1

Digital Risk Jobs in Virginia (NOW HIRING)

Experience in banking, digital assets, or capital markets is desirable * Strong relationship ... Credit Risk: Underwriting and portfolio credit risk across products (e.g., PD/LGD/EAD modeling ...

next page

Showing results 1-20

Digital Risk information

See Virginia salary details

$16

$46

$87

How much do digital risk jobs pay per hour?

As of Jul 9, 2026, the average hourly pay for digital risk in Virginia is $46.84, according to ZipRecruiter salary data. Most workers in this role earn between $25.24 and $60.77 per hour, depending on experience, location, and employer.

What is digital risk and what does a digital risk professional do?

Digital risk refers to the potential threats and vulnerabilities that organizations face as they adopt digital technologies, such as cyber attacks, data breaches, privacy issues, and technology failures. A digital risk professional identifies, assesses, and manages these risks to protect an organization's digital assets and ensure compliance with regulations. Their responsibilities may include implementing cybersecurity measures, monitoring for emerging threats, conducting risk assessments, and developing response strategies. They work closely with IT, compliance, and business teams to create a secure digital environment. The goal is to balance innovation and technology adoption with effective risk management.

What is the difference between Digital Risk vs Cybersecurity Analyst?

AspectDigital RiskCybersecurity Analyst
Required CredentialsCertifications like CISSP, CISA, CISM, and relevant degreesCertifications like CompTIA Security+, CISSP, CEH, and related degrees
Work EnvironmentFocuses on risk management, compliance, and strategic planning across digital assetsFocuses on protecting IT infrastructure, monitoring threats, and incident response
Employer & Industry UsageUsed by financial institutions, tech firms, and corporations managing digital risksCommon in IT departments, security firms, and organizations with cybersecurity teams

Digital Risk professionals primarily focus on identifying and managing risks related to digital assets and compliance, while Cybersecurity Analysts concentrate on protecting systems from cyber threats. Both roles require similar certifications and often work within the same industry environments, but their core responsibilities differ in scope and focus.

What are the main challenges faced by professionals working in Digital Risk roles, and how can they effectively address them?

Professionals in Digital Risk often face challenges such as rapidly evolving cyber threats, regulatory compliance demands, and ensuring robust risk management across digital assets. Staying updated with the latest threat intelligence and regulatory changes is essential. Collaboration with IT, legal, and business teams is crucial to develop comprehensive risk mitigation strategies. Adopting a proactive approach, continuous learning, and leveraging advanced risk assessment tools can help digital risk professionals effectively manage these challenges.

What are the key skills and qualifications needed to thrive as a Digital Risk professional, and why are they important?

To thrive as a Digital Risk professional, you need a solid understanding of risk management frameworks, information security, and regulatory compliance, often supported by a degree in IT, cybersecurity, or a related field. Familiarity with risk assessment tools, cybersecurity platforms, and certifications like CISSP, CISM, or CRISC is typically expected. Strong analytical thinking, attention to detail, and effective communication skills help you identify threats and convey risks to stakeholders. These skills are crucial for proactively protecting organizations from digital threats and ensuring business continuity in a rapidly evolving technological environment.
What cities in Virginia are hiring for Digital Risk jobs? Cities in Virginia with the most Digital Risk job openings:
Infographic showing various Digital Risk job openings in Virginia as of July 2026, with employment types broken down into 86% Full Time, 11% Part Time, and 3% Contract. Highlights an 89% Physical, 3% Hybrid, and 8% Remote job distribution, with an average salary of $97,429 per year, or $46.8 per hour.
External Attack Surface Management Analyst (McLean)

External Attack Surface Management Analyst (McLean)

Booz Allen Hamilton

Mclean, VA • On-site

$99K - $225K/yr

Full-time

Medical, Life, Retirement, PTO

This job post has expired today. Applications are no longer accepted.


Booz Allen Hamilton rating

8.8

Company rating: 8.8 out of 10

Based on 47 frontline employees who took The Breakroom Quiz

9th of 58 rated business consultants


Job description

External Attack Surface Management Analyst

The Opportunity

As an External Attack Surface Management (EASM) Analyst on our team, you’ll continuously identify, monitor, and manage the company’s internet-facing risk exposure. This role focuses on discovering all external assets, including known and shadow IT systems, assessing their security posture, and proactively identifying, prioritizing, and mitigating vulnerabilities and misconfigurations based on risk and potential impact. The EASM Analyst plays a critical role in protecting Booz Allen from external threats by delivering real-time visibility, risk prioritization, and actionable remediation guidance. Working closely with threat intelligence, digital risk protection, and security engineering teams, this position ensures that external exposures are rapidly identified and addressed before they can be exploited. Due to the nature of work performed within this facility, U.S. citizenship is required. Join us. The world can’t wait.

Key Responsibilities

Continuously identify, monitor, and manage the company’s internet-facing risk exposure. Focus on discovering all external assets, including known and shadow IT systems, assessing their security posture, and proactively identifying, prioritizing, and mitigating vulnerabilities and misconfigurations based on risk and potential impact. Work closely with threat intelligence, digital risk protection, and security engineering teams to ensure external exposures are rapidly identified and addressed before they can be exploited. U.S. citizenship is required.

Required Qualifications
  • 4+ years of experience in vulnerability management, security operations, or incident response
  • Experience with an Attack Surface Management discovery tool such as Defender EASM
  • Experience with securing cloud infrastructure such as AWS, Azure, or GCP
  • Experience with automation and data analysis such as Python
  • Experience with API integrations to connect disparate systems, automate processes, and improve operational efficiency
  • Knowledge of networking fundamentals including TCP, IP, DNS, HTTP, HTTPS, SSL, and TLS
  • Associate’s degree and 7+ years of experience supporting IT projects and activities
  • Bachelor’s degree and 5+ years of experience supporting IT projects and activities
  • Master’s degree and 3+ years of experience supporting IT projects and activities
  • 12+ years of experience supporting IT projects and activities in lieu of a degree
Nice If You Have
  • Experience with data analytics including data manipulation, visualization, and reporting
  • Experience partnering with system owners to identify mitigations or compensating controls when remediation is not immediately feasible
  • Experience triaging vulnerabilities and determining risk-based prioritization
  • Experience with IT service management platforms such as ServiceNow
  • Knowledge of Configuration Management Database (CMDB) concepts and implementation
  • Knowledge of security frameworks such as NIST CSF, MITRE ATT&CK, or CIS Controls
  • Ability to translate technical findings into business risk for non-technical stakeholder
Compensation and Benefits

Salary range: $99,000.00 to $225,000.00 (annualized USD). Compensation is determined by location, education, experience, and other factors. Other benefits include health, life, disability, financial, retirement benefits, paid leave, professional development, tuition assistance, work-life programs, and dependent care. Full-time and part-time employees working at least 20 hours a week are eligible to participate in benefit programs. This posting will close within 90 days from the Posting Date.

EEO Statement

All qualified applicants will receive consideration for employment without regard to disability, status as a protected veteran or any other status protected by applicable federal, state, local, or international law.

#J-18808-Ljbffr

What Booz Allen Hamilton employees say

Pay

Benefits

Hours and flexibility

Workplace

Get the full story on Breakroom


Booz Allen Hamilton logo

About Booz Allen Hamilton

Sourced by ZipRecruiter

Booz Allen Hamilton is a leading provider of management and technology consulting services to the US government in defense, intelligence, and civil markets. Headquartered in McLean, Virginia, the firm also serves major corporations, institutions, and not-for-profit organizations. Founded in 1914 by Edwin G. Booz, the company has a long-standing tradition of helping clients achieve success by delivering a wide range of consulting services that include strategic planning, human capital and learning, communication, systems development, and others. The company's mission is to empower people to change the world, and it has a reputation for maintaining the highest standards of integrity and-excellence.

Industry

It services

Company size

10,000+ Employees

Headquarters location

McLean, VA, US

Year founded

1914