... risk management experience in DoD/Federal environments * Strong analytical and communication skills * Familiarity with RMF and cybersecurity risk concepts * Active Secret clearance *Position ...
... risk management experience in DoD/Federal environments * Strong analytical and communication skills * Familiarity with RMF and cybersecurity risk concepts * Active Secret clearance *Position ...
... risk management experience in DoD/Federal environments * Strong analytical and communication skills * Familiarity with RMF and cybersecurity risk concepts * Active Secret clearance *Position ...
... risk management experience in DoD/Federal environments * Strong analytical and communication skills * Familiarity with RMF and cybersecurity risk concepts * Active Secret clearance *Position ...
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
... risk management activities into the system development lifecycle (SDLC), including selection, implementation, & validation of security controls Serve as the primary cybersecurity interface with ...
... risk management activities into the system development lifecycle (SDLC), including selection, implementation, & validation of security controls Serve as the primary cybersecurity interface with ...
Provide guidance on cybersecurity risk management activities, including Risk Management Framework (RMF), Authorization to Operate (ATO), reciprocity initiatives, control selection, and continuous ...
Provide guidance on cybersecurity risk management activities, including Risk Management Framework (RMF), Authorization to Operate (ATO), reciprocity initiatives, control selection, and continuous ...
This role partners with the Chief Risk Officer (CRO) and the Enterprise Risk Management team in identifying, assessing, and monitoring the organization's technology and cybersecurity risk profile to ...
This role partners with the Chief Risk Officer (CRO) and the Enterprise Risk Management team in identifying, assessing, and monitoring the organization's technology and cybersecurity risk profile to ...
Program Risk Manager
Herndon, VA · On-site
$86K - $138K/yr
Master's degree in relevant field (e.g., Risk Management, Cybersecurity, Systems Engineering, Business Administration); OR * PMIRMP or ISACA CRISC certification. * Experience: Progressive risk ...
Program Risk Manager
Herndon, VA · On-site
$86K - $138K/yr
Master's degree in relevant field (e.g., Risk Management, Cybersecurity, Systems Engineering, Business Administration); OR * PMIRMP or ISACA CRISC certification. * Experience: Progressive risk ...
Program Risk Manager
Herndon, VA · On-site
$86K - $138K/yr
Master's degree in relevant field (e.g., Risk Management, Cybersecurity, Systems Engineering, Business Administration); OR * PMI-RMP or ISACA CRISC certification. * Experience: Progressive risk ...
Program Risk Manager
Herndon, VA · On-site
$86K - $138K/yr
Master's degree in relevant field (e.g., Risk Management, Cybersecurity, Systems Engineering, Business Administration); OR * PMI-RMP or ISACA CRISC certification. * Experience: Progressive risk ...
Cybersecurity Director
$127K - $172K/yr
Active Secret As a Cybersecurity Director, you will serve as a senior leader responsible for ... This role combines deep expertise in cyber governance, risk management, and compliance with ...
Cybersecurity Director
$127K - $172K/yr
Active Secret As a Cybersecurity Director, you will serve as a senior leader responsible for ... This role combines deep expertise in cyber governance, risk management, and compliance with ...
Program Risk Manager
$86K - $138K/yr
Master's degree in relevant field (e.g., Risk Management, Cybersecurity, Systems Engineering, Business Administration); OR * PMIRMP or ISACA CRISC certification. * Experience: Progressive risk ...
Program Risk Manager
$86K - $138K/yr
Master's degree in relevant field (e.g., Risk Management, Cybersecurity, Systems Engineering, Business Administration); OR * PMIRMP or ISACA CRISC certification. * Experience: Progressive risk ...
This includes assessing cybersecurity risk, control testing and monitoring, identification and ... Responsibilities As a SRR Compliance Management Specialist, you will be responsible for ...
This includes assessing cybersecurity risk, control testing and monitoring, identification and ... Responsibilities As a SRR Compliance Management Specialist, you will be responsible for ...
Cyber Risk Analyst
Bowie, MD · On-site
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
Cyber Risk Analyst
Bowie, MD · On-site
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
Cyber Security Sr. Manager
Ashburn, VA · On-site
$145K - $160K/yr
Drawing on cybersecurity and risk management best practices used across the NFL, this role will guide strategy, lead incident response functions, ensure compliance with league-wide requirements, and ...
Cyber Security Sr. Manager
Ashburn, VA · On-site
$145K - $160K/yr
Drawing on cybersecurity and risk management best practices used across the NFL, this role will guide strategy, lead incident response functions, ensure compliance with league-wide requirements, and ...
Cyber Risk Analyst
Chantilly, VA · On-site
$86K - $138K/yr
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
Cyber Risk Analyst
Chantilly, VA · On-site
$86K - $138K/yr
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
Senior Cybersecurity Risk Analyst - USA Remote
Washington, DC · Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
Senior Cybersecurity Risk Analyst - USA Remote
Washington, DC · Remote
$130K - $160K/yr
The Senior Cybersecurity Risk Analyst is responsible for executing third-party and supplier risk ... Execute the third-party risk management (TPRM) lifecycle end-to-end, including vendor intake ...
Cyber Risk Analyst
Chantilly, VA · On-site
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
Cyber Risk Analyst
Chantilly, VA · On-site
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
Cyber Risk Analyst
Bowie, MD · On-site
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
Cyber Risk Analyst
Bowie, MD · On-site
Identify, analyze, and document cybersecurity risks across FAA systems and modernization initiatives. * Support Risk Management Framework (RMF) activities, including risk assessments, control ...
RESPONSIBILITIES • Provide expert-level cybersecurity advisory support to program leadership on enterprise risk, governance, and security strategy. • Lead and support Risk Management Framework ...
RESPONSIBILITIES • Provide expert-level cybersecurity advisory support to program leadership on enterprise risk, governance, and security strategy. • Lead and support Risk Management Framework ...
... chain management, e-commerce solutions, and B2B public exchanges and B2B process integration ... Responsible for developing and executing risk mitigation concepts, plans and services used to ...
... chain management, e-commerce solutions, and B2B public exchanges and B2B process integration ... Responsible for developing and executing risk mitigation concepts, plans and services used to ...
Cybersecurity Risk Management information
See Washington, DC salary details
$64.3K - $77.5K
1% of jobs
$77.5K - $90.8K
4% of jobs
$90.8K - $104K
5% of jobs
$104K - $117.2K
9% of jobs
$124.5K is the 25th percentile. Wages below this are outliers.
$117.2K - $130.5K
11% of jobs
$130.5K - $143.7K
10% of jobs
The median wage is $148.8K / yr.
$143.7K - $156.9K
28% of jobs
$164.6K is the 75th percentile. Wages above this are outliers.
$156.9K - $170.2K
14% of jobs
$170.2K - $183.4K
11% of jobs
$183.4K - $196.6K
4% of jobs
$196.6K - $209.9K
4% of jobs
$64.3K
$150K
$209.9K
How much do cybersecurity risk management jobs pay per year?
As of Jun 21, 2026, the average yearly pay for cybersecurity risk management in Washington, DC is $150,027.00, according to ZipRecruiter salary data. Most workers in this role earn between $125,200.00 and $169,300.00 per year, depending on experience, location, and employer.
What is the role of a risk manager in cybersecurity?
A cybersecurity risk manager identifies, assesses, and prioritizes security risks to an organization’s information systems. They develop strategies to mitigate threats, implement security controls, and ensure compliance with industry standards, often using tools like risk assessment frameworks and security audits. Their role is essential in protecting digital assets and supporting overall cybersecurity posture.
Is security risk management a good career?
Security risk management is a valuable career in cybersecurity, focusing on identifying and mitigating threats to organizational assets. It often requires knowledge of security frameworks, risk assessment tools, and certifications like CISSP or CISM. The field offers strong job growth, competitive salaries, and opportunities across various industries.
What are some common challenges faced by professionals in Cybersecurity Risk Management, and how can they be addressed?
Professionals in Cybersecurity Risk Management often encounter challenges such as keeping up with rapidly evolving cyber threats, balancing security needs with business objectives, and ensuring compliance with industry regulations. Addressing these challenges requires continuous learning, effective communication with stakeholders, and close collaboration with IT, legal, and business teams. Building strong partnerships across departments and investing in ongoing training can help mitigate these obstacles and support proactive risk management.
What is the difference between Cybersecurity Risk Management vs Cybersecurity Analyst?
| Aspect | Cybersecurity Risk Management | Cybersecurity Analyst |
|---|---|---|
| Certifications | CRISC, CISSP, CISM | CompTIA Security+, CEH, CISSP |
| Work Environment | Risk assessment, policy development, strategic planning | Monitoring security systems, incident response, vulnerability analysis |
| Employer & Industry Usage | Financial, healthcare, government, large enterprises | IT departments, cybersecurity firms, corporate security teams |
Cybersecurity Risk Management focuses on identifying, assessing, and mitigating security risks at an organizational level, often involving policy creation and strategic planning. In contrast, a Cybersecurity Analyst primarily monitors security systems, responds to incidents, and analyzes vulnerabilities. Both roles require similar certifications but serve different functions within cybersecurity teams.
What are the key skills and qualifications needed to thrive in Cybersecurity Risk Management, and why are they important?
To thrive in Cybersecurity Risk Management, you need a solid understanding of information security principles, risk assessment methodologies, compliance standards, and typically a degree in cybersecurity or a related field. Familiarity with risk management frameworks (such as NIST or ISO 27001), security tools, and professional certifications like CISSP or CRISC is highly valued. Strong analytical thinking, effective communication, and problem-solving skills help professionals translate technical risks for non-technical stakeholders and foster collaboration. These competencies are crucial to proactively identifying threats, managing vulnerabilities, and ensuring organizational resilience in a rapidly evolving digital landscape.
What is cybersecurity risk management?
Cybersecurity risk management is the process of identifying, assessing, and prioritizing risks to an organization's digital assets and information systems. It involves implementing strategies and controls to minimize the impact of potential cyber threats, such as data breaches, malware, and unauthorized access. The goal is to balance security measures with business needs, ensuring sensitive information remains protected while maintaining operational efficiency. Effective risk management is ongoing, adapting to new threats and changes within the organization.
What is risk management in cyber security?
In cybersecurity risk management, professionals identify, assess, and prioritize potential security threats to an organization’s information systems. They implement strategies and controls to mitigate or accept risks, often using frameworks like NIST or ISO 27001, and may hold certifications such as CISSP or CISM to ensure effective risk handling.
Can you make $500,000 a year in cyber security?
Cybersecurity risk management professionals can potentially earn $500,000 or more annually, especially at senior levels, in leadership roles, or with extensive experience and specialized certifications like CISSP or CISM. High salaries are often associated with executive positions, consulting, or working in large organizations with complex security needs.
What are popular job titles related to Cybersecurity Risk Management jobs in Washington, DC? For Cybersecurity Risk Management jobs in Washington, DC, the most frequently searched job titles are:
What job categories do people searching Cybersecurity Risk Management jobs in Washington, DC look for? The top searched job categories for Cybersecurity Risk Management jobs in Washington, DC are:
What cities near Washington, DC are hiring for Cybersecurity Risk Management jobs? Cities near Washington, DC with the most Cybersecurity Risk Management job openings:
Contractor
Posted 5 days ago
Job description
Risk Manager
Role Summary
The Risk Manager leads identification, analysis, prioritization, and mitigation of risks, issues, and opportunities across supported systems.
Key Responsibilities
Qualifications
*Position contingent on contract win.
Summit is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. VEVRAA Federal Contractor. Summit gives preference to protected veterans.
Position descriptions serve as a guideline and may not be construed as a guarantee of employment. Summit is an at-will organization.
Role Summary
The Risk Manager leads identification, analysis, prioritization, and mitigation of risks, issues, and opportunities across supported systems.
Key Responsibilities
- Develop and maintain the Risk Management Plan and risk register
- Facilitate Risk Management Board activities
- Identify high-impact risks and mitigation strategies
- Integrate risk reporting into Monthly Status Reports
- Advise Government leadership on emerging risks and opportunities
Qualifications
- 5+ years of risk management experience in DoD/Federal environments
- Strong analytical and communication skills
- Familiarity with RMF and cybersecurity risk concepts
- Active Secret clearance
*Position contingent on contract win.
Summit is an equal opportunity/affirmative action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status. VEVRAA Federal Contractor. Summit gives preference to protected veterans.
Position descriptions serve as a guideline and may not be construed as a guarantee of employment. Summit is an at-will organization.