1

Information Security Risk Analyst Jobs in Baltimore, MD

next page

Showing results 1-20

Information Security Risk Analyst information

See Baltimore, MD salary details

$31

$58

$75

How much do information security risk analyst jobs pay per hour?

As of Jul 19, 2026, the average hourly pay for information security risk analyst in Baltimore, MD is $58.08, according to ZipRecruiter salary data. Most workers in this role earn between $45.14 and $65.19 per hour, depending on experience, location, and employer.

What is the difference between Information Security Risk Analyst vs Cybersecurity Analyst?

AspectInformation Security Risk AnalystCybersecurity Analyst
CertificationsISO 27001, CISSP, CISACompTIA Security+, CEH, CISSP
Work EnvironmentRisk assessment teams, compliance departmentsSecurity operations centers, incident response teams
Employer & Industry UsageFinancial, healthcare, government sectorsTech companies, cybersecurity firms, enterprises

While both roles focus on protecting information assets, the Information Security Risk Analyst primarily assesses and manages risks related to information security policies and compliance. In contrast, the Cybersecurity Analyst actively monitors security systems, responds to threats, and handles incidents. Understanding these differences helps organizations assign the right responsibilities and professionals to safeguard their digital assets.

What are the key skills and qualifications needed to thrive as an Information Security Risk Analyst, and why are they important?

To thrive as an Information Security Risk Analyst, you need a solid understanding of cybersecurity principles, risk management frameworks, and a relevant degree or certifications such as CISSP, CISM, or CRISC. Familiarity with tools like risk assessment platforms, vulnerability scanners, and security information and event management (SIEM) systems is typically required. Strong analytical thinking, communication, and attention to detail help you translate complex risks into actionable recommendations and collaborate with stakeholders. These skills are crucial for effectively identifying, assessing, and mitigating security risks to protect organizational assets and ensure compliance.

What are Information Security Risk Analysts?

Information Security Risk Analysts are professionals responsible for identifying, assessing, and mitigating risks to an organization's information systems and data. They analyze potential threats, vulnerabilities, and impacts to ensure that appropriate security measures are in place. These analysts often develop risk management strategies, conduct security assessments, and recommend security enhancements. Their goal is to help organizations protect sensitive information and comply with relevant regulations.

What Does an Information Security Risk Analyst Do?

As an information security risk analyst, your job is to help assess each potential threat and determine whether or not your current network system suffers from vulnerability to that threat. In this IT role, you may monitor network activity, help implement and manage safety protocols, and research emerging threats to help determine the best response to them. Information security risk analysts often work with many other IT personnel at the same company to manage security needs and, somewhat unusually for an IT role, may also collaborate with outside experts and volunteers to find the best way to counter a particular threat. This is an extremely collaborative position, so the ability to work well with other people, including those you may be meeting for the first time, is essential to your success.

How does an Information Security Risk Analyst typically collaborate with other departments to address security risks?

Information Security Risk Analysts work closely with various departments such as IT, compliance, legal, and business units to identify and mitigate security risks. They often facilitate risk assessments, communicate findings, and recommend solutions tailored to each department's needs. Regular meetings and cross-functional projects are common, ensuring security measures align with business objectives while maintaining compliance. This collaborative approach helps foster a culture of security awareness throughout the organization.
What are popular job titles related to Information Security Risk Analyst jobs in Baltimore, MD? For Information Security Risk Analyst jobs in Baltimore, MD, the most frequently searched job titles are:
What job categories do people searching Information Security Risk Analyst jobs in Baltimore, MD look for? The top searched job categories for Information Security Risk Analyst jobs in Baltimore, MD are:
What cities near Baltimore, MD are hiring for Information Security Risk Analyst jobs? Cities near Baltimore, MD with the most Information Security Risk Analyst job openings:
Infographic showing various Information Security Risk Analyst job openings in Baltimore, MD as of July 2026, with employment types broken down into 1% Locum Tenens, 1% Internship, 86% Full Time, 6% Part Time, 1% Temporary, and 5% Contract. Highlights an 82% Physical, 5% Hybrid, and 13% Remote job distribution, with an average salary of $120,803 per year, or $58.1 per hour.
Information Systems Security Engineer (ISSE) Level 3 with Security Clearance

Information Systems Security Engineer (ISSE) Level 3 with Security Clearance

Birchmere Group

Fort George G Meade, MD โ€ข On-site

Other

Re-posted 5 days ago


Job description

Information Systems Security Engineer Level 3 The Information Systems Security Engineer (ISSE) shall perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established Cybersecurity standards and regulations, and recommend mitigation strategies. Validate and verifies system security requirements definitions and analysis and establishes system security designs. Design, develop, implement and/or integrate Cybersecurity and security systems and system components including those for networking, computing, and enclave environments to include those with multiple enclaves and with differing data protection/classification requirements. Build Cybersecurity into systems deployed to operational environments. Assist architects and systems developers in the identification and implementation of appropriate information security functionality to ensure uniform application of Agency security policy and enterprise solutions. Support the building of security architectures. Enforce the design and implementation of trusted relations among external systems and architectures. Assess and mitigate system security threats/risks throughout the system development life cycle. Contribute to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations. Review certification and accreditation (C&A) documentation, provide feedback on completeness and compliance of its content. Support security authorization activities in compliance with NSA/CSS Information System Certification and Accreditation Process (NISCAP) and DoD Risk Management Framework (RMF), the NIST Risk Management Framework (RMF) process, and prescribed NSA/CSS business processes for security engineering. The Level 3 Information Systems Security Engineer shall possess the following capabilities: * Participate as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of secure networking, computing, and enclave environments. * Apply knowledge of Cybersecurity policy, procedures, and workforce structure to design, develop, and implement secure networking, computing, and enclave environments. * Interact with the customer and other project team members. * Participate as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and/or integration of Cybersecurity architectures, systems, or system components. * Support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures. * Support security planning, assessment, risk analysis, and risk management Identify overall security requirements for the proper handling of Government data. * Provide security planning, assessment, risk analysis, and risk management. * Perform system or network designs that encompass multiple enclaves, to include those with differing data protection/classification requirements. * Recommend system-level solutions to resolve security requirements. Qualifications: * Twenty (20) years experience as an ISSE on programs and contracts of similar scope, type, and complexity to include recent experience within the last five (5) years with Cybersecurity principles and technology, including access/control, authorization, identification and authentication, PKI, network and enterprise security architecture is required. * Bachelorโ€™s degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline from an accredited college or university is required. * A Masterโ€™s degree in Computer Science, Information Assurance, Information Security System Engineering, or related discipline may be substituted for two (2) years of experience, reducing the requirement to eighteen (18) years of experience. * In lieu of a Bachelorโ€™s degree, four (4) additional years of ISSE experience may be substituted. DoD 8570 compliance with IASAE Level 3 is required. Both Information Systems Security Engineering Professional (ISSEP) and CISSP Certifications are required.