×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security IT Consultant IT Project Manager

Cybersecurity Risk Manager

Job in Austin, Travis County, Texas, 78716, USA
Listing for: Texas Health and Human Services
Full Time, Part Time position
Listed on 2026-03-01
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, IT Consultant, IT Project Manager
Salary/Wage Range or Industry Benchmark: 7015 - 11250 USD Monthly USD 7015.00 11250.00 MONTH
Job Description & How to Apply Below

Date:
Feb 6, 2026

Location:

AUSTIN, TX

Join the Texas Health and Human Services Commission (HHSC) and be part of a team committed to creating a positive impact in the lives of fellow Texans. At HHSC, your contributions matter, and we support you at each stage of your life and work journey. Our comprehensive benefits package includes 100% paid employee health insurance for full‑time eligible employees, a defined benefit pension plan, generous time‑off benefits, numerous opportunities for career advancement and more.

Explore more details on the Benefits of Working at HHS webpage.

Job Details

Functional

Title:

 Cybersecurity Risk Manager

Job Title: Manager VI

Agency: Health & Human Services Comm

Department: CHIEF INFO SECURITY OFFICE

Posting Number: 13677

Closing Date: 04/07/2026

Posting Audience: Internal and External

Occupational Category: Computer and Mathematical

Salary Group: TEXAS-B-27

Salary Range: $7,015.16 - $11,250.00

Pay Frequency: Monthly

Shift: Day (First)

Telework: Possible

Travel: None

Regular/Temporary: Regular

Full Time/Part Time: Full time

FLSA Exempt/Non‑Exempt: Exempt

Facility

Location:

 4601 W GUADALUPE ST, AUSTIN, TX

Other Locations: N/A

Brief

Job Description

This position is open to permanent residents or U.S. citizens only. The Cybersecurity Risk Manager serves as a senior leader within the HHSC Office of the CISO and is responsible for establishing, maturing, and operationalizing the enterprise cybersecurity risk management program across the agency’s complex technology environment. This role ensures that cybersecurity risks are proactively identified, assessed, communicated, and managed in alignment with Texas DIR requirements, NIST frameworks, HIPAA, IRS Safeguards, CMS, and other federal and state regulatory obligations.

The Risk Manager provides strategic oversight of risk governance processes including system risk assessments, control validation, risk exception management, POA&M tracking, third‑party risk coordination, and executive risk reporting. This position plays a critical role in enabling informed risk‑based decision making by translating complex technical risks into clear business impacts for executive leadership.

This role partners closely with Security Operations, Cloud Security, Privacy, Legal, Enterprise Architecture, Internal Audit, and program leadership to ensure risks are managed consistently and that security controls scale with agency technology growth.

The Cybersecurity Risk Manager operates with a high degree of independence, exercises sound judgment in evaluating enterprise risk posture, and functions as a trusted advisor to the CISO, Deputy CISO and GRC Director.

Essential Job Functions (EJFs)
  • Lead the enterprise cybersecurity risk management program for HHSC.
  • Direct and oversee agency‑wide security risk assessments and control evaluations.
  • Establish standardized methodologies for risk identification, scoring, and reporting.
  • Maintain executive‑level risk dashboards and brief leadership on emerging threats and systemic exposure.
  • Oversee POA&M governance to ensure timely remediation of identified control gaps.
  • Manage the risk exception process, ensuring formal documentation, compensating controls, and appropriate risk acceptance authority.
  • Coordinate with compliance teams to support audits including DIR, CPA, CMS, IRS Safeguards, and HIPAA reviews.
  • Partner with Security Operations to ensure operational risks are escalated and tracked appropriately.
  • Provide cybersecurity risk input for major technology initiatives including cloud migrations, enterprise platforms, AI adoption, and network transformation.
  • Guide third‑party and vendor risk activities in coordination with procurement and legal.
  • Develop and maintain cybersecurity risk policies, standards, and procedures.
  • Promote a strong risk‑aware culture across business and technology teams.
  • Supervise risk analysts and support staff as assigned, including ITSAC staff.
Knowledge,

Skills And Abilities

(KSAs)
  • Advanced knowledge of regulatory environments.
  • Strong understanding of governance platforms such as RSA Archer or similar GRC tools.
  • Deep knowledge of frameworks such as:
    • NIST 800‑53
    • NIST CSF
    • Texas DIR Security Control Standards
    • HIPAA
    • IRS Safeguards
    • C…
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)

Job Posting Language
Employment Category
Education (minimum level)
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search