Cyber Risk Analyst

A Cyber Risk Analyst proactively identifies, assesses, and consults on areas of security risk.

Role overview

The Cyber Risk Analyst supports the analysis, classification, and response to cybersecurity risks within an organization. This professional addresses cybersecurity risk and analyses the potential business and customer risk, aligning processes and controls to the relevant frameworks and internal systems. The Cyber Risk Analyst is able to identify areas of concern for their specific organization, supporting resolution and mitigation by providing advice and recommendations.

Cyber Risk Analysts
may also be referred to as:
3rd Party Cyber Risk Analyst
Cloud Risk Analyst
Compliance And Risk Analyst
Cyber Risk Analyst
Cyber Risk And Compliance Intern
Cyber Risk And Controls Analyst
Cyber Risk Architect
Cyber Risk Assessor
Cyber Risk Coordinator
Cyber Risk Management Analyst
Cybersecurity Risk Engineer
Cybersecurity Supply Chain Risk Management Specialist
Cybersecurity Third-Party Risk Engineer
Data Risk Analyst
Governance Risk And Compliance Analyst
Information Security Risk Engineer
Third Party Cyber Risk Analyst
Vendor Management Analyst Third Party Risk Management
Vendor Risk Analyst

Career Path

Map your career path by understanding role relationships

Average Salary

Based upon experience, salary for this role ranges from:
$118,300
National Average
$137,500
$156,700
* based upon those with two plus years of cybersecurity experience

Responsibilities

Managing and analysing incoming cyber risks for all departments of the organization.
Preparing risk reports and ensuring actions are documented and delivered.
Tracking and monitoring risk activities, notifying action owners, and escalating where required.
Ensuring risks and remediation plans are regularly addressed.
Conducting quality assurance on all risk assessments.
Building understanding and awareness of cybersecurity risks throughout the organization.
Improving the cybersecurity processes, solutions, and professional practices of the team.
Using judgement to make risk-based recommendations and decisions within parameters.

Tools & Environment

Cyber Risk Analysts need experience working with a variety of governance, risk, and compliance (GRC) tools, as well as risk assessment, risk analytics, and reporting tools. These individuals will also work with a number of data privacy and protection frameworks such as ISO27001, NIST, Cyber essentials, CIS20, and the GDPR.

Certifications

[cyber_job_role_count] Cyber Risk Analyst jobs

Resources

Videos

Watch our latest videos, talks an recorded events
Watch

White Papers

Download our whitepapers and printed resources
Learn

Free Courses

Browse our training courses and educational resources
See All

Podcasts

Listen to our podcast features and recorded roundtables
Listen

The CyberSN™ Provider Exchange

The training courses, services, products, and DEI providers you need to take control and accelerate your success.

YOU COULD BE HERE

Get in touch to see your product, training course, service, or DEI support on our provider exchange.
Career Acceleration and Training Community Hub

Cyber Leadership Institute

Join the Cyber Leadership Institute Community Hub and benefit from the shared knowledge and experience of a global community of cyber leaders.
A game-changing personal branding program for technical professionals

Stand Out From the Crowd With a Strong Personal Brand (EPB)

The Elevate Your Personal Brand (EPB) program helps technical professionals develop a strong personal brand quickly. This short, intensive, and self-paced course will help you develop, monetize, and sustain an outstanding personal brand
Learn real-world cyber risk management and governance skills from renowned industry leaders

Cyber Skills for Non-Technical Business Leaders (ECRP)

The Executive Cyber Resilience Program (ECRP) has been designed to help non-technical business leaders better understand cyber risk and how it impacts their organization.
For executives in charge of cyber-resilience strategies

Cyber Strategy and Transformational Leadership Skills (CSTP)

The Cyber Strategy and Transformation Program (CSTP) is the ultimate course for senior leaders and project managers responsible for leading cyber strategies and transformation programs across their organizations.
A leadership program for current and aspiring CISOs

Cyber Leadership Program for Experienced Professionals (CLP)

The Cyber Leadership Program (CLP) is an advanced, executive-level program for experienced cyber professionals who want to develop their leadership, executive and board engagement skills and become a leading CISO.

Get our latest insights. Subscribe to our newsletter.