ZipRecruiter

Log In

1

It Risk Analyst Jobs (NOW HIRING)

System One Holdings, LLC

Risk Analyst

Merrifield, VA · On-site

... of Information Security or IT Risk Management experience preferred. • Prior experience with tools like Confluence and ADO preferred. • Strong analytical tool skills desired (Excel, PowerBI ...

next page

Showing results 1-20

People also search for

All JobsIt Risk Analyst Jobs

It Risk Analyst information

See salary details

$15

$40

$65

How much do it risk analyst jobs pay per hour?

As of May 30, 2026, the average hourly pay for it risk analyst in the United States is $40.49, according to ZipRecruiter salary data. Most workers in this role earn between $29.81 and $49.28 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as an IT Risk Analyst, and why are they important?

To thrive as an IT Risk Analyst, you need a strong understanding of risk management frameworks, cybersecurity principles, and regulatory compliance—often supported by a degree in information technology or a related field. Familiarity with tools such as risk assessment software, vulnerability scanners, and certifications like CISSP or CISA is typically required. Analytical thinking, attention to detail, and effective communication are vital soft skills that distinguish top performers in this role. These competencies are crucial for accurately identifying risks, ensuring regulatory compliance, and effectively communicating findings to stakeholders.

What are some common challenges IT Risk Analysts face when collaborating with other departments?

IT Risk Analysts often work closely with various departments such as IT, compliance, and operations to identify and mitigate risks. One common challenge is translating technical risk information into terms that non-technical stakeholders can understand. Additionally, balancing the need for rigorous security measures with business objectives can sometimes lead to conflicting priorities. Effective communication and building strong relationships across teams are key to overcoming these challenges and ensuring that risk controls are both practical and effective.

What does an IT Risk Analyst do?

An IT Risk Analyst is responsible for identifying, assessing, and mitigating risks that could impact an organization's information technology systems and data. They analyze potential threats, such as cyberattacks or data breaches, and develop strategies to minimize these risks. Their role involves working closely with other IT professionals to ensure compliance with security policies and regulatory requirements, as well as preparing risk reports and recommending improvements. Ultimately, IT Risk Analysts help organizations protect sensitive information and maintain secure, reliable IT operations.

What is the difference between It Risk Analyst vs Cybersecurity Analyst?

AspectIt Risk AnalystCybersecurity Analyst
CertificationsISO 27001, CISSP, CISACISSP, CEH, CompTIA Security+
Work EnvironmentFinancial, healthcare, corporate sectors focusing on risk managementIT security teams, cybersecurity firms, tech companies
Employer & Industry UsageFinancial institutions, large corporations, consulting firmsTech companies, government agencies, security firms

While both roles focus on protecting information, the It Risk Analyst primarily assesses and manages overall IT risks within organizations, emphasizing compliance and risk mitigation strategies. In contrast, the Cybersecurity Analyst concentrates on defending systems from cyber threats and attacks. Both roles often collaborate but serve distinct functions in an organization's security framework.

More about It Risk Analyst jobs
What cities are hiring for It Risk Analyst jobs? Cities with the most It Risk Analyst job openings:
Who are the top companies hiring for It Risk Analyst jobs? The top employers for It Risk Analyst jobs are:
What states have the most It Risk Analyst jobs? States with the most job openings for It Risk Analyst jobs include:
What job categories do people searching It Risk Analyst jobs look for? The top searched job categories for It Risk Analyst jobs are:
It Risk Analyst jobs near you
IT Risk and Compliance Analyst

IT Risk and Compliance Analyst

Noblesoft Technologies

Portland, OR • On-site

$99.70K - $100.20K/yr

Contractor

Posted 24 days ago

Job description

Job Description:

We are seeking a highly motivated and detail-oriented IT Risk and Compliance Analyst to join our team. The ideal candidate will be responsible for ensuring that IT risk management processes are embedded in the enterprise, enabling optimal risk assessments returns. This role involves supporting IT risk governance internal and external assessments and audits and working on problems of diverse scope where analysis of data requires evaluation.

Job Duration: Minimum six months with option to renew.

Key Responsibilities:

• Provide Consulting for IT Risk Management, Compliance & Metrics

• Monitor & Report on IT Controls Compliance - monitor first line of defense.

• Facilitate Assessments and Audits – represent customer’s Info Sec Program for regulators and customers.

• Contribute to the Establishment & Maintenance of Primary Common Controls that align with business, regulatory and information security goals.

• Provide independent oversight of the risk management activities of the Service Owners.

• Perform independent validation to evaluate the adequacy and effectiveness of key controls.

Qualifications:

• Bachelor's degree in Information Technology, Risk Management, or a related field.

• Minimum of 5 years of experience in IT risk management and compliance.

• Strong understanding of IT risk governance principles and practices.

• Experience with cybersecurity regulation requirements and industry standards.

• Excellent analytical and problem-solving skills.

• Strong communication and interpersonal skills.

• Project Leadership

Preferred Qualifications:

• Experience with on prem and cloud platforms.

• Knowledge of SOC 1, SOC 2, ISO 27001:2022, and HIPAA regulations.

• CISA certification.

• CRISC certification.