lending and treasury management services.
7+ YOEBachelor’s degree; 7+ years GRC/cybersecurity experience with cloud/security architecture; experience conducting enterprise risk assessments and translating requirements into architectural controls; strong communication and leadership; related certifications preferred.
PCI-DSS, GDPR, CCPA, GLBA, NIST, ISO 27001, OWASP, CIS, AI/ML, SmartStreet
1mo
Save
Mark Applied
Hide
Senior IT Security Risk Analyst
Farmington Hills, Michigan, United States
HybridFull Time
Amerisure
Amerisure: Provides commercial property and casualty insurance for businesses.
5+ YOE5+ years cybersecurity experience; advanced cyber risk certification (CISSP, CISM, CRISC, CCSP, or AWS Security); 2+ years control testing; SOC 2 review, third-party risk assessments, NIST expertise, Logicgate experience, and ability to translate risk to business leaders.
NIST CSF, New York State Department of Financial Services (NYDFS), NIS2, PCI DSS, Logicgate
1w
Save
Mark Applied
Hide
Information Security Risk Analyst 2
Minnesota, United States
$85k-$95k/yr HybridFull Time
University of Minnesota
University of Minnesota: Public research university providing undergraduate and graduate education.
1+ YOEBachelor's degree plus 2 years relevant experience (or Master's); 1 year information security risk assessment experience; strong communication and analytical skills; knowledge of security standards and regulations.
ISO 27001, ISO 27002, NIST 800-171, SANS, OWASP
3w
Save
Mark Applied
Hide
Cyber Security Risk Analyst
Pittsburgh or Bécancour or Montréal or Baie-Comeau or Deschambault
OnsiteFull Time
Alcoa
AlcoaNYSE: AA: Produces aluminum through bauxite mining, refining, and smelting.
6+ YOE6+ years in cybersecurity or IT risk; experience assessing IT and OT risk; knowledge of ISO/NIST/CIS frameworks, GRC activities and tools; strong written/verbal communication and facilitation skills; bachelor's degree or equivalent experience.
Governance, Risk, and Compliance (GRC), SIEM, ISO 27001, NIST CSF, NIST 800-53, CIS Controls, SOX
3mo
Save
Mark Applied
Hide
Sr. Information Security Risk Analyst
Kansas City, Missouri, United States
$69k-$149k/yr HybridFull Time
UMB Financial
UMB FinancialNASDAQ: UMBF: Provides banking, wealth management, and institutional financial services.
5+ YOEBachelor’s degree in MIS/Computer Science or related; 5+ years in information security/risk; PCI-DSS knowledge; familiarity with COSO, COBIT, ISO, NIST, ITIL; ability to manage multiple tasks.
PCI-DSS, COSO, COBIT, ISO, NIST, ITIL
1mo
Save
Mark Applied
Hide
Information Security – Risk & Compliance Analyst
Easton or United States or Europe or Asia
HybridFull Time
Victaulic
Victaulic: Manufacturer of mechanical pipe joining and flow control systems.
0+ YOE0–2 years in information security, IT audit, or risk; familiarity with NIST CSF, ISO/IEC 27001, CMMC, and NIS2; experience with risk assessments, third-party audits, cloud/DevOps/application security; CompTIA Security+ or equivalent; CISA preferred.
NIST CSF, ISO/IEC 27001, CMMC, NIS2 Directive, cloud computing, DevOps, application security, GRC platform
2mo
Save
Mark Applied
Hide
Information Security Risk Analyst - Cyber Resiliency
Atlanta or Minneapolis
$120k-$130k/yr HybridFull Time
Deluxe
DeluxeNYSE: DLX: Provides payment technology and business services to small businesses.
5+ YOEBachelor’s degree with 5+ years of experience or high school with 9+ years of experience in information security/risk management.
1w
Save
Mark Applied
Hide
Information Security Risk Analyst
Tualatin, Oregon, United States
HybridFull Time
Lam Research
Lam ResearchNASDAQ: LRCX: Manufacturing equipment used to fabricate advanced semiconductor microchips.
Develop and tune SIEM detections, translate threat intelligence into detections, analyze security telemetry across cloud, endpoint, identity, and network sources; SIEM and scripting experience preferred.
SIEM, Microsoft Sentinel, Splunk, Exabeam, Securonix, KQL, SPL, SQL, Microsoft Defender XDR, Defender for Endpoint, Defender for Identity, Entra ID, Azure, AWS, Google Cloud, UEBA, MITRE ATT&CK, Python, PowerShell, Logic Apps, MISP, STIX/TAXII
2d
Save
Mark Applied
Hide
Information Security Risk Analyst
Tualatin, Oregon, United States
HybridFull Time
Lam Research
Lam ResearchNASDAQ: LRCX: Designs and manufactures wafer fabrication equipment for the semiconductor industry.
Experience developing and tuning SIEM detections, threat hunting, incident response support, familiarity with security telemetry across cloud, endpoint, identity, and network, and scripting/automation skills.
Microsoft Sentinel, Splunk, Exabeam, Securonix, KQL, SPL, SQL, Microsoft Defender XDR, Defender for Endpoint, Defender for Identity, Entra ID, Azure, AWS, Google Cloud, Python, PowerShell, Logic Apps, MISP, STIX/TAXII, MITRE ATT&CK
1mo
Save
Mark Applied
Hide
Senior Vendor Security Risk Management Analyst
Johnston, Rhode Island, United States
$106k-$152k/yr HybridFull Time
FM Global
FM Global: Providing commercial property insurance and loss prevention engineering.
5+ YOE5+ years in cybersecurity or cyber risk with TPRM; cloud security; vendor risk assessment; certifications preferred.
Microsoft Office
2mo
Save
Mark Applied
Hide
Security Analyst
China Lake, California, United States
OnsiteFull Time
Agile Defense
Agile Defense: Provides IT modernization and cybersecurity for federal government agencies.
4+ YOESecurity Analyst with RMF/DoD experience, eMASS, vulnerability management, and risk assessment support.
RMF, eMASS, STIG Viewer, SCAP Compliance Checker, Visio
1w
Save
Mark Applied
Hide
Senior Security Analyst (Tier 3, Insider Risk) - Global Security Organization
San Jose, California, United States
$134k-$236k/yr OnsiteFull Time
TikTok
TikTok: Global short-form video hosting and social media platform.
Technical security analyst for insider risk investigations; strong log and telemetry analysis, IAM and cloud familiarity, EDR and endpoint/cloud/identity investigations, reporting and stakeholder communication.
Okta, Active Directory (AD), GCP, AWS, Azure, Ali Cloud, EDR, VPN, Slack, Microsoft Teams, Git, Python
1mo
Save
Mark Applied
Hide
Information Security Risk Analyst
Jacksonville or Milwaukee
OnsiteFull Time
FIS
FISNYSE: FIS: Provides technology solutions for merchants, banks, and capital markets
3+ YOEBachelor's in computer science or equivalent, 3+ years applicable experience desired, knowledge of IT general controls, strong communication, time management, problem-solving, stakeholder and project management, and controls assurance/testing.
2w
Save
Mark Applied
Hide
Cyber Security Risk Analyst
Belleville or Scott Air Force Base
$115k-$125k/yr OnsiteFull Time
Electrosoft Services
Electrosoft Services: Federal cybersecurity, digital engineering, and IT solutions provider
5+ YOE5+ years in cybersecurity/IT or related field; Python, SQL, HTML/CSS, Qlik/Databricks experience; 8140-compliant cert (e.g., GCFA, GCIA, CySA+, GICSP, CFR); Bachelor's in CS/CE/IT/Cyber or equivalent; active Secret clearance.
Python, SQL, HTML, CSS, eMASS, Qlik, Databricks, Advana, R, Spark, pandas
1mo
Save
Mark Applied
Hide
Cybersecurity Risk Analyst
Evansville, Indiana, United States
$37-$55/hr OnsiteFull Time
Deaconess Health System
Deaconess Health System: Provides acute hospital care and specialized medical services.
4+ YOE4+ years in cybersecurity or related field; knowledge of risk assessment, frameworks; HIPAA, PCI-DSS familiarity; vulnerability management, SIEM; Bachelor's in IT/security; certifications preferred.
SIEM, Vulnerability management, Network security, Cloud security
1w
Save
Mark Applied
Hide
GRC Risk Analyst III
Los Angeles, California, United States
$104k/yr OnsiteFull Time
SHEIN
SHEIN: Global online retailer selling affordable fashion and lifestyle products.
5+ YOE5+ years in security risk management, bachelor’s in info security/CS/engineering, strong knowledge of security/privacy standards, experience with risk frameworks and assessments, strong communication and analytical skills.
MITRE ATT&CK, STRIDE, OCTAVE, ISO 27k, NIST, CCM, PCI DSS, GDPR, CCPA