ZipRecruiter

Log In

1

Cyber Risk Jobs in Washington, DC (NOW HIRING)

next page

Showing results 1-20

All JobsCyber Risk JobsCyber Risk Jobs in Washington, DC

Cyber Risk information

See Washington, DC salary details

$77.6K

$146K

$183.5K

How much do cyber risk jobs pay per year?

As of Jun 22, 2026, the average yearly pay for cyber risk in Washington, DC is $145,971.00, according to ZipRecruiter salary data. Most workers in this role earn between $128,000.00 and $165,900.00 per year, depending on experience, location, and employer.

What are 5 careers in cybersecurity?

Five common careers in cybersecurity include Security Analyst, Penetration Tester, Security Engineer, Incident Responder, and Security Architect. These roles involve protecting systems, identifying vulnerabilities, and implementing security measures, often requiring certifications like CISSP or CEH and proficiency with tools such as firewalls and intrusion detection systems.

What is the difference between Cyber Risk vs Cyber Security Analyst?

AspectCyber RiskCyber Security Analyst
Primary FocusIdentifying, assessing, and managing cybersecurity risks and vulnerabilitiesMonitoring, analyzing, and responding to security threats and incidents
Required CredentialsCertifications like CISSP, CISM, CRISC; risk management experienceCertifications like CompTIA Security+, CISSP; technical security skills
Work EnvironmentRisk management teams, compliance departments, strategic planningSecurity operations centers, IT teams, incident response teams
Industry UsageUsed across finance, healthcare, government for risk mitigationUsed in IT and cybersecurity departments for threat defense

While both roles focus on cybersecurity, Cyber Risk professionals primarily assess and manage potential threats at a strategic level, whereas Cyber Security Analysts focus on technical threat detection and response. Understanding these differences helps organizations allocate resources effectively and align roles with their security objectives.

Can I make $200,000 a year in cyber security?

Cyber risk professionals, including cybersecurity analysts and managers, can potentially earn $200,000 or more annually, especially with extensive experience, advanced certifications like CISSP, and leadership roles. Salaries vary based on industry, location, and expertise, with senior positions and specialized skills commanding higher pay.

What are the key skills and qualifications needed to thrive as a Cyber Risk professional, and why are they important?

To thrive as a Cyber Risk professional, you need a solid understanding of information security principles, risk assessment methodologies, and regulatory compliance frameworks, often supported by a degree in cybersecurity, IT, or related fields. Familiarity with tools such as SIEM platforms, vulnerability scanners, and relevant certifications like CISSP, CISM, or CRISC is typically required. Strong analytical thinking, attention to detail, and effective communication skills help you identify risks and convey complex security issues to diverse stakeholders. These competencies are crucial for protecting organizational assets, ensuring compliance, and proactively managing evolving cyber threats.

Is 40 too old for cyber security?

Cyber Risk professionals can enter the field at any age, as experience, problem-solving skills, and certifications like CISSP or CompTIA Security+ are often valued over age. Many individuals successfully transition into cybersecurity later in their careers, bringing diverse perspectives and skills. Continuous learning and staying current with industry tools are important regardless of age.

What is cyber risk?

Cyber risk refers to the potential for financial loss, disruption, or damage to an organization due to the failure of its information technology systems. This includes threats such as data breaches, hacking, malware, ransomware, and unauthorized access to sensitive information. Managing cyber risk involves identifying vulnerabilities, implementing security measures, and creating response plans to minimize the impact of cyber incidents. Organizations often employ specialists to assess and mitigate these risks, ensuring the safety of their digital assets.

Can you make $500,000 a year in cyber security?

Cyber risk professionals, including senior security analysts and chief information security officers, can potentially earn $500,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISM, and leadership roles. High salaries are often associated with large organizations, specialized skills, and strategic responsibilities in cybersecurity management.

What are some typical challenges faced by professionals in a Cyber Risk role, and how can they be addressed?

Professionals in Cyber Risk roles often encounter challenges such as rapidly evolving cyber threats, balancing business needs with security requirements, and managing cross-departmental communication. Staying current with emerging risks and regulatory changes requires continuous learning and adaptability. Effective collaboration with IT, legal, and business units is crucial to implement practical risk mitigation strategies. Building strong relationships and clear communication channels within the organization can help address these challenges and ensure cyber risk is managed proactively.
What are the most commonly searched types of Cyber Risk jobs in Washington, DC? The most popular types of Cyber Risk jobs in Washington, DC are:
What are popular job titles related to Cyber Risk jobs in Washington, DC? For Cyber Risk jobs in Washington, DC, the most frequently searched job titles are:
What job categories do people searching Cyber Risk jobs in Washington, DC look for? The top searched job categories for Cyber Risk jobs in Washington, DC are:
Cyber Risk jobs near you
GRC Lead / Cyber Risk Manager

GRC Lead / Cyber Risk Manager

CyberLinx Solutions LLC

Washington, DC • On-site

$125K - $169K/yr

Full-time

Posted 11 days ago

Job description

CyberLinx Solutions LLC is seeking a forward thinking Cybersecurity GRC Lead / Cyber Risk Manager responsible for leading the organization’s cybersecurity governance, risk, and compliance (GRC) program. This role oversees enterprise risk assessments, regulatory compliance, policy development, and security control implementation aligned to industry frameworks such as NIST CSF and NIST RMF.

The ideal candidate will serve as a strategic advisor to leadership, ensuring cybersecurity risks are identified, assessed, and managed in alignment with business objectives and regulatory requirements.

Key Responsibilities:

Governance & Program Leadership

  • Lead and manage the enterprise GRC program, including policies, standards, and procedures
  • Serve as the primary advisor on cybersecurity risk and compliance matters
  • Align cybersecurity strategy with business objectives and regulatory requirements
  • Provide executive-level reporting on risk posture, compliance status, and remediation efforts

Risk Management:

  • Conduct enterprise and system-level cybersecurity risk assessments
  • Develop and maintain risk registers aligned to NIST SP 800-53 and NIST SP 800-171
  • Define risk tolerance, scoring methodologies, and mitigation strategies
  • Perform gap assessments and maturity evaluations using NIST CSF

Compliance & Audit

  • Ensure compliance with federal, state, and industry regulations for NIST RMF, and FISMA as applicable.
  • Lead audit readiness efforts and coordinate internal/external audits
  • Develop Plans of Action & Milestones (POA&M) and track remediation activities
  • Maintain documentation supporting Authority to Operate (ATO) processes

Security Controls & Frameworks

  • Oversee implementation and validation of security controls
  • Map controls across frameworks (NIST CSF, NIST 800-53, ISO 27001)
  • Collaborate with technical teams to ensure control effectiveness

Third-Party Risk Management

  • Evaluate vendor and third-party cybersecurity risks
  • Conduct security assessments and due diligence reviews
  • Ensure contractual security and compliance requirements are met

Required Qualifications:

  • Bachelor’s degree in Cybersecurity, Information Technology, Risk Management, or related field
  • 8+ years of experience in cybersecurity, with at least 3–5 years in GRC or risk management leadership roles
  • Strong knowledge of:
    • NIST Cybersecurity Framework (CSF)
    • NIST Risk Management Framework (RMF)
    • NIST SP 800-53 / 800-171
  • Experience supporting audits, compliance programs, and regulatory frameworks
  • Proven ability to lead cross-functional teams and communicate with executive leadership

Apply