ZipRecruiter

Log In

1

Cybersecurity Risk Management Jobs in Baltimore, MD

ICF

Cyber Security Lead (Health IT)

Baltimore, MD

$110K - $149K/yr

We are seeking a Cyber Security Lead to support enterprise IT initiatives in a regulated environment where security, privacy, risk management, and standards compliance are central to planning and ...

Peraton

Cybersecurity Engineer

Fort George G Meade, MD · On-site

$112K - $179K/yr

Maintain in-depth knowledge and understanding of the DOD cybersecurity policies and the Risk Management Framework * With no guidance, conduct cybersecurity engineering research and analysis, provide ...

Peraton

Cybersecurity Engineer

Fort George G Meade, MD

$112K - $179K/yr

Maintain in-depth knowledge and understanding of the DOD cybersecurity policies and the Risk Management Framework * With no guidance, conduct cybersecurity engineering research and analysis, provide ...

Peraton

Cybersecurity Engineer

Fort George G Meade, MD · On-site

$112K - $179K/yr

Maintain in-depth knowledge and understanding of the DOD cybersecurity policies and the Risk Management Framework * With no guidance, conduct cybersecurity engineering research and analysis, provide ...

Leidos

Cyber Security Task Lead

Linthicum Heights, MD

$131K - $237K/yr

... risk assessments and vulnerability testing, coordinate internal and external security audits to ... Project Management Professional (PMP) certification or equivalent * BA/BS or equivalent experience ...

Leidos

Cyber Security Task Lead

Linthicum, MD · On-site

$131K - $237K/yr

... risk assessments and vulnerability testing, coordinate internal and external security audits to ... Project Management Professional ® (PMP) certification or equivalent * BA/BS or equivalent ...

next page

Showing results 1-20

All JobsCybersecurity Risk Management JobsCybersecurity Risk Management Jobs in Baltimore, MD

Cybersecurity Risk Management information

See Baltimore, MD salary details

$56.6K

$132.1K

$184.8K

How much do cybersecurity risk management jobs pay per year?

As of Jun 15, 2026, the average yearly pay for cybersecurity risk management in Baltimore, MD is $132,116.00, according to ZipRecruiter salary data. Most workers in this role earn between $110,300.00 and $149,000.00 per year, depending on experience, location, and employer.

What is the role of a risk manager in cybersecurity?

A cybersecurity risk manager identifies, assesses, and prioritizes security risks to an organization’s information systems. They develop strategies to mitigate threats, implement security controls, and ensure compliance with industry standards, often using tools like risk assessment frameworks and security audits. Their role is essential in protecting digital assets and supporting overall cybersecurity posture.

Is security risk management a good career?

Security risk management is a valuable career in cybersecurity, focusing on identifying and mitigating threats to organizational assets. It often requires knowledge of security frameworks, risk assessment tools, and certifications like CISSP or CISM. The field offers strong job growth, competitive salaries, and opportunities across various industries.

What are some common challenges faced by professionals in Cybersecurity Risk Management, and how can they be addressed?

Professionals in Cybersecurity Risk Management often encounter challenges such as keeping up with rapidly evolving cyber threats, balancing security needs with business objectives, and ensuring compliance with industry regulations. Addressing these challenges requires continuous learning, effective communication with stakeholders, and close collaboration with IT, legal, and business teams. Building strong partnerships across departments and investing in ongoing training can help mitigate these obstacles and support proactive risk management.

What is the difference between Cybersecurity Risk Management vs Cybersecurity Analyst?

AspectCybersecurity Risk ManagementCybersecurity Analyst
CertificationsCRISC, CISSP, CISMCompTIA Security+, CEH, CISSP
Work EnvironmentRisk assessment, policy development, strategic planningMonitoring security systems, incident response, vulnerability analysis
Employer & Industry UsageFinancial, healthcare, government, large enterprisesIT departments, cybersecurity firms, corporate security teams

Cybersecurity Risk Management focuses on identifying, assessing, and mitigating security risks at an organizational level, often involving policy creation and strategic planning. In contrast, a Cybersecurity Analyst primarily monitors security systems, responds to incidents, and analyzes vulnerabilities. Both roles require similar certifications but serve different functions within cybersecurity teams.

What are the key skills and qualifications needed to thrive in Cybersecurity Risk Management, and why are they important?

To thrive in Cybersecurity Risk Management, you need a solid understanding of information security principles, risk assessment methodologies, compliance standards, and typically a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), security tools, and professional certifications like CISSP or CRISC is highly valued. Strong analytical thinking, effective communication, and problem-solving skills help professionals translate technical risks for non-technical stakeholders and foster collaboration. These competencies are crucial to proactively identifying threats, managing vulnerabilities, and ensuring organizational resilience in a rapidly evolving digital landscape.

What is cybersecurity risk management?

Cybersecurity risk management is the process of identifying, assessing, and prioritizing risks to an organization's digital assets and information systems. It involves implementing strategies and controls to minimize the impact of potential cyber threats, such as data breaches, malware, and unauthorized access. The goal is to balance security measures with business needs, ensuring sensitive information remains protected while maintaining operational efficiency. Effective risk management is ongoing, adapting to new threats and changes within the organization.

What is risk management in cyber security?

In cybersecurity risk management, professionals identify, assess, and prioritize potential security threats to an organization’s information systems. They implement strategies and controls to mitigate or accept risks, often using frameworks like NIST or ISO 27001, and may hold certifications such as CISSP or CISM to ensure effective risk handling.

Can you make $500,000 a year in cyber security?

Cybersecurity risk management professionals can potentially earn $500,000 or more annually, especially at senior levels, in leadership roles, or with extensive experience and specialized certifications like CISSP or CISM. High salaries are often associated with executive positions, consulting, or working in large organizations with complex security needs.
What are popular job titles related to Cybersecurity Risk Management jobs in Baltimore, MD? For Cybersecurity Risk Management jobs in Baltimore, MD, the most frequently searched job titles are:
What job categories do people searching Cybersecurity Risk Management jobs in Baltimore, MD look for? The top searched job categories for Cybersecurity Risk Management jobs in Baltimore, MD are:
What cities near Baltimore, MD are hiring for Cybersecurity Risk Management jobs? Cities near Baltimore, MD with the most Cybersecurity Risk Management job openings:
Cybersecurity Risk Management jobs near you
Infographic showing various Cybersecurity Risk Management job openings in Baltimore, MD as of June 2026, with employment types broken down into 98% Full Time, 1% Part Time, and 1% Temporary. Highlights an 92% Physical, 2% Hybrid, and 6% Remote job distribution, with an average salary of $132,116 per year, or $63.5 per hour.
Principal Information Systems Security Engineer

Principal Information Systems Security Engineer

Leidos

Linthicum, MD • On-site

$154K - $278K/yr

Full-time

Posted 8 days ago

Leidos rating

8.4

Company rating: 8.4 out of 10

Based on 146 frontline employees who took The Breakroom Quiz

56th of 428 rated business services

Job description

As a Senior Information Security Systems Engineer (ISSE) you will join a small team of security engineers providing Information Assurance (IA) Architecture Analysis and Security Engineering Support for the implementation and fielding of the National Leadership Command Capability in support of Nuclear Command, Control, and Communications (NC3), Continuity of Government (COG), and Senior Leader communications. The ISSE will perform in a consultant like role providing technical knowledge, expertise and advice to our customer.
Primary Responsibilities:
The Senior ISSE shall deliver and lead threat-informed cybersecurity products - cybersecurity risk assessments, architecture reviews, and engineering guidance that bring sound, accurate, timely, and actionable service to mission partners: This includes:
  • Conduct cybersecurity risk assessments and provide prioritized risk mitigation recommendations in support of the customer's mission.
  • Support the design, implementation, and operation of real-time capabilities to discover, detect, analyze, and mitigate threats and vulnerabilities.
  • Analyze candidate architectures by evaluating against defined security requirements to identify security gaps, and provide recommended mitigation strategy.
  • Research and evaluate candidate emerging technologies to determine cybersecurity effectiveness.
  • Aid stakeholders through the development, refinement, delivery, and implementation of innovative solutions and capabilities.
  • Engage stakeholders to ensure security objectives, protection needs, security requirements and associated validation methods are defined.
  • Validates and verifies system security requirements definitions and analysis and establishes system security design
  • Designs, develops, implements and/or integrates IA and security systems and system components including those for networking, computing and enclave environment to include those with multiple enclaves and with differing data protection/classification requirements
  • Assist architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of Agency security policy and enterprise solutions
  • Contributes to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations
  • Reviews C&A documentation, providing feedback on completeness and compliance of its content

CLEARANCE REQUIRED: Active TS/SCI with polygraph.
Qualifications
  • Bachelor of Science degree from an accredited university ideally in Computer Science, Information Assurance, Information Security System Engineering or related field with a minimum of 20 years of experience as an Information Systems Security Engineer (ISSE) or System Engineer on programs and/or contracts with the customer space
  • CISSP - ISSEP
  • Strong writing skills
  • Confidence and ability to present briefing to senior level DoD officials in both prepared briefings and/or in ad hoc discussions.
  • Expertise in the Risk Management Framework (RMF) and conducting cybersecurity risk assessments
  • Expertise in network technology and systems security engineering. Experience in identifying, researching, characterizing, and documenting security weaknesses related to operating systems, software applications, firmware, network hardware components, as well as network architecture design to identify protection needs and documented policies and procedures.
  • Experience developing and documenting system security requirements and conducting requirements gap analysis.
  • Experience with security monitoring and incident response capabilities
  • Experience with emerging technologies such as Zero Trust, Cloud Computing, etc.
  • Knowledge of, and practical experience with the NIST Special Publications 800 Series, CNSSI 1253, and DoD 8500.
  • Ability to work independently within a schedule and with little direction.

conmd
CABARA
If you're looking for comfort, keep scrolling. At Leidos, we outthink, outbuild, and outpace the status quo - because the mission demands it. We're not hiring followers. We're recruiting the ones who disrupt, provoke, and refuse to fail. Step 10 is ancient history. We're already at step 30 - and moving faster than anyone else dares.
Original Posting:
March 9, 2026
For U.S. Positions: While subject to change based on business needs, Leidos reasonably anticipates that this job requisition will remain open for at least 3 days with an anticipated close date of no earlier than 3 days after the original posting date as listed above.
Pay Range:
Pay Range $154,050.00 - $278,475.00
The Leidos pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.

What Leidos employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom

Leidos logo

About Leidos

Sourced by ZipRecruiter

At Leidos, we deliver innovative solutions through the efforts of our diverse and talented people who are dedicated to our customers' success. We empower our teams, contribute to our communities, and operate sustainable practices. Everything we do is built on a commitment to do the right thing for our customers, our people, and our community.

Industry

It services

Company size

10,000+ Employees

Headquarters location

Reston, VA, US

Social media

FacebookTwitter

View All Leidos Jobs

Apply