Provide expert-level technical guidance and analysis to support cybersecurity and risk assessment initiatives, including supply chain risk management. Develop, enhance, and maintain standard ...
Provide expert-level technical guidance and analysis to support cybersecurity and risk assessment initiatives, including supply chain risk management. Develop, enhance, and maintain standard ...
Provide expert-level technical guidance and analysis to support cybersecurity and risk assessment initiatives, including supply chain risk management. Develop, enhance, and maintain standard ...
Quick apply
Provide expert-level technical guidance and analysis to support cybersecurity and risk assessment initiatives, including supply chain risk management. Develop, enhance, and maintain standard ...
Cybersecurity Risk Assessment Consultant Location: Hybrid (onsite work possibly at various ... Implement robust filters in dashboards to support targeted analysis, including filters for:
Quick apply
Cybersecurity Risk Assessment Consultant Location: Hybrid (onsite work possibly at various ... Implement robust filters in dashboards to support targeted analysis, including filters for:
Cyber Risk Analyst SME
Arlington, VA · On-site +1
We are seeking a Cyber Risk Analyst (SME-level). This role involves conducting on-site and remote ... You will work alongside cybersecurity, OT, and systems engineering SMEs, creating task plans ...
Cyber Risk Analyst SME
Arlington, VA · On-site +1
We are seeking a Cyber Risk Analyst (SME-level). This role involves conducting on-site and remote ... You will work alongside cybersecurity, OT, and systems engineering SMEs, creating task plans ...
Cybersecurity Risk Engineersat the SEI use advanced skills in statistics, mathematics, risk analysis, systems engineering, economics and other technical fields in an interdisciplinary manner to help ...
Cybersecurity Risk Engineersat the SEI use advanced skills in statistics, mathematics, risk analysis, systems engineering, economics and other technical fields in an interdisciplinary manner to help ...
Senior Cyber Risk Engineer
Arlington, VA · On-site
Cybersecurity Risk Engineersat the SEI use advanced skills in statistics, mathematics, risk analysis, systems engineering, economics and other technical fields in an interdisciplinary manner to help ...
Senior Cyber Risk Engineer
Arlington, VA · On-site
Cybersecurity Risk Engineersat the SEI use advanced skills in statistics, mathematics, risk analysis, systems engineering, economics and other technical fields in an interdisciplinary manner to help ...
Third-Party Risk Analyst
Mclean, VA · On-site
$45 - $47/hr
Third-Party Risk Analyst Location: McLean, VA (5 days - Onsite) Job Overview The Third-Party Risk ... Monitor and document third-party risk and cybersecurity trends. Documentation & Communications
Quick apply
Third-Party Risk Analyst
Mclean, VA · On-site
$45 - $47/hr
Third-Party Risk Analyst Location: McLean, VA (5 days - Onsite) Job Overview The Third-Party Risk ... Monitor and document third-party risk and cybersecurity trends. Documentation & Communications
Cybersecurity Risk Analysis and Vulnerability Management: Analyzes security findings and vulnerabilities identified through cybersecurity assessments and scanning tools. Determines the operational ...
Cybersecurity Risk Analysis and Vulnerability Management: Analyzes security findings and vulnerabilities identified through cybersecurity assessments and scanning tools. Determines the operational ...
Senior Technical Risk Analyst
Vienna, VA · On-site
... and analyze emerging technology risks, implement risk management strategies, and maintain ... Stay informed about emerging cybersecurity threats and vulnerabilities that could affect the ...
New
Senior Technical Risk Analyst
Vienna, VA · On-site
... and analyze emerging technology risks, implement risk management strategies, and maintain ... Stay informed about emerging cybersecurity threats and vulnerabilities that could affect the ...
New
Cyber Risk Analyst SME
Arlington, VA · On-site
We are seeking a Cyber Risk Analyst (SME-level). This role involves conducting on-site and remote ... You will work alongside cybersecurity, OT, and systems engineering SMEs, creating task plans ...
Cyber Risk Analyst SME
Arlington, VA · On-site
We are seeking a Cyber Risk Analyst (SME-level). This role involves conducting on-site and remote ... You will work alongside cybersecurity, OT, and systems engineering SMEs, creating task plans ...
Senior Security Risk Management Engineer
Washington, DC · On-site
$150K - $175K/yr
Conduct cybersecurity risk assessments. * Analyze technical, operational, and architectural risks. * Identify system vulnerabilities and control deficiencies. * Evaluate likelihood and impact of ...
Quick apply
Senior Security Risk Management Engineer
Washington, DC · On-site
$150K - $175K/yr
Conduct cybersecurity risk assessments. * Analyze technical, operational, and architectural risks. * Identify system vulnerabilities and control deficiencies. * Evaluate likelihood and impact of ...
Senior Security Risk Management Engineer
Washington, DC · Hybrid
$129K - $177K/yr
Conduct cybersecurity risk assessments. * Analyze technical, operational, and architectural risks. * Identify system vulnerabilities and control deficiencies. * Evaluate likelihood and impact of ...
Senior Security Risk Management Engineer
Washington, DC · Hybrid
$129K - $177K/yr
Conduct cybersecurity risk assessments. * Analyze technical, operational, and architectural risks. * Identify system vulnerabilities and control deficiencies. * Evaluate likelihood and impact of ...
Our company provides application analysis, design, development and programming, software ... Responsible for developing and executing risk mitigation concepts, plans and services used to ...
Our company provides application analysis, design, development and programming, software ... Responsible for developing and executing risk mitigation concepts, plans and services used to ...
Conduct cybersecurity risk assessments related to cryptographic technologies, key management ... Experience developing technical analyses, cybersecurity documentation, policy recommendations, or ...
Conduct cybersecurity risk assessments related to cryptographic technologies, key management ... Experience developing technical analyses, cybersecurity documentation, policy recommendations, or ...
Cybersecurity Analyst - Crypto Modernization
Alexandria, VA · On-site
$100K - $108K/yr
Conduct cybersecurity risk assessments related to cryptographic technologies, key management ... Experience developing technical analyses, cybersecurity documentation, policy recommendations, or ...
Quick apply
Cybersecurity Analyst - Crypto Modernization
Alexandria, VA · On-site
$100K - $108K/yr
Conduct cybersecurity risk assessments related to cryptographic technologies, key management ... Experience developing technical analyses, cybersecurity documentation, policy recommendations, or ...
Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst #1809720
Washington, DC · On-site
$112K - $145K/yr
The Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst supports the Agency's Office of the Chief Information Officer by managing cybersecurity risks associated with the Agency's complex ...
Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst #1809720
Washington, DC · On-site
$112K - $145K/yr
The Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst supports the Agency's Office of the Chief Information Officer by managing cybersecurity risks associated with the Agency's complex ...
DHS Foreign Investment Risk Analyst
Alexandria, VA · On-site
$110K - $140K/yr
... data, and cybersecurity. Perform analysis on available CFIUS documentation, DHS SME assessments, and classified finished intelligence. Author risk-based assessments regarding certain foreign ...
DHS Foreign Investment Risk Analyst
Alexandria, VA · On-site
$110K - $140K/yr
... data, and cybersecurity. Perform analysis on available CFIUS documentation, DHS SME assessments, and classified finished intelligence. Author risk-based assessments regarding certain foreign ...
Senior Analyst, Cybersecurity Governance, Risk and Compliance, Washington, DC The Senior Analyst, Cybersecurity Governance Risk & Compliance will administer the completion of compliance-related ...
Senior Analyst, Cybersecurity Governance, Risk and Compliance, Washington, DC The Senior Analyst, Cybersecurity Governance Risk & Compliance will administer the completion of compliance-related ...
Foreign Investment Risk Analyst
Arlington, VA · On-site
$90K/yr
The Cybersecurity and Infrastructure Security Agency (CISA) is the Nation's risk advisor, working ... The official title of this position is Management Analyst, GS-0343-13/14. Qualifications:Do NOT ...
Foreign Investment Risk Analyst
Arlington, VA · On-site
$90K/yr
The Cybersecurity and Infrastructure Security Agency (CISA) is the Nation's risk advisor, working ... The official title of this position is Management Analyst, GS-0343-13/14. Qualifications:Do NOT ...
DHS Foreign Investment Risk Analyst
Alexandria, VA · On-site
$110K - $140K/yr
... data, and cybersecurity. Perform analysis on available CFIUS documentation, DHS SME assessments, and classified finished intelligence. Author risk-based assessments regarding certain foreign ...
DHS Foreign Investment Risk Analyst
Alexandria, VA · On-site
$110K - $140K/yr
... data, and cybersecurity. Perform analysis on available CFIUS documentation, DHS SME assessments, and classified finished intelligence. Author risk-based assessments regarding certain foreign ...
Cyber Security Risk Analyst information
See Washington salary details
$48.7K - $59.7K
1% of jobs
$59.7K - $70.7K
6% of jobs
$70.7K - $81.8K
10% of jobs
$89.3K is the 25th percentile. Wages below this are outliers.
$81.8K - $92.8K
12% of jobs
$92.8K - $103.8K
15% of jobs
The median wage is $108.5K / yr.
$103.8K - $114.8K
15% of jobs
$114.8K - $125.8K
10% of jobs
$130.6K is the 75th percentile. Wages above this are outliers.
$125.8K - $136.8K
16% of jobs
$136.8K - $147.9K
7% of jobs
$147.9K - $158.9K
5% of jobs
$158.9K - $169.9K
3% of jobs
$48.7K
$112.6K
$169.9K
How much do cyber security risk analyst jobs pay per year?
What are the key skills and qualifications needed to thrive in the Cyber Security Risk Analyst position, and why are they important?
A Cyber Security Risk Analyst requires a solid understanding of information security principles, risk assessment methodologies, and a relevant degree such as computer science or cybersecurity. Familiarity with tools like risk management frameworks (NIST, ISO 27001), vulnerability scanners, and certifications such as CISSP, CISM, or CRISC is common in this role. Strong analytical thinking, attention to detail, effective communication, and problem-solving skills are vital soft skills. These competencies enable analysts to accurately identify, assess, and communicate cyber risks, protecting organizations from evolving threats.
Can you make $200,000 in cyber security?
What does a cyber security risk analyst do?
What is a Cyber Security Risk Analyst job?
A Cyber Security Risk Analyst is responsible for identifying, assessing, and mitigating cybersecurity risks within an organization. They analyze potential threats, evaluate security controls, and recommend improvements to protect sensitive data and systems. Their role often involves conducting risk assessments, ensuring compliance with industry regulations, and collaborating with IT and security teams to enhance defenses. They also monitor emerging threats and provide strategic insights to minimize vulnerabilities. Ultimately, they help organizations maintain a strong security posture against cyber threats.
What are some typical challenges faced by Cyber Security Risk Analysts on the job?
Cyber Security Risk Analysts commonly face the challenge of keeping up with constantly evolving threats and technology landscapes. They must balance the need for robust security with business objectives, often requiring nuanced decision-making and collaboration across departments. Analysts may also encounter difficulties in communicating complex technical risks to non-technical stakeholders. Successfully navigating these challenges is key to maintaining organizational security and fostering a culture of risk awareness.
How much does a cybersecurity risk analyst make?
Can you make $500,000 a year in cyber security?

Full-time
Posted 13 days ago
Job description
Subject Matter Expert (SME) - Cybersecurity & Risk Assessment
Overview:
The Subject Matter Expert (SME) provides advanced technical expertise to support assessment operations, with a focus on cybersecurity, risk analysis, and program integrity. This role is responsible for enhancing operational processes, developing standard operating procedures (SOPs), and ensuring the confidentiality, integrity, and effectiveness of security-related initiatives. The SME works cross-functionally to evaluate systems, identify vulnerabilities, and recommend mitigation strategies in alignment with federal and industry standards.
________________________________________
Key Responsibilities:
Provide expert-level technical guidance and analysis to support cybersecurity and risk assessment initiatives, including supply chain risk management.
Develop, enhance, and maintain standard operating procedures (SOPs) to support assessment execution and implementation.
Conduct security assessments and hands-on testing, analyze results, document risks, and recommend appropriate countermeasures.
Identify, evaluate, and report on system vulnerabilities, threats, and security gaps.
Review and provide recommendations on program-level documentation, including:
o Requirements specifications
o System architecture and design documents
o Test plans and security plans
Develop and document security evaluation test plans and procedures.
Support the development and implementation of information security policies, standards, and guidance.
Ensure compliance with applicable frameworks and regulations (e.g., FISMA, NIST, OMB).
Perform risk assessments, including analyzing threats, vulnerabilities, and potential impacts.
Coordinate with cross-functional teams and stakeholders to support security testing and program objectives.
Lead or participate in technical exchange meetings, documenting outcomes and action items.
Prepare and deliver briefings to leadership on project status, risks, and key findings.
Analyze and synthesize data from multiple sources to produce clear, actionable insights for both technical and non-technical audiences.
Provide oversight for the design, development, and implementation of security support systems.
Collaborate with stakeholders to map system functionality to security controls and compliance requirements.
________________________________________
Qualifications:
Education:
o Master's degree (MS/MA) in Cybersecurity, Information Technology, Computer Science, or a related field
Experience:
o Minimum of 8+ years of relevant experience in cybersecurity, risk management, or assessment operations
o Experience supporting federal or highly regulated environments preferred
Certifications (preferred):
o CISSP, CISM, CISA, CEH, or other relevant industry certifications
________________________________________
Required Skills & Expertise:
Strong knowledge of cybersecurity frameworks and standards (FISMA, NIST, OMB, etc.)
Experience with risk assessments, vulnerability analysis, and security testing methodologies
Ability to translate complex technical concepts into clear documentation and briefings
Familiarity with security documentation development, including risk assessments, contingency plans, and test reports
Strong analytical, problem-solving, and communication skills
Ability to work independently and collaboratively in a fast-paced environment