Principal Cybersecurity Risk Analyst

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field (equivalent work experience may substitute for education).
• 10+ years of experience in cybersecurity, risk management, or related fields.
• Experience working in large, complex organizations with diverse technology environments.
• Deep understanding of cybersecurity principles and risk assessment methodologies (NIST, ISO, FAIR).
• Proficiency in risk analysis tools and technologies, as well as data visualization for reporting risk metrics.
• Knowledge of threat modeling, vulnerability management, and incident response processes.
• Strong prioritization, time management, and communication skills are essential, including experience engaging with executive leadership.
• Strong analytical and problem-solving skills with the ability to translate technical risks into business impacts.
• Ability to analyze complex problems and provide actionable recommendations.
• Analytical mindset with attention to detail.
• Proactive, self-motivated, and adaptable to fast-changing environments.
• Collaborative team player with strong ethical standards.

Nice To Haves

• Experience with Governance, Risk, and Compliance (GRC) platforms.
• Continuous learning mindset to stay ahead of emerging threats and technologies.

Responsibilities

• Develop and oversee a comprehensive process for identifying the most significant cyber risks facing the organization, ensuring the process is repeatable, scalable, and adaptable to evolving threats.
• Create, document, and maintain a formalized methodology for cyber risk identification, leveraging best practices and aligning with industry standards.
• Define and enforce standards for risk analysis, enabling consistent evaluation and prioritization of cybersecurity initiatives across the organization.
• Guide stakeholders in prioritizing cybersecurity projects and initiatives based on risk analysis outcomes, business impact, and strategic objectives.
• Lead the facilitation of risk decision memos and meetings when risks are identified that fall outside of the company’s tolerance, ensuring timely escalation, clear communication, and informed decision-making by senior leadership.
• Collaborate with business units, IT, and executive leadership to communicate risk findings, recommend mitigation strategies, and align risk management activities with organizational goals.
• Monitor the effectiveness of risk identification and analysis processes, recommending and implementing improvements as needed to adapt to the changing threat landscape.
• Collaborate with other cybersecurity functions, such as continuous control assessment, to ensure residual risk is appropriately defined.
• Define methodology to inform prioritization across Technology initiatives using a risk lens.
• Monitor emerging cyber threats, trends, and technologies to provide timely recommendations for risk reduction.
• Prepare and present risk reports, dashboards, and recommendations to senior leaders.

Benefits

• In addition to a base salary, this position is eligible for a performance bonus and benefits (subject to eligibility requirements) listed here: Teladoc Health Benefits 2026
• We follow a Flexible Vacation Policy, intended for rest, relaxation, and personal time.
• You will also receive 80 hours of Paid Sick, Safe, and Caregiver Leave annually.