ZipRecruiter

Log In

1

Information Security Risk Analyst Jobs in Virginia

Anaplan

Third Party Risk Analyst

Reston, VA · On-site

Collaborate with business units, legal, information security, and other risk subject matter experts ... Strong analytical skills with the ability to identify and resolve complex issues. * Excellent ...

Harris Williams

Technology Risk Analyst

Richmond, VA · On-site

The Technology Risk Analyst will contribute to the IT security team, focusing on technology risk management and developing risk solutions to protect the firm and its clients. Responsibilities : • ...

Govcio LLC

Risk Management Framework SME

Hampton, VA · On-site

$135K - $145K/yr

... strong information system security manager (ISSM) background and hands-on experience with XACTA ... Provide training, mentoring and support to security analysts and program team members ...

next page

Showing results 1-20

People also search for

All JobsInformation Security Risk Analyst JobsInformation Security Risk Analyst Jobs in Virginia

Information Security Risk Analyst information

See Virginia salary details

$31

$57

$74

How much do information security risk analyst jobs pay per hour?

As of May 29, 2026, the average hourly pay for information security risk analyst in Virginia is $57.95, according to ZipRecruiter salary data. Most workers in this role earn between $45.05 and $65.05 per hour, depending on experience, location, and employer.

What Does an Information Security Risk Analyst Do?

As an information security risk analyst, your job is to help assess each potential threat and determine whether or not your current network system suffers from vulnerability to that threat. In this IT role, you may monitor network activity, help implement and manage safety protocols, and research emerging threats to help determine the best response to them. Information security risk analysts often work with many other IT personnel at the same company to manage security needs and, somewhat unusually for an IT role, may also collaborate with outside experts and volunteers to find the best way to counter a particular threat. This is an extremely collaborative position, so the ability to work well with other people, including those you may be meeting for the first time, is essential to your success.

What are the key skills and qualifications needed to thrive as an Information Security Risk Analyst, and why are they important?

To thrive as an Information Security Risk Analyst, you need a solid understanding of cybersecurity principles, risk management frameworks, and a relevant degree or certifications such as CISSP, CISM, or CRISC. Familiarity with tools like risk assessment platforms, vulnerability scanners, and security information and event management (SIEM) systems is typically required. Strong analytical thinking, communication, and attention to detail help you translate complex risks into actionable recommendations and collaborate with stakeholders. These skills are crucial for effectively identifying, assessing, and mitigating security risks to protect organizational assets and ensure compliance.

How does an Information Security Risk Analyst typically collaborate with other departments to address security risks?

Information Security Risk Analysts work closely with various departments such as IT, compliance, legal, and business units to identify and mitigate security risks. They often facilitate risk assessments, communicate findings, and recommend solutions tailored to each department's needs. Regular meetings and cross-functional projects are common, ensuring security measures align with business objectives while maintaining compliance. This collaborative approach helps foster a culture of security awareness throughout the organization.

What are Information Security Risk Analysts?

Information Security Risk Analysts are professionals responsible for identifying, assessing, and mitigating risks to an organization's information systems and data. They analyze potential threats, vulnerabilities, and impacts to ensure that appropriate security measures are in place. These analysts often develop risk management strategies, conduct security assessments, and recommend security enhancements. Their goal is to help organizations protect sensitive information and comply with relevant regulations.

What is the difference between Information Security Risk Analyst vs Cybersecurity Analyst?

AspectInformation Security Risk AnalystCybersecurity Analyst
CertificationsISO 27001, CISSP, CISACompTIA Security+, CEH, CISSP
Work EnvironmentRisk assessment teams, compliance departmentsSecurity operations centers, incident response teams
Employer & Industry UsageFinancial, healthcare, government sectorsTech companies, cybersecurity firms, enterprises

While both roles focus on protecting information assets, the Information Security Risk Analyst primarily assesses and manages risks related to information security policies and compliance. In contrast, the Cybersecurity Analyst actively monitors security systems, responds to threats, and handles incidents. Understanding these differences helps organizations assign the right responsibilities and professionals to safeguard their digital assets.

More about Information Security Risk Analyst jobs
What are popular job titles related to Information Security Risk Analyst jobs in Virginia? For Information Security Risk Analyst jobs in Virginia, the most frequently searched job titles are:
What job categories do people searching Information Security Risk Analyst jobs in Virginia look for? The top searched job categories for Information Security Risk Analyst jobs in Virginia are:
What are popular job titles related to Information Security Risk Analyst jobs in VA? For Information Security Risk Analyst jobs in VA, the most frequently searched job titles are:
Information Security Risk Analyst jobs near you
Third Party Risk Analyst

Third Party Risk Analyst

Anaplan

Reston, VA • On-site

Other

Posted 4 days ago

Job description

As our new Third Party Risk Analyst, you will play a critical role in protecting Anaplan by managing the risks associated with our third-party suppliers and reporting to our legal team. You will be responsible for the full lifecycle of third-party risk management, including identifying, assessing, mitigating, and monitoring risks to ensure our programs and business operations remain secure and resilient. This role requires a blend of analytical rigor, strong communication skills, and the ability to collaborate across various teams.

Your Impact

  • Strengthen Resilience: Directly contribute to the security and resilience of Anaplan by developing and implementing a robust third-party risk management framework.
  • Drive Compliance: Ensure that all third-party relationships adhere to company policies and are compliant with regulatory guidelines and industry best practices.
  • Enable the Business: Partner with business units to support risk-aware decision-making, enabling them to work effectively with suppliers while safeguarding the company.
  • Enhance Visibility: Create and manage reporting that provides leadership with clear insights into third-party risk posture, trends, and key performance indicators (KPIs).

Risk Assessment & Due Diligence

  • Conduct comprehensive risk assessments of new and existing vendors, focusing on financial health, operational resilience, corporate, human capital, anti-corruption, ESG, and regulatory compliance.
  • Perform thorough due diligence reviews, including the evaluation of risk questionnaires, documentation reviews, and standard supplier investigations.
  • Ensure all new third-party due diligence and supporting documents are properly captured in the appropriate systems.

Monitoring, Reporting & Remediation

  • Continuously monitor supplier performance, financial health, geopolitical exposure, and regulatory changes.
  • Develop and manage corrective action plans and control documentation for identified risks; monitor and evaluate vendor remediation efforts to ensure timely resolution.
  • Prepare and deliver risk reports and dashboards for leadership and governance committees, tracking risk ratings, policy exceptions, and other KPIs.

Collaboration & Process Improvement

  • Collaborate with business units, legal, information security, and other risk subject matter experts to address and mitigate identified risks.
  • Support internal, customer, and third-party audits related to supplier risk and compliance.
  • Create and implement systemic solutions for supplier tracking and compliance, and stay current on industry trends and emerging risks impacting third-party relationships.

Your Qualifications

  • A Bachelor's Degree in Business, Finance, or a related field.
  • A minimum of two years of experience in Third-Party Risk Management, Information Security, Compliance, or a related role.
  • Strong analytical skills with the ability to identify and resolve complex issues.
  • Excellent communication and interpersonal skills, with the ability to work effectively with cross-functional teams.
  • A professional and ethical manner with a commitment to accuracy and thoroughness.
Anaplan logo

About Anaplan

Sourced by ZipRecruiter

Here at Anaplan, we have reinvented how companies see, plan, and run their businesses. Our platform allows our customers to uncover new insights, connect their strategy to their plans, and work in ways they had not previously thought possible. We're growing fast, constantly innovating, and couldn't be prouder to help our customers move forward with confidence in a sophisticated and changing world. We are looking for forward-thinking people who put customer experience at the forefront of every decision. Individuals who thrive on challenges and are ready to grasp the opportunity of a lifetime. Because we fundamentally believe every colleague brings outstanding value to our whole. We are a workplace where each person feels seen, heard, and valued, and can contribute their unique talent to our collective effort. We believe that for ourselves and for our customers.

Industry

Technology, communication and media

Company size

1,001 - 5,000 Employees

Headquarters location

San Francisco, CA, US

Year founded

2006

View All Anaplan Jobs

Apply