1

Cybersecurity Risk Management Jobs in Baltimore, MD

ISSE, Senior

Columbia, MD · On-site

$175K - $230K/yr

Expertise in the Risk Management Framework (RMF) and conducting cybersecurity risk assessments. * Expertise in network technology and systems security engineering. Experience in identifying ...

Expertise in the Risk Management Framework (RMF) and conducting cybersecurity risk assessments. * Expertise in network technology and systems security engineering. Experience in identifying ...

Supports security audits, compliance assessments, and risk management activities. * Performs threat analysis and evaluates emerging cybersecurity risks and trends that may impact the organization.

Supports security audits, compliance assessments, and risk management activities. * Performs threat analysis and evaluates emerging cybersecurity risks and trends that may impact the organization.

Maintain thorough knowledge and understanding of the DOD cybersecurity policies and the Risk Management Framework * Initiate actions to conduct cybersecurity engineering research and analysis and ...

next page

Showing results 1-20

Cybersecurity Risk Management information

See Baltimore, MD salary details

$56.6K

$132.1K

$184.8K

How much do cybersecurity risk management jobs pay per year?

As of Jul 13, 2026, the average yearly pay for cybersecurity risk management in Baltimore, MD is $132,110.00, according to ZipRecruiter salary data. Most workers in this role earn between $110,300.00 and $149,000.00 per year, depending on experience, location, and employer.

Can I make $200,000 a year in cyber security?

Cybersecurity risk management professionals can earn $200,000 or more annually, especially with extensive experience, advanced certifications like CISSP or CISM, and roles in senior management or specialized fields. Salary levels vary based on industry, location, and the complexity of the organization's security needs.

What are some common challenges faced by professionals in Cybersecurity Risk Management, and how can they be addressed?

Professionals in Cybersecurity Risk Management often encounter challenges such as keeping up with rapidly evolving cyber threats, balancing security needs with business objectives, and ensuring compliance with industry regulations. Addressing these challenges requires continuous learning, effective communication with stakeholders, and close collaboration with IT, legal, and business teams. Building strong partnerships across departments and investing in ongoing training can help mitigate these obstacles and support proactive risk management.

How much does a cybersecurity risk analyst make?

A cybersecurity risk analyst typically earns between $70,000 and $120,000 annually, depending on experience, certifications, and location. Entry-level positions may start lower, while experienced analysts with certifications like CISSP or CISA can earn higher salaries, especially in high-demand industries.

What is the difference between Cybersecurity Risk Management vs Cybersecurity Analyst?

AspectCybersecurity Risk ManagementCybersecurity Analyst
CertificationsCRISC, CISSP, CISMCompTIA Security+, CEH, CISSP
Work EnvironmentRisk assessment, policy development, strategic planningMonitoring security systems, incident response, vulnerability analysis
Employer & Industry UsageFinancial, healthcare, government, large enterprisesIT departments, cybersecurity firms, corporate security teams

Cybersecurity Risk Management focuses on identifying, assessing, and mitigating security risks at an organizational level, often involving policy creation and strategic planning. In contrast, a Cybersecurity Analyst primarily monitors security systems, responds to incidents, and analyzes vulnerabilities. Both roles require similar certifications but serve different functions within cybersecurity teams.

What are the key skills and qualifications needed to thrive in Cybersecurity Risk Management, and why are they important?

To thrive in Cybersecurity Risk Management, you need a solid understanding of information security principles, risk assessment methodologies, compliance standards, and typically a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), security tools, and professional certifications like CISSP or CRISC is highly valued. Strong analytical thinking, effective communication, and problem-solving skills help professionals translate technical risks for non-technical stakeholders and foster collaboration. These competencies are crucial to proactively identifying threats, managing vulnerabilities, and ensuring organizational resilience in a rapidly evolving digital landscape.

What does a cyber risk manager do?

A cyber risk manager assesses and prioritizes cybersecurity threats to an organization, develops strategies to mitigate risks, and implements security policies. They often use tools like risk assessment frameworks and require certifications such as CISSP or CISM to effectively manage security risks and ensure compliance.

What is cybersecurity risk management?

Cybersecurity risk management is the process of identifying, assessing, and prioritizing risks to an organization's digital assets and information systems. It involves implementing strategies and controls to minimize the impact of potential cyber threats, such as data breaches, malware, and unauthorized access. The goal is to balance security measures with business needs, ensuring sensitive information remains protected while maintaining operational efficiency. Effective risk management is ongoing, adapting to new threats and changes within the organization.

Can you make $500,000 a year in cyber security?

Cybersecurity risk management professionals can potentially earn $500,000 or more annually, especially at senior levels, in leadership roles, or with extensive experience and specialized certifications like CISSP or CISM. High salaries are often associated with executive positions, consulting, or working for large organizations with complex security needs.
What are popular job titles related to Cybersecurity Risk Management jobs in Baltimore, MD? For Cybersecurity Risk Management jobs in Baltimore, MD, the most frequently searched job titles are:
What job categories do people searching Cybersecurity Risk Management jobs in Baltimore, MD look for? The top searched job categories for Cybersecurity Risk Management jobs in Baltimore, MD are:
What cities near Baltimore, MD are hiring for Cybersecurity Risk Management jobs? Cities near Baltimore, MD with the most Cybersecurity Risk Management job openings:
Infographic showing various Cybersecurity Risk Management job openings in Baltimore, MD as of July 2026, with employment types broken down into 67% Full Time, and 33% Contract. Highlights an 100% In-person job distribution, with an average salary of $132,110 per year, or $63.5 per hour.
Cybersecurity Engineer

Cybersecurity Engineer

VMR Strategic Solutions

Fort George G Meade, MD

Full-time

Posted 22 days ago


Job description

Job Type: Full Time
Location: Fort Meade, Md.
Clearance: Top Secret/SCI w/Polygraph
VMR Strategic Solutions is seeking a Cybersecurity Engineer who possesses a profound grasp of intermediate cyber engineering and cybersecurity concepts. This role requires a strong understanding of cybersecurity policies and the Risk Management Framework. The ideal candidate will have the capacity to independently conduct cybersecurity research and analysis, providing valuable recommendations for security implementation and offering expert advice on cybersecurity best practices.

Duties

  • Independently conduct cybersecurity research and analysis, offering recommendations for security enhancements and advising on best practices.
  • Contribute substantially to the creation of cybersecurity documentation, concept papers, and test plans as per Command policies and the Risk Management Framework.
  • Evaluate functional performance and operation, delivering recommendations for Certification and Accreditation (C&A) based on test results and inspections.
  • Act as a liaison between operators, developers, and system engineers, ensuring compliance with DoD and NIST requirements.
  • Assess infrastructure requests and provide guidance on development strategies.

Qualifications

Required education and experience:

  • A minimum of a Bachelor’s Degree from an accredited college or university in Computer Science, Cybersecurity, Computer Engineering, or a related field. Alternatively, an additional 5 years of experience can substitute for the degree.
  • A minimum of 10 years of experience in cybersecurity or information assurance.
  • Possession of DOD 8140/DOD 8570 IAM Level II Certification.
  • Desired familiarity with the Cyber Mission Force construct and operational requirements.

Required Clearance

  • TS/SCI with Polygraph

Working Environment

  • Onsite