One Federal Solution provides senior-level cybersecurity risk management expertise supporting A&A, FISMA compliance, IC security standards, continuous monitoring, CDS, and secure cloud/hybrid ...
One Federal Solution provides senior-level cybersecurity risk management expertise supporting A&A, FISMA compliance, IC security standards, continuous monitoring, CDS, and secure cloud/hybrid ...
... risk management experience in DoD/Federal environments * Strong analytical and communication skills * Familiarity with RMF and cybersecurity risk concepts * Active Secret clearance *Position ...
... risk management experience in DoD/Federal environments * Strong analytical and communication skills * Familiarity with RMF and cybersecurity risk concepts * Active Secret clearance *Position ...
... risk management experience in DoD/Federal environments * Strong analytical and communication skills * Familiarity with RMF and cybersecurity risk concepts * Active Secret clearance *Position ...
... risk management experience in DoD/Federal environments * Strong analytical and communication skills * Familiarity with RMF and cybersecurity risk concepts * Active Secret clearance *Position ...
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
... risk management activities into the system development lifecycle (SDLC), including selection, implementation, & validation of security controls Serve as the primary cybersecurity interface with ...
... risk management activities into the system development lifecycle (SDLC), including selection, implementation, & validation of security controls Serve as the primary cybersecurity interface with ...
Provide guidance on cybersecurity risk management activities, including Risk Management Framework (RMF), Authorization to Operate (ATO), reciprocity initiatives, control selection, and continuous ...
New
Provide guidance on cybersecurity risk management activities, including Risk Management Framework (RMF), Authorization to Operate (ATO), reciprocity initiatives, control selection, and continuous ...
New
This role partners with the Chief Risk Officer (CRO) and the Enterprise Risk Management team in identifying, assessing, and monitoring the organization's technology and cybersecurity risk profile to ...
This role partners with the Chief Risk Officer (CRO) and the Enterprise Risk Management team in identifying, assessing, and monitoring the organization's technology and cybersecurity risk profile to ...
Program Risk Manager
Herndon, VA · On-site
$86K - $138K/yr
Master's degree in relevant field (e.g., Risk Management, Cybersecurity, Systems Engineering, Business Administration); OR * PMI-RMP or ISACA CRISC certification. * Experience: Progressive risk ...
Program Risk Manager
Herndon, VA · On-site
$86K - $138K/yr
Master's degree in relevant field (e.g., Risk Management, Cybersecurity, Systems Engineering, Business Administration); OR * PMI-RMP or ISACA CRISC certification. * Experience: Progressive risk ...
Program Risk Manager
$86K - $138K/yr
Master's degree in relevant field (e.g., Risk Management, Cybersecurity, Systems Engineering, Business Administration); OR * PMIRMP or ISACA CRISC certification. * Experience: Progressive risk ...
Program Risk Manager
$86K - $138K/yr
Master's degree in relevant field (e.g., Risk Management, Cybersecurity, Systems Engineering, Business Administration); OR * PMIRMP or ISACA CRISC certification. * Experience: Progressive risk ...
Program Risk Manager
Herndon, VA · On-site
$86K - $138K/yr
Master's degree in relevant field (e.g., Risk Management, Cybersecurity, Systems Engineering, Business Administration); OR * PMIRMP or ISACA CRISC certification. * Experience: Progressive risk ...
Program Risk Manager
Herndon, VA · On-site
$86K - $138K/yr
Master's degree in relevant field (e.g., Risk Management, Cybersecurity, Systems Engineering, Business Administration); OR * PMIRMP or ISACA CRISC certification. * Experience: Progressive risk ...
Senior Cybersecurity Risk Analyst - USA Remote
Washington, DC · Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
New
Senior Cybersecurity Risk Analyst - USA Remote
Washington, DC · Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
New
Cybersecurity Director
Arlington, VA · On-site
$127K - $172K/yr
Active Secret As a Cybersecurity Director, you will serve as a senior leader responsible for ... This role combines deep expertise in cyber governance, risk management, and compliance with ...
Cybersecurity Director
Arlington, VA · On-site
$127K - $172K/yr
Active Secret As a Cybersecurity Director, you will serve as a senior leader responsible for ... This role combines deep expertise in cyber governance, risk management, and compliance with ...
This includes assessing cybersecurity risk, control testing and monitoring, identification and ... Responsibilities As a SRR Compliance Management Specialist, you will be responsible for ...
This includes assessing cybersecurity risk, control testing and monitoring, identification and ... Responsibilities As a SRR Compliance Management Specialist, you will be responsible for ...
Cyber Risk Analyst
Chantilly, VA · On-site
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
Cyber Risk Analyst
Chantilly, VA · On-site
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
Cyber Security Sr. Manager
Ashburn, VA · On-site
$145K - $160K/yr
Drawing on cybersecurity and risk management best practices used across the NFL, this role will guide strategy, lead incident response functions, ensure compliance with league-wide requirements, and ...
Cyber Security Sr. Manager
Ashburn, VA · On-site
$145K - $160K/yr
Drawing on cybersecurity and risk management best practices used across the NFL, this role will guide strategy, lead incident response functions, ensure compliance with league-wide requirements, and ...
Cyber Risk Analyst
Chantilly, VA · On-site
$86K - $138K/yr
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
Cyber Risk Analyst
Chantilly, VA · On-site
$86K - $138K/yr
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
... chain management, e-commerce solutions, and B2B public exchanges and B2B process integration ... Responsible for developing and executing risk mitigation concepts, plans and services used to ...
... chain management, e-commerce solutions, and B2B public exchanges and B2B process integration ... Responsible for developing and executing risk mitigation concepts, plans and services used to ...
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
Job Title: TPRM Assessor/Cybersecurity Risk Auditor. Location: Chantilly, VA. Responsibilities ... Communicate or assist in communicating the results of some audit projects to management via written ...
Job Title: TPRM Assessor/Cybersecurity Risk Auditor. Location: Chantilly, VA. Responsibilities ... Communicate or assist in communicating the results of some audit projects to management via written ...
RESPONSIBILITIES • Provide expert-level cybersecurity advisory support to program leadership on enterprise risk, governance, and security strategy. • Lead and support Risk Management Framework ...
RESPONSIBILITIES • Provide expert-level cybersecurity advisory support to program leadership on enterprise risk, governance, and security strategy. • Lead and support Risk Management Framework ...
Cybersecurity Risk Management information
See Reston, VA salary details
$60.2K - $72.6K
1% of jobs
$72.6K - $85K
4% of jobs
$85K - $97.4K
5% of jobs
$97.4K - $109.8K
9% of jobs
$116.6K is the 25th percentile. Wages below this are outliers.
$109.8K - $122.2K
11% of jobs
$122.2K - $134.6K
10% of jobs
The median wage is $139.4K / yr.
$134.6K - $147K
28% of jobs
$154.1K is the 75th percentile. Wages above this are outliers.
$147K - $159.4K
14% of jobs
$159.4K - $171.8K
11% of jobs
$171.8K - $184.2K
4% of jobs
$184.2K - $196.6K
4% of jobs
$60.2K
$140.5K
$196.6K
How much do cybersecurity risk management jobs pay per year?
As of Jun 19, 2026, the average yearly pay for cybersecurity risk management in Reston, VA is $140,519.00, according to ZipRecruiter salary data. Most workers in this role earn between $117,300.00 and $158,500.00 per year, depending on experience, location, and employer.
What is the role of a risk manager in cybersecurity?
A cybersecurity risk manager identifies, assesses, and prioritizes security risks to an organization’s information systems. They develop strategies to mitigate threats, implement security controls, and ensure compliance with industry standards, often using tools like risk assessment frameworks and security audits. Their role is essential in protecting digital assets and supporting overall cybersecurity posture.
Is security risk management a good career?
Security risk management is a valuable career in cybersecurity, focusing on identifying and mitigating threats to organizational assets. It often requires knowledge of security frameworks, risk assessment tools, and certifications like CISSP or CISM. The field offers strong job growth, competitive salaries, and opportunities across various industries.
What are some common challenges faced by professionals in Cybersecurity Risk Management, and how can they be addressed?
Professionals in Cybersecurity Risk Management often encounter challenges such as keeping up with rapidly evolving cyber threats, balancing security needs with business objectives, and ensuring compliance with industry regulations. Addressing these challenges requires continuous learning, effective communication with stakeholders, and close collaboration with IT, legal, and business teams. Building strong partnerships across departments and investing in ongoing training can help mitigate these obstacles and support proactive risk management.
What is the difference between Cybersecurity Risk Management vs Cybersecurity Analyst?
| Aspect | Cybersecurity Risk Management | Cybersecurity Analyst |
|---|---|---|
| Certifications | CRISC, CISSP, CISM | CompTIA Security+, CEH, CISSP |
| Work Environment | Risk assessment, policy development, strategic planning | Monitoring security systems, incident response, vulnerability analysis |
| Employer & Industry Usage | Financial, healthcare, government, large enterprises | IT departments, cybersecurity firms, corporate security teams |
Cybersecurity Risk Management focuses on identifying, assessing, and mitigating security risks at an organizational level, often involving policy creation and strategic planning. In contrast, a Cybersecurity Analyst primarily monitors security systems, responds to incidents, and analyzes vulnerabilities. Both roles require similar certifications but serve different functions within cybersecurity teams.
What are the key skills and qualifications needed to thrive in Cybersecurity Risk Management, and why are they important?
To thrive in Cybersecurity Risk Management, you need a solid understanding of information security principles, risk assessment methodologies, compliance standards, and typically a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), security tools, and professional certifications like CISSP or CRISC is highly valued. Strong analytical thinking, effective communication, and problem-solving skills help professionals translate technical risks for non-technical stakeholders and foster collaboration. These competencies are crucial to proactively identifying threats, managing vulnerabilities, and ensuring organizational resilience in a rapidly evolving digital landscape.
What is cybersecurity risk management?
Cybersecurity risk management is the process of identifying, assessing, and prioritizing risks to an organization's digital assets and information systems. It involves implementing strategies and controls to minimize the impact of potential cyber threats, such as data breaches, malware, and unauthorized access. The goal is to balance security measures with business needs, ensuring sensitive information remains protected while maintaining operational efficiency. Effective risk management is ongoing, adapting to new threats and changes within the organization.
What is risk management in cyber security?
In cybersecurity risk management, professionals identify, assess, and prioritize potential security threats to an organization’s information systems. They implement strategies and controls to mitigate or accept risks, often using frameworks like NIST or ISO 27001, and may hold certifications such as CISSP or CISM to ensure effective risk handling.
Can you make $500,000 a year in cyber security?
Cybersecurity risk management professionals can potentially earn $500,000 or more annually, especially at senior levels, in leadership roles, or with extensive experience and specialized certifications like CISSP or CISM. High salaries are often associated with executive positions, consulting, or working in large organizations with complex security needs.
What are popular job titles related to Cybersecurity Risk Management jobs in Reston, VA? For Cybersecurity Risk Management jobs in Reston, VA, the most frequently searched job titles are:
What job categories do people searching Cybersecurity Risk Management jobs in Reston, VA look for? The top searched job categories for Cybersecurity Risk Management jobs in Reston, VA are:
What cities near Reston, VA are hiring for Cybersecurity Risk Management jobs? Cities near Reston, VA with the most Cybersecurity Risk Management job openings:
Full-time
Posted 4 days ago
Job description
One Federal Solution provides senior-level cybersecurity risk management expertise supporting A&A, FISMA compliance, IC security standards, continuous monitoring, CDS, and secure cloud/hybrid environments. We apply NIST, CNSSI 1253, and RMF principles to strengthen security posture, automate compliance activities, and deliver risk-based solutions for federal mission needs.
Senior Security Risk Management SME Task and Duties:
Senior Security Risk Management SME Qualifications:
About One Federal Solution
One Federal Solution (OFS) is an innovative Professional Services provider with over 20 years of experience supporting Defense and Civilian agencies. OFS specializes in Business Intelligence, Acquisition and Procurement, and other Professional Services. We are pioneers, builders, thought leaders, and pride ourselves on thinking outside the box to co-create with our customers, helping them achieve exceptional enterprise-wide outcomes. As a certified Service-Disabled Veteran-Owned Small Business (SDVOSB), OFS is committed to providing high-performance professionals who deliver excellence to our government partners.
Senior Security Risk Management SME Task and Duties:
- Provide senior-level security risk management subject matter expertise.
- Support Authorization and Assessment (A&A), FISMA compliance, IC cybersecurity policy and standards, continuous monitoring, CDS, and secure cloud/hybrid engineering.
- Apply emerging and evolving security risk management practices, including automation of A&A and continuous monitoring activities.
- Apply NIST 800-series and CNSSI 1253 security controls, risk management framework principles, and related guidance.
- Advise on secure cloud and hybrid engineering risk posture, compliance, and remediation approaches.
Senior Security Risk Management SME Qualifications:
- Minimum 10 years of total related experience.
- Minimum 2 years of recent experience in each of the following: A&A, FISMA compliance, IC cybersecurity policy and standards, continuous monitoring, CDS, and secure cloud/hybrid engineering.
- Experience automating A&A and continuous monitoring activities.
- Experience applying NIST 800-series and CNSSI 1253 security controls and risk management framework guidance.
- Mandatory certification in CISM, CAP, or GRC Certification in good standing at award and throughout the period of performance, or comparable demonstrable experience.
- Desired: certifications in AWS, Microsoft Azure, and Microsoft Office 365 cloud platforms.
About One Federal Solution
One Federal Solution (OFS) is an innovative Professional Services provider with over 20 years of experience supporting Defense and Civilian agencies. OFS specializes in Business Intelligence, Acquisition and Procurement, and other Professional Services. We are pioneers, builders, thought leaders, and pride ourselves on thinking outside the box to co-create with our customers, helping them achieve exceptional enterprise-wide outcomes. As a certified Service-Disabled Veteran-Owned Small Business (SDVOSB), OFS is committed to providing high-performance professionals who deliver excellence to our government partners.
About One Federal Solution
Sourced by ZipRecruiter
Company size
51 - 200 Employees
Headquarters location
Alexandria, VA, US
Year founded
2007