Risk Analyst
Merrifield, VA · On-site
Requirements: • Experience in cybersecurity risk analysis • Knowledge of information security standards and practices (NIST 800-30, NIST CFS, COBIT) • Prior experience in financial services ...
Risk Analyst
Merrifield, VA · On-site
Requirements: • Experience in cybersecurity risk analysis • Knowledge of information security standards and practices (NIST 800-30, NIST CFS, COBIT) • Prior experience in financial services ...
The Manager, Cybersecurity Risk Management focuses efforts on managing and reporting on cyber risks ... Presents risk analysis, metrics, and mitigation plans to management and stakeholders. * Identifies ...
The Manager, Cybersecurity Risk Management focuses efforts on managing and reporting on cyber risks ... Presents risk analysis, metrics, and mitigation plans to management and stakeholders. * Identifies ...
The Manager, Cybersecurity Risk Management focuses efforts on managing and reporting on cyber risks ... Presents risk analysis, metrics, and mitigation plans to management and stakeholders. * Identifies ...
The Manager, Cybersecurity Risk Management focuses efforts on managing and reporting on cyber risks ... Presents risk analysis, metrics, and mitigation plans to management and stakeholders. * Identifies ...
The Manager, Cybersecurity Risk Management focuses efforts on managing and reporting on cyber risks ... Presents risk analysis, metrics, and mitigation plans to management and stakeholders. * Identifies ...
The Manager, Cybersecurity Risk Management focuses efforts on managing and reporting on cyber risks ... Presents risk analysis, metrics, and mitigation plans to management and stakeholders. * Identifies ...
Cybersecurity Assessment Lead
Virginia Beach, VA · On-site
$98.70K - $133.40K/yr
Analyze testing results and provide cybersecurity risk assessments to the Government SCA and Authorizing Official. * RMF Package Development and Reporting * Oversee preparation and delivery of RMF ...
Cybersecurity Assessment Lead
Virginia Beach, VA · On-site
$98.70K - $133.40K/yr
Analyze testing results and provide cybersecurity risk assessments to the Government SCA and Authorizing Official. * RMF Package Development and Reporting * Oversee preparation and delivery of RMF ...
Cybersecurity Assessment Lead
$98.70K - $133.40K/yr
This position leads independent security control validation activities, ensures RMF packages are complete and compliant, and provides cybersecurity risk analysis to the Government Security Control ...
Cybersecurity Assessment Lead
$98.70K - $133.40K/yr
This position leads independent security control validation activities, ensures RMF packages are complete and compliant, and provides cybersecurity risk analysis to the Government Security Control ...
Sr. Analyst, Cybersecurity
Richmond, VA · On-site
$99.20K - $128K/yr
A Senior Technology/Information Risk Analyst with experience in the areas highlighted below. This ... You will assist the Cybersecurity, technology, compliance, and information risk teams in ...
Sr. Analyst, Cybersecurity
Richmond, VA · On-site
$99.20K - $128K/yr
A Senior Technology/Information Risk Analyst with experience in the areas highlighted below. This ... You will assist the Cybersecurity, technology, compliance, and information risk teams in ...
Sr. Analyst, Cybersecurity
$99.20K - $128K/yr
A Senior Technology/Information Risk Analyst with experience in the areas highlighted below. This ... You will assist the Cybersecurity, technology, compliance, and information risk teams in ...
Sr. Analyst, Cybersecurity
$99.20K - $128K/yr
A Senior Technology/Information Risk Analyst with experience in the areas highlighted below. This ... You will assist the Cybersecurity, technology, compliance, and information risk teams in ...
Cybersecurity Assessment Lead with Security Clearance
$98.70K - $133.40K/yr
Analyze testing results and provide cybersecurity risk assessments to the Government SCA and Authorizing Official. * RMF Package Development and Reporting * Oversee preparation and delivery of RMF ...
Cybersecurity Assessment Lead with Security Clearance
$98.70K - $133.40K/yr
Analyze testing results and provide cybersecurity risk assessments to the Government SCA and Authorizing Official. * RMF Package Development and Reporting * Oversee preparation and delivery of RMF ...
... Analysis, Cybersecurity Risk Management, Data Analysis, Database Management, Data Mining, Data Visualization, Delegating Tasks, Enterprise Information Security Architecture, Enterprise Risk ...
... Analysis, Cybersecurity Risk Management, Data Analysis, Database Management, Data Mining, Data Visualization, Delegating Tasks, Enterprise Information Security Architecture, Enterprise Risk ...
Third-Party Risk Analyst
Mclean, VA · On-site
$45 - $47/hr
Third-Party Risk Analyst Location: McLean, VA (5 days - Onsite) Job Overview The Third-Party Risk ... Monitor and document third-party risk and cybersecurity trends. Documentation & Communications
Quick apply
Third-Party Risk Analyst
Mclean, VA · On-site
$45 - $47/hr
Third-Party Risk Analyst Location: McLean, VA (5 days - Onsite) Job Overview The Third-Party Risk ... Monitor and document third-party risk and cybersecurity trends. Documentation & Communications
Cybersecurity Risk Analysis and Vulnerability Management: Analyzes security findings and vulnerabilities identified through cybersecurity assessments and scanning tools. Determines the operational ...
Cybersecurity Risk Analysis and Vulnerability Management: Analyzes security findings and vulnerabilities identified through cybersecurity assessments and scanning tools. Determines the operational ...
Own the cyber contract deviation (exception) governance process-including intake, risk analysis ... Build, lead, and continuously improve the third-party cybersecurity assessment activities ...
Own the cyber contract deviation (exception) governance process-including intake, risk analysis ... Build, lead, and continuously improve the third-party cybersecurity assessment activities ...
System and software engineers on results of the cybersecurity risk analysis * Execute and support network security initiatives * Conduct vulnerability scanning * Ensuring patch compliance * Support ...
Quick apply
System and software engineers on results of the cybersecurity risk analysis * Execute and support network security initiatives * Conduct vulnerability scanning * Ensuring patch compliance * Support ...
Cyber Risk Analyst SME
Arlington, VA · On-site +1
We are seeking a Cyber Risk Analyst (SME-level). This role involves conducting on-site and remote ... You will work alongside cybersecurity, OT, and systems engineering SMEs, creating task plans ...
Cyber Risk Analyst SME
Arlington, VA · On-site +1
We are seeking a Cyber Risk Analyst (SME-level). This role involves conducting on-site and remote ... You will work alongside cybersecurity, OT, and systems engineering SMEs, creating task plans ...
Risk - Business Analyst
Merrifield, VA · On-site
Requirements : • Experience in cybersecurity risk analysis • Knowledge of information security standards and practices (NIST 800-30, NIST CFS, COBIT) • Prior experience in financial services ...
Risk - Business Analyst
Merrifield, VA · On-site
Requirements : • Experience in cybersecurity risk analysis • Knowledge of information security standards and practices (NIST 800-30, NIST CFS, COBIT) • Prior experience in financial services ...
Cyber Risk Analyst SME
Arlington, VA · On-site
We are seeking a Cyber Risk Analyst (SME-level). This role involves conducting on-site and remote ... You will work alongside cybersecurity, OT, and systems engineering SMEs, creating task plans ...
Cyber Risk Analyst SME
Arlington, VA · On-site
We are seeking a Cyber Risk Analyst (SME-level). This role involves conducting on-site and remote ... You will work alongside cybersecurity, OT, and systems engineering SMEs, creating task plans ...
Responsibilities Provide skills and services necessary to conduct research and analysis of evolving cybersecurity and technology risk areas within DHS equities and in support of client case reviews ...
Responsibilities Provide skills and services necessary to conduct research and analysis of evolving cybersecurity and technology risk areas within DHS equities and in support of client case reviews ...
Responsibilities Provide skills and services necessary to conduct research and analysis of evolving cybersecurity and technology risk areas within DHS equities and in support of client case reviews ...
Responsibilities Provide skills and services necessary to conduct research and analysis of evolving cybersecurity and technology risk areas within DHS equities and in support of client case reviews ...
Responsibilities Provide skills and services necessary to conduct research and analysis of evolving cybersecurity and technology risk areas within DHS equities and in support of client case reviews ...
Responsibilities Provide skills and services necessary to conduct research and analysis of evolving cybersecurity and technology risk areas within DHS equities and in support of client case reviews ...
Cybersecurity Risk Analyst information
See Virginia salary details
$15.25 - $19.80
3% of jobs
$19.80 - $24.35
7% of jobs
$24.35 - $28.90
12% of jobs
$29.80 is the 25th percentile. Wages below this are outliers.
$28.90 - $33.45
15% of jobs
$33.45 - $38
13% of jobs
The median wage is $38.15 / hr.
$38 - $42.55
16% of jobs
$42.55 - $47.10
8% of jobs
$47.67 is the 75th percentile. Wages above this are outliers.
$47.10 - $51.65
11% of jobs
$51.65 - $56.20
6% of jobs
$56.20 - $60.75
6% of jobs
$60.75 - $65.30
3% of jobs
$15
$40
$65
How much do cybersecurity risk analyst jobs pay per hour?
As of May 29, 2026, the average hourly pay for cybersecurity risk analyst in Virginia is $40.14, according to ZipRecruiter salary data. Most workers in this role earn between $29.57 and $48.85 per hour, depending on experience, location, and employer.
What are the key skills and qualifications needed to thrive as a Cybersecurity Risk Analyst, and why are they important?
To thrive as a Cybersecurity Risk Analyst, you need a deep understanding of information security principles, risk management frameworks, and typically hold a degree in computer science or a related field. Familiarity with tools like vulnerability scanners, SIEM systems, and certifications such as CISSP or CISM is highly valued. Strong analytical thinking, effective communication, and attention to detail help you identify risks and convey complex information to stakeholders. These skills and qualifications are vital to proactively safeguard organizational assets and ensure compliance in an evolving threat landscape.
What are some common challenges faced by Cybersecurity Risk Analysts when working with cross-functional teams?
Cybersecurity Risk Analysts often collaborate with IT, compliance, and business units to assess and mitigate risks. A common challenge is translating complex technical risks into language that non-technical stakeholders can understand and act upon. Additionally, balancing security requirements with business objectives may require negotiation and creative problem-solving. Effective communication and relationship-building skills are key to ensuring that security recommendations are adopted across the organization.
What does a Cybersecurity Risk Analyst do?
A Cybersecurity Risk Analyst is responsible for identifying, assessing, and mitigating risks related to an organization’s information systems and data. They evaluate potential threats and vulnerabilities, develop strategies to minimize risks, and ensure compliance with security policies and regulations. Their work helps protect sensitive data and maintain the integrity and confidentiality of digital assets. Analysts often collaborate with IT and business teams to implement security controls and respond to security incidents.
What is the difference between Cybersecurity Risk Analyst vs Cybersecurity Analyst?
| Aspect | Cybersecurity Risk Analyst | Cybersecurity Analyst |
|---|---|---|
| Certifications | CompTIA Security+, CISSP, CISA | CompTIA Security+, CEH, CISSP |
| Primary Focus | Assessing and managing security risks | Monitoring, detecting, and responding to security threats |
| Work Environment | Risk management teams, security departments | Security operations centers, IT teams |
| Industry Usage | Finance, healthcare, government | All industries with cybersecurity needs |
While both roles involve cybersecurity, the Cybersecurity Risk Analyst primarily focuses on identifying and mitigating security risks, whereas the Cybersecurity Analyst concentrates on monitoring and responding to security incidents. Understanding these differences helps organizations assign the right roles for their security needs.
What are popular job titles related to Cybersecurity Risk Analyst jobs in Virginia? For Cybersecurity Risk Analyst jobs in Virginia, the most frequently searched job titles are:
What job categories do people searching Cybersecurity Risk Analyst jobs in Virginia look for? The top searched job categories for Cybersecurity Risk Analyst jobs in Virginia are:
Job description
Job Title: Risk Analyst
Location: Remote
Pay Rate: Open to Both C2C and W2 options
Position Type: Multiyear Contract
Responsibilities:
• Support annual information security program risk assessments.
o Facilitate/Support interviews and evidence gathering.
o Coordinate risk assessment activities with service provider.
o Coordinate and prepare documentation, internal communications, and status updates.
Requirements:
• Experience in cybersecurity risk analysis
• Knowledge of information security standards and practices (NIST 800-30, NIST CFS, COBIT)
• Prior experience in financial services industry preferred. Including prior experience with FFIEC CAT and IT Examination Handbook.
• Proven project management skills.
• Experience performing information security risk assessments.
• Strong written and verbal communication skills. Technical writing skills preferred.
• Knowledge of Information Security principles and practices
• Bachelors Degree, Information systems, Information Security, Computer Science, or related field of study.
• 5-7 years of Information Security or IT Risk Management experience preferred.
• Prior experience with tools like Confluence and ADO preferred.
• Strong analytical tool skills desired (Excel, PowerBI) desired.
Ref: #851-Rockville-S1
Location: Remote
Pay Rate: Open to Both C2C and W2 options
Position Type: Multiyear Contract
Responsibilities:
• Support annual information security program risk assessments.
o Facilitate/Support interviews and evidence gathering.
o Coordinate risk assessment activities with service provider.
o Coordinate and prepare documentation, internal communications, and status updates.
Requirements:
• Experience in cybersecurity risk analysis
• Knowledge of information security standards and practices (NIST 800-30, NIST CFS, COBIT)
• Prior experience in financial services industry preferred. Including prior experience with FFIEC CAT and IT Examination Handbook.
• Proven project management skills.
• Experience performing information security risk assessments.
• Strong written and verbal communication skills. Technical writing skills preferred.
• Knowledge of Information Security principles and practices
• Bachelors Degree, Information systems, Information Security, Computer Science, or related field of study.
• 5-7 years of Information Security or IT Risk Management experience preferred.
• Prior experience with tools like Confluence and ADO preferred.
• Strong analytical tool skills desired (Excel, PowerBI) desired.
Ref: #851-Rockville-S1