2

Freelance Remote Risk Analyst Jobs in Virginia (NOW HIRING)

Contract to Hire Onsite or Remote: Onsite Hybrid preferred - open to remote Location (if onsite ... Collaborate with Information Security, Risk, Compliance, Legal, Audit, IT, and business ...

Actuarial Analyst I

Chesapeake, VA · On-site +1

$103K - $197K/yr

USAA roles may offer remote or hybrid flexibility for active-duty military spouses consistent with ... risk, claims analytics, product management, etc.) to complete unstructured projects. We offer a ...

Actuarial Analyst I

Chesapeake, VA · On-site +1

$103K - $197K/yr

USAA roles may offer remote or hybrid flexibility for active-duty military spouses consistent with ... risk, claims analytics, product management, etc.) to complete unstructured projects. We offer a ...

Actuarial Analyst I

Chesapeake, VA · On-site +1

$103K - $197K/yr

USAA roles may offer remote or hybrid flexibility for active-duty military spouses consistent with ... risk, claims analytics, product management, etc.) to complete unstructured projects. We offer a ...

FTE + Benefits Remote: 80% (4 days a week) Supports the FedRAMP and FISMA authorization(s) of new ... Experience with FedRAMP and/or other authorization processes and NIST risk management framework

FTE + Benefits Remote: 80% (4 days a week) Client supports the FedRAMP and FISMA authorization(s ... Experience with FedRAMP and/or other authorization processes and NIST risk management framework

FTE + Benefits Remote: 80% (4 days a week) Supports the FedRAMP and FISMA authorization(s) of new ... Experience with FedRAMP and/or other authorization processes and NIST risk management framework

FTE + Benefits Remote: 80% (4 days a week) Client supports the FedRAMP and FISMA authorization(s ... Experience with FedRAMP and/or other authorization processes and NIST risk management framework

Senior Governance Analyst

Herndon, VA · On-site +1

$90K - $119K/yr

Remote, United States Employment Type: Full-Time Shift: Day Shift About the Company Athena ... Knowledge of federal IT governance, compliance, cybersecurity, privacy, risk management, or ...

Contracts Analyst Sr

Reston, VA · On-site +1

$71K - $86K/yr

None Potential for Remote Work: ORA_REMOTE Description SAIC's Contract and Procurement Team ... Experience in contract risk management and negotiation. * Demonstrated ability to think critically ...

General information Job Posting Title Sr. Technical Analyst Date Thursday, July 2, 2026 City Remote ... risk logs, meeting notes, decision logs, and other project deliverables. - Review project ...

Remote, United States About the Company Athena Technology Group, Inc. (ATG) is a Service-Disabled ... Moderate Risk background investigation based on PWS tasking. Bachelor's degree in Business ...

next page

Showing results 1-20

Freelance Remote Risk Analyst information

What is the difference between Freelance Remote Risk Analyst vs Freelance Remote Credit Analyst?

AspectFreelance Remote Risk AnalystFreelance Remote Credit Analyst
CredentialsRisk management certifications, analytical skillsFinancial analysis, credit risk certifications
Work EnvironmentRemote, project-based, consultingRemote, financial institutions, consulting
Employer & IndustryConsulting firms, finance, insuranceBanks, lending companies, financial services
Search & Comparison IntentRisk assessment, financial risk, consultingCredit evaluation, lending risk, financial analysis

Both roles involve financial analysis and risk assessment but differ in focus. A Freelance Remote Risk Analyst primarily evaluates overall risk factors for organizations, while a Freelance Remote Credit Analyst specializes in assessing creditworthiness for lending decisions. Understanding these distinctions helps freelancers target the right clients and projects.

What job categories do people searching Freelance Remote Risk Analyst jobs in Virginia look for? The top searched job categories for Freelance Remote Risk Analyst jobs in Virginia are:
What cities in Virginia are hiring for Freelance Remote Risk Analyst jobs? Cities in Virginia with the most Freelance Remote Risk Analyst job openings:
Penetration Testing - Mid-Level/Senior

Penetration Testing - Mid-Level/Senior

Endyna

Mclean, VA • Remote

Contractor

Posted 11 days ago


Job description

Location: Remote / Hybrid / Travel as Required (U.S.)

Security Requirement:
Must be eligible to obtain and maintain an HHS Tier 4 High Risk Public Trust.

About EnDyna

EnDyna is seeking experienced Penetration Testers to support the Department of Health and Human Services (HHS) Office of Inspector General (OIG) Cyber Assessment Team. The successful candidate will conduct advanced penetration testing, security assessments, vulnerability analysis, exploitation activities, technical reporting, and cybersecurity consulting supporting Federal audit activities.

Candidates will be considered for either Mid-Level or Senior positions based upon education, certifications, and demonstrated experience.

Position Responsibilities

The selected candidate will perform cybersecurity assessments including:

Penetration Testing

  • Perform external network penetration testing
  • Perform internal network penetration testing
  • Perform web application penetration testing
  • Perform cloud security assessments
  • Perform wireless security assessments
  • Perform mobile application testing
  • Perform container security assessments
  • Perform AI system security assessments
  • Conduct phishing and social engineering assessments
  • Perform information gathering and reconnaissance
  • Enumerate hosts, services, operating systems, applications and network devices
  • Identify vulnerabilities and attack paths
  • Exploit vulnerabilities using approved methodologies
  • Perform post-exploitation activities
  • Demonstrate persistence techniques
  • Evaluate data access and exfiltration opportunities
  • Document countermeasures encountered during testing
  • Validate remediation activities

Security Analysis

  • Analyze vulnerability scan results
  • Correlate findings from multiple tools
  • Eliminate false positives
  • Prioritize vulnerabilities based upon risk
  • Map findings to NIST, CVE, OWASP and Federal guidance
  • Develop mitigation recommendations

Documentation & Reporting

Prepare professional technical documentation including:

  • Rules of Engagement review
  • Attack confirmation lists
  • Penetration testing reports
  • Executive summaries
  • Technical findings
  • Risk analyses
  • Recommendations
  • Supporting evidence
  • Screenshots
  • Logs
  • Testing artifacts

Customer Interaction

  • Participate in planning meetings
  • Conduct entrance conferences
  • Present technical findings
  • Participate in status briefings
  • Explain vulnerabilities to both technical and executive audiences
  • Support audit teams throughout engagements

Technical Assistance

Provide cybersecurity expertise supporting OIG auditors by:

  • Performing vulnerability scans
  • Analyzing scan results
  • Advising auditors on security findings
  • Supporting remote assessments
  • Participating in technical discussions

Required Qualifications

Mid-Level

  • Bachelor's degree in Cybersecurity, Computer Science, Information Technology or related field
  • 4+ years of penetration testing experience
  • Experience performing network and web application penetration testing
  • Experience with vulnerability assessment tools
  • Experience writing professional technical reports
  • Knowledge of TCP/IP networking
  • Understanding of Windows and Linux operating systems

Senior Level

  • Bachelor's degree (Master's preferred)
  • 8+ years of penetration testing experience
  • Experience leading penetration testing engagements
  • Advanced exploitation experience
  • Experience with cloud environments
  • Experience mentoring junior testers
  • Experience briefing executive leadership
  • Strong technical writing skills

Desired Technical Skills

Experience with:

  • Burp Suite Pro
  • Nmap
  • Nessus
  • Metasploit
  • Kali Linux
  • Wireshark
  • BloodHound
  • Impacket
  • CrackMapExec
  • PowerShell
  • Python
  • Azure
  • AWS
  • Docker
  • Kubernetes
  • Active Directory
  • Microsoft Entra ID
  • Wireless testing tools

Preferred Certifications

One or more of:

  • OSCP
  • OSCE
  • OSEP
  • GPEN
  • GWAPT
  • GXPN
  • GCIH
  • CISSP
  • Security+
  • PNPT
  • CRTO

Desired Knowledge

Experience with:

  • NIST SP 800-115
  • OWASP Testing Guide
  • MITRE ATT&CK
  • CVSS
  • Federal cybersecurity environments
  • FISMA
  • FedRAMP

Travel

Occasional travel throughout the United States may be required.

Why Join EnDyna

  • Support one of the Federal Government's premier cybersecurity audit organizations
  • Perform real-world penetration testing
  • Work alongside nationally recognized cybersecurity experts
  • Opportunities for advanced technical growth
  • Flexible remote work environment