... cybersecurity risk management process and cybersecurity tools used in DoD environments • Knowledge of governance, risk, and compliance strategies and tools • Trelix, ENS, and Tenable ...
... cybersecurity risk management process and cybersecurity tools used in DoD environments • Knowledge of governance, risk, and compliance strategies and tools • Trelix, ENS, and Tenable ...
Cybersecurity Lead
$112K - $151K/yr
We're looking for a Cybersecurity Lead to guide cybersecurity compliance and risk management efforts for Army network modernization initiatives. You'll ensure systems are designed, configured, and ...
Cybersecurity Lead
$112K - $151K/yr
We're looking for a Cybersecurity Lead to guide cybersecurity compliance and risk management efforts for Army network modernization initiatives. You'll ensure systems are designed, configured, and ...
About the Team We are seeking a highly skilled Principal cybersecurity engineer to architect the development of our internal suite of Cybersecurity Risk Management and Automation tools. This role ...
About the Team We are seeking a highly skilled Principal cybersecurity engineer to architect the development of our internal suite of Cybersecurity Risk Management and Automation tools. This role ...
About the Team We are seeking a highly skilled Principal cybersecurity engineer to architect the development of our internal suite of Cybersecurity Risk Management and Automation tools. This role ...
About the Team We are seeking a highly skilled Principal cybersecurity engineer to architect the development of our internal suite of Cybersecurity Risk Management and Automation tools. This role ...
Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst #1756008
Washington, DC · On-site
$114K - $126K/yr
The Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst supports the Agency's Office of the Chief Information Officer (OCIO) by managing cybersecurity risks associated with the Agency ...
Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst #1756008
Washington, DC · On-site
$114K - $126K/yr
The Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst supports the Agency's Office of the Chief Information Officer (OCIO) by managing cybersecurity risks associated with the Agency ...
Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst #1756008
Washington, DC · Hybrid
$113K - $146K/yr
The Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst supports the Agency's Office of the Chief Information Officer (OCIO) by managing cybersecurity risks associated with the Agency ...
Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst #1756008
Washington, DC · Hybrid
$113K - $146K/yr
The Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst supports the Agency's Office of the Chief Information Officer (OCIO) by managing cybersecurity risks associated with the Agency ...
Cybersecurity Lead
Mclean, VA · On-site
$112K - $151K/yr
We're looking for a Cybersecurity Lead to guide cybersecurity compliance and risk management efforts for Army network modernization initiatives. You'll ensure systems are designed, configured, and ...
Cybersecurity Lead
Mclean, VA · On-site
$112K - $151K/yr
We're looking for a Cybersecurity Lead to guide cybersecurity compliance and risk management efforts for Army network modernization initiatives. You'll ensure systems are designed, configured, and ...
Subject Matter Expert-Program Protection Cybersecurity
Washington, DC · On-site
$120K - $150K/yr
Support the integration of Cybersecurity / Program Protection into the Systems Engineering Lifecycle (SELC) and Risk Management Framework, ensuring compliance with NIST Special Publications 800-160 ...
Subject Matter Expert-Program Protection Cybersecurity
Washington, DC · On-site
$120K - $150K/yr
Support the integration of Cybersecurity / Program Protection into the Systems Engineering Lifecycle (SELC) and Risk Management Framework, ensuring compliance with NIST Special Publications 800-160 ...
Cybersecurity Lead
$112K - $151K/yr
We're looking for a Cybersecurity Lead to guide cybersecurity compliance and risk management efforts for Army network modernization initiatives. You'll ensure systems are designed, configured, and ...
Cybersecurity Lead
$112K - $151K/yr
We're looking for a Cybersecurity Lead to guide cybersecurity compliance and risk management efforts for Army network modernization initiatives. You'll ensure systems are designed, configured, and ...
Subject Matter Expert-Program Protection Cybersecurity
Washington, DC · On-site
$120K - $150K/yr
Support the integration of Cybersecurity / Program Protection into the Systems Engineering Lifecycle (SELC) and Risk Management Framework, ensuring compliance with NIST Special Publications 800-160 ...
Subject Matter Expert-Program Protection Cybersecurity
Washington, DC · On-site
$120K - $150K/yr
Support the integration of Cybersecurity / Program Protection into the Systems Engineering Lifecycle (SELC) and Risk Management Framework, ensuring compliance with NIST Special Publications 800-160 ...
Cybersecurity Risk Management: Expert knowledge of cybersecurity risk management frameworks and methodologies. * Vulnerability Assessment & Penetration Testing: Conduct vulnerability assessments ...
Cybersecurity Risk Management: Expert knowledge of cybersecurity risk management frameworks and methodologies. * Vulnerability Assessment & Penetration Testing: Conduct vulnerability assessments ...
Cybersecurity Risk Management: Expert knowledge of cybersecurity risk management frameworks and methodologies. * Vulnerability Assessment & Penetration Testing: Conduct vulnerability assessments ...
Cybersecurity Risk Management: Expert knowledge of cybersecurity risk management frameworks and methodologies. * Vulnerability Assessment & Penetration Testing: Conduct vulnerability assessments ...
Assists ISSMs and AOs with implementation of the DoD Risk Management Framework throughout the ... Cybersecurity Risk Analysis and Vulnerability Management: Analyzes security findings and ...
Assists ISSMs and AOs with implementation of the DoD Risk Management Framework throughout the ... Cybersecurity Risk Analysis and Vulnerability Management: Analyzes security findings and ...
Director of Policy, Cybersecurity and Supply Chain Risk Management
Washington, DC · On-site
$120K - $125K/yr
Director of Policy, Cybersecurity and Supply Chain Risk Management Summary As the Director of Policy, Cybersecurity and Supply Chain Risk Management, you will be primarily responsible for the day-to ...
Director of Policy, Cybersecurity and Supply Chain Risk Management
Washington, DC · On-site
$120K - $125K/yr
Director of Policy, Cybersecurity and Supply Chain Risk Management Summary As the Director of Policy, Cybersecurity and Supply Chain Risk Management, you will be primarily responsible for the day-to ...
Director of Policy, Cybersecurity and Supply Chain Risk Management Summary As the Director of Policy, Cybersecurity and Supply Chain Risk Management, you will be primarily responsible for the day-to ...
Director of Policy, Cybersecurity and Supply Chain Risk Management Summary As the Director of Policy, Cybersecurity and Supply Chain Risk Management, you will be primarily responsible for the day-to ...
Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst with Security Clearance
Washington, DC · Hybrid
$113K - $146K/yr
The Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst supports the Agency's Office of the Chief Information Officer (OCIO) by managing cybersecurity risks associated with the Agency ...
Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst with Security Clearance
Washington, DC · Hybrid
$113K - $146K/yr
The Senior Cybersecurity Supply Chain Risk Management (SCRM) Analyst supports the Agency's Office of the Chief Information Officer (OCIO) by managing cybersecurity risks associated with the Agency ...
Guidehouse's Cybersecurity practice helps federal and regulated clients assess, manage, and reduce cybersecurity risk across high-impact systems and mission-critical environments. Our teams combine ...
Guidehouse's Cybersecurity practice helps federal and regulated clients assess, manage, and reduce cybersecurity risk across high-impact systems and mission-critical environments. Our teams combine ...
Senior Cybersecurity Supply Chain Risk Management Analyst
Washington, DC · On-site
$110K - $130K/yr
Senior Cybersecurity Supply Chain Risk Management Analyst ID: 1024 Location: Washington, DC Department: Information Technology More about this job > Description G3 Innovative Solutions, LLC is an ...
Senior Cybersecurity Supply Chain Risk Management Analyst
Washington, DC · On-site
$110K - $130K/yr
Senior Cybersecurity Supply Chain Risk Management Analyst ID: 1024 Location: Washington, DC Department: Information Technology More about this job > Description G3 Innovative Solutions, LLC is an ...
Guidehouse's Cybersecurity practice helps federal and regulated clients assess, manage, and reduce cybersecurity risk across highimpact systems and missioncritical environments. Our teams combine ...
Guidehouse's Cybersecurity practice helps federal and regulated clients assess, manage, and reduce cybersecurity risk across highimpact systems and missioncritical environments. Our teams combine ...
Prior work in a technical cybersecurity risk management function at organizations with security related regulatory requirements. * Practical use of risk management concepts and principles - including ...
Prior work in a technical cybersecurity risk management function at organizations with security related regulatory requirements. * Practical use of risk management concepts and principles - including ...
Cyber Security Risk Management information
See Washington salary details
$64.6K - $77.8K
1% of jobs
$77.8K - $91.1K
4% of jobs
$91.1K - $104.4K
5% of jobs
$104.4K - $117.7K
9% of jobs
$125K is the 25th percentile. Wages below this are outliers.
$117.7K - $131K
11% of jobs
$131K - $144.3K
10% of jobs
The median wage is $149.4K / yr.
$144.3K - $157.5K
28% of jobs
$165.2K is the 75th percentile. Wages above this are outliers.
$157.5K - $170.8K
14% of jobs
$170.8K - $184.1K
11% of jobs
$184.1K - $197.4K
4% of jobs
$197.4K - $210.7K
4% of jobs
$64.6K
$150.6K
$210.7K
How much do cyber security risk management jobs pay per year?
As of Jun 11, 2026, the average yearly pay for cyber security risk management in Washington is $150,592.00, according to ZipRecruiter salary data. Most workers in this role earn between $125,700.00 and $169,900.00 per year, depending on experience, location, and employer.
What are the key skills and qualifications needed to thrive as a Cyber Security Risk Management professional, and why are they important?
To thrive in Cyber Security Risk Management, you need a solid understanding of risk assessment methodologies, information security frameworks (such as ISO 27001 or NIST), and often a relevant degree or certification like CISSP or CISM. Familiarity with security tools, vulnerability assessment platforms, and risk management software is typically required. Strong analytical thinking, attention to detail, and effective communication are crucial soft skills for identifying threats and conveying risk to stakeholders. These skills ensure that organizations can proactively manage and mitigate cyber threats, safeguarding critical assets and maintaining compliance.
What is cyber security risk management?
Cyber security risk management is the process of identifying, assessing, and prioritizing risks to an organization's information systems and data. It involves evaluating potential threats and vulnerabilities, determining the likelihood and impact of these risks, and implementing measures to mitigate or manage them. Effective risk management helps organizations protect sensitive data, ensure regulatory compliance, and minimize the impact of cyber attacks. This process is ongoing and adapts to new threats and changes in technology.
What is risk management in cyber security?
In cyber security risk management, professionals identify, assess, and prioritize potential security threats to an organization’s information systems. They implement strategies and controls to mitigate or accept risks, often using frameworks like NIST or ISO 27001, to protect data and ensure business continuity.
Is 40 too old for cyber security?
Cyber security risk management is a field open to individuals of all ages, and age is not a barrier to entering the profession. Many professionals successfully transition into cyber security later in their careers by gaining relevant certifications like CISSP or CompTIA Security+ and developing skills in areas such as threat analysis and security tools. Experience, continuous learning, and adaptability are often more important than age in this industry.
What is the difference between Cyber Security Risk Management vs Cyber Security Analyst?
| Aspect | Cyber Security Risk Management | Cyber Security Analyst |
|---|---|---|
| Certifications | CompTIA Security+, CISSP, CISM | CompTIA Security+, CEH, CISSP (preferred) |
| Work Environment | Policy development, risk assessment, strategic planning | Monitoring security systems, incident response, vulnerability analysis |
| Employer & Industry Usage | Organizations focusing on risk mitigation and compliance | Organizations implementing and maintaining security measures |
Cyber Security Risk Management professionals focus on identifying, assessing, and mitigating security risks at an organizational level, often involved in policy and strategy. Cyber Security Analysts primarily monitor security systems, analyze threats, and respond to incidents. While both roles require similar certifications and work within the same industry, their core responsibilities differ: risk managers develop strategies, whereas analysts execute security measures and respond to threats.
What are some typical challenges faced by professionals in Cyber Security Risk Management, and how can they be addressed?
Professionals in Cyber Security Risk Management often encounter challenges such as staying updated with rapidly evolving threats, balancing security needs with business objectives, and ensuring compliance with various regulations. Addressing these challenges requires continuous learning, effective communication with stakeholders, and the implementation of robust risk assessment frameworks. Collaboration with IT, legal, and business teams is essential to develop practical security policies that protect assets without hindering operations.
Can you make $500,000 a year in cyber security?
Cyber security risk management professionals can potentially earn $500,000 or more annually, especially at senior levels, in leadership roles, or with extensive experience and specialized certifications like CISSP or CISM. High salaries are often associated with executive positions, consulting, or working for large organizations with complex security needs.
Is security risk management a good career?
Security risk management is a valuable career in cybersecurity, focusing on identifying and mitigating potential threats to an organization’s information systems. It often requires knowledge of security frameworks, risk assessment tools, and certifications like CISSP or CISM, and offers strong job growth and demand across various industries.
What are popular job titles related to Cyber Security Risk Management jobs in Washington? For Cyber Security Risk Management jobs in Washington, the most frequently searched job titles are:
What job categories do people searching Cyber Security Risk Management jobs in Washington look for? The top searched job categories for Cyber Security Risk Management jobs in Washington are:
What cities in Washington are hiring for Cyber Security Risk Management jobs? Cities in Washington with the most Cyber Security Risk Management job openings:
Full-time
This job post has expired today. Applications are no longer accepted.
Booz Allen Hamilton rating
8.8
Based on 47 frontline employees who took The Breakroom Quiz
9th of 57 rated business consultants
Job description
Job Summary:
Booz Allen Hamilton is a leading consulting firm specializing in technology solutions, and they are seeking a Cybersecurity Engineer to enhance their cloud security capabilities. The role involves operating, securing, and monitoring cloud infrastructure while ensuring compliance with DoD requirements and implementing security architectures for critical systems.
Responsibilities:
• operating, securing, and monitoring the cloud infrastructure
• system hardening
• patching
• vulnerability management
• understanding and translating the DoD requirements from the stakeholders to the technical teams
• ensuring the solutions have met the requirements
Qualifications:
Required:
• 5+ years of experience securing cloud infrastructure and applications in AWS GovCloud and Azure GCCH
• 5+ years of experience with Authority to Operate (ATO) and DoD Cloud SRG requirements
• 2+ years of experience with CMMC authorizations
• Knowledge of centralized logging, boundary defense, web app firewalls, system patching, RBAC, and vulnerability scanning
• Knowledge of compensating controls for a variety of different use cases
• Secret clearance
• Bachelor’s degree
• DoD 8570 IAT Level II or IAT Level III Certification
Preferred:
• Experience with scripting languages, including PowerShell, Bash, or Python
• Experience writing documentation for security assessments for a variety of different assessors
• Experience in cross domain solutions
• Experience in multi cloud deployments
• Knowledge of the cybersecurity risk management process and cybersecurity tools used in DoD environments
• Knowledge of governance, risk, and compliance strategies and tools
• Trelix, ENS, and Tenable Certifications
• AWS Certifications
• Azure Certifications
Company:
Booz Allen Hamilton is a consulting firm that specializes in analytics, technology, and engineering. Founded in 1914, the company is headquartered in Mclean, USA, with a team of 10001+ employees. The company is currently Late Stage.
Booz Allen Hamilton is a leading consulting firm specializing in technology solutions, and they are seeking a Cybersecurity Engineer to enhance their cloud security capabilities. The role involves operating, securing, and monitoring cloud infrastructure while ensuring compliance with DoD requirements and implementing security architectures for critical systems.
Responsibilities:
• operating, securing, and monitoring the cloud infrastructure
• system hardening
• patching
• vulnerability management
• understanding and translating the DoD requirements from the stakeholders to the technical teams
• ensuring the solutions have met the requirements
Qualifications:
Required:
• 5+ years of experience securing cloud infrastructure and applications in AWS GovCloud and Azure GCCH
• 5+ years of experience with Authority to Operate (ATO) and DoD Cloud SRG requirements
• 2+ years of experience with CMMC authorizations
• Knowledge of centralized logging, boundary defense, web app firewalls, system patching, RBAC, and vulnerability scanning
• Knowledge of compensating controls for a variety of different use cases
• Secret clearance
• Bachelor’s degree
• DoD 8570 IAT Level II or IAT Level III Certification
Preferred:
• Experience with scripting languages, including PowerShell, Bash, or Python
• Experience writing documentation for security assessments for a variety of different assessors
• Experience in cross domain solutions
• Experience in multi cloud deployments
• Knowledge of the cybersecurity risk management process and cybersecurity tools used in DoD environments
• Knowledge of governance, risk, and compliance strategies and tools
• Trelix, ENS, and Tenable Certifications
• AWS Certifications
• Azure Certifications
Company:
Booz Allen Hamilton is a consulting firm that specializes in analytics, technology, and engineering. Founded in 1914, the company is headquartered in Mclean, USA, with a team of 10001+ employees. The company is currently Late Stage.
What Booz Allen Hamilton employees say
Pay
Benefits
Hours and flexibility
Workplace
Get the full story on Breakroom
About Booz Allen Hamilton
Sourced by ZipRecruiter
Booz Allen Hamilton is a leading provider of management and technology consulting services to the US government in defense, intelligence, and civil markets. Headquartered in McLean, Virginia, the firm also serves major corporations, institutions, and not-for-profit organizations. Founded in 1914 by Edwin G. Booz, the company has a long-standing tradition of helping clients achieve success by delivering a wide range of consulting services that include strategic planning, human capital and learning, communication, systems development, and others. The company's mission is to empower people to change the world, and it has a reputation for maintaining the highest standards of integrity and-excellence.
Industry
It services
Company size
10,000+ Employees
Headquarters location
McLean, VA, US
Year founded
1914