ZipRecruiter

Log In

1

It Risk Jobs in Virginia (NOW HIRING)

Guidehouse

IT Risk and Controls Manager

Mclean, VA

Job Family: IT Risk & Controls Consulting Travel Required: Up to 10% Clearance Required: Ability to Obtain Public Trust What You Will Do: The IT Risk and Controls Managing Consultant will support ...

Harris Williams

Technology Risk Analyst

Richmond, VA · On-site

The Technology Risk Analyst will contribute to the IT security team, focusing on technology risk management and developing risk solutions to protect the firm and its clients. Responsibilities : • ...

Harris Williams & Co.

Technology Risk Lead

Richmond, VA · On-site

Within Harris Williams Compliance and Risk team, the Technology Risk Lead will be an integral individual contributor to the IT security team, focused on key programs and initiatives that enable us to ...

Guidehouse

IT Advisory Manager

Chantilly, VA · On-site

$97.30K - $119.30K/yr

Job Family: IT Risk & Controls Consulting Travel Required: Up to 10% Clearance Required: Active Top Secret SCI with Polygraph What You Will Do: The IT Advisory Manager will lead stakeholder ...

Guidehouse

IT Advisory Manager

Mclean, VA

$96K - $117.80K/yr

Job Family: IT Risk & Controls Consulting Travel Required: Up to 10% Clearance Required: Active Top Secret SCI with Polygraph What You Will Do: The IT Advisory Manager will lead stakeholder ...

Guidehouse

IT Advisory Manager

Chantilly, VA

$97.30K - $119.30K/yr

Job Family: IT Risk & Controls Consulting Travel Required: Up to 10% Clearance Required: Active Top Secret SCI with Polygraph What You Will Do: The IT Advisory Manager will lead stakeholder ...

next page

Showing results 1-20

People also search for

All JobsIt Risk JobsIt Risk Jobs in Virginia

It Risk information

See Virginia salary details

$14

$30

$73

How much do it risk jobs pay per hour?

As of May 29, 2026, the average hourly pay for it risk in Virginia is $30.08, according to ZipRecruiter salary data. Most workers in this role earn between $19.33 and $38.37 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as an IT Risk professional, and why are they important?

To thrive as an IT Risk professional, you need a strong understanding of information security principles, risk management frameworks, and relevant regulations, typically supported by a degree in information technology or cybersecurity. Familiarity with risk assessment tools, GRC (Governance, Risk, and Compliance) systems, and certifications such as CISM or CISSP is highly valued. Analytical thinking, attention to detail, and effective communication are vital soft skills for identifying vulnerabilities and collaborating with stakeholders. These competencies are crucial for proactively managing threats and ensuring the organization's information assets remain secure and compliant.

What are some common challenges faced by IT Risk professionals when working with cross-functional teams?

IT Risk professionals often collaborate with various departments such as IT, compliance, finance, and operations. A common challenge is effectively communicating technical risks in terms that non-technical stakeholders can understand, ensuring alignment on priorities and mitigation strategies. Navigating differing risk tolerances and balancing business needs with security requirements can also present difficulties. Building strong relationships and fostering ongoing dialogue are key to overcoming these challenges and ensuring successful risk management across the organization.

What is IT risk?

IT risk refers to the potential for losses or negative impacts to an organization resulting from the use of information technology. This includes threats such as data breaches, cyberattacks, system failures, and non-compliance with regulations. IT risk management involves identifying, assessing, and mitigating these risks to protect an organization’s information assets and ensure business continuity.

What is the difference between It Risk vs Cybersecurity Analyst?

AspectIt RiskCybersecurity Analyst
Required CredentialsCertifications like CRISC, CISSP, CISACertifications like CompTIA Security+, CISSP, CEH
Work EnvironmentRisk management teams, compliance departmentsSecurity operations centers, IT departments
Employer & Industry UsageFinancial, healthcare, and large enterprisesTech firms, finance, government agencies

It Risk professionals focus on identifying, assessing, and mitigating risks related to IT systems and compliance. Cybersecurity Analysts primarily monitor and respond to security threats and incidents. While both roles require similar certifications and work in overlapping environments, It Risk emphasizes risk management strategies, whereas Cybersecurity Analysts concentrate on security operations and threat response.

What are the most commonly searched types of It Risk jobs in Virginia? The most popular types of It Risk jobs in Virginia are:
What cities in Virginia are hiring for It Risk jobs? Cities in Virginia with the most It Risk job openings:
It Risk jobs near you
Infographic showing various It Risk job openings in Virginia as of May 2026, with employment types broken down into 82% Full Time, 13% Part Time, and 5% Contract. Highlights an 98% Physical, 1% Hybrid, and 1% Remote job distribution, with an average salary of $62,558 per year, or $30.1 per hour.
Principal IT Risk Management Analyst

Principal IT Risk Management Analyst

Strategic Education, Inc.

Herndon, VA • On-site, Remote

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

Posted 5 days ago

Strategic Education rating

8.8

Company rating: 8.8 out of 10

Based on 11 frontline employees who took The Breakroom Quiz

10th of 189 rated education and training

Job description

At Strategic Education Inc., our mission is to enable economic mobility through education. Through a portfolio of institutions and learning solutions, we focus on serving working adult learners by improving college affordability, enhancing student engagement, and strengthening workforce readiness so our graduates are equipped with the skills needed to succeed in today's jobs. This mission guides how we operate as an organization, including our approach to enterprise technology and risk management.
The Principal IT Risk Management Analyst is a senior-level role responsible for leading and overseeing comprehensive IT risk management efforts across the organization. This position provides strategic guidance on identifying and assessing complex technology risks and on the development and implementation of effective risk management strategies. The Principal IT Risk Management Analyst partners closely with cross-functional stakeholders to promote the security, compliance, and resilience of the organization's IT systems, infrastructure, and processes.
Essential Duties & Responsibilities:
Strategic Leadership:
  • Provide thought leadership and strategic direction in IT risk management, aligning efforts with the organization's goals and risk tolerance.
  • Collaborate with executive leadership to define risk management strategies and objectives.

Risk Assessment and Analysis:
  • Identify and assess high-impact IT risks, including emerging cybersecurity threats, regulatory compliance gaps, and operational vulnerabilities.
  • Analyze complex risk scenarios, evaluating potential business impacts and likelihoods.

Risk Mitigation Strategy:
  • Develop and execute comprehensive risk mitigation strategies, ensuring the effective implementation of controls, processes, and frameworks.
  • Lead the design of risk management initiatives that align with industry best practices and standards.

Cross-Functional Collaboration:
  • Work closely with IT, cybersecurity, legal, compliance, and business units to integrate risk management principles into day-to-day operations.
  • Facilitate communication and collaboration among teams to ensure a unified approach to risk management.

Regulatory Compliance:
  • Monitor and interpret relevant IT regulations, standards, and frameworks (e.g., GDPR, FERPA, NIST, ISO 27001, CIS 8) to ensure compliance.
  • Advise on risk management strategies that address compliance requirements.

Risk Reporting and Communication:
  • Prepare and deliver clear and concise risk reports for executive management and relevant stakeholders.
  • Communicate complex technical concepts and risk scenarios in a manner understandable by non-technical audiences.

Incident Response and Recovery:
  • Provide leadership during IT security incidents, guiding incident response teams to minimize impact and ensure effective recovery.
  • Review and enhance incident response plans to reflect lessons learned and emerging threats.

Continuous Improvement:
  • Identify opportunities to enhance risk assessment methodologies, tools, and processes based on evolving threats and industry trends.
  • Drive continuous improvement initiatives across the risk management function.

Mentorship and Development:
  • Provide mentorship and guidance to junior members of the risk management team, fostering professional growth and skill development.

Job Skills:
  • Proven leadership skills with the ability to guide cross-functional teams and provide strategic direction.
  • Strong analytical and problem-solving capabilities to assess complex risk scenarios and recommend effective mitigation strategies.
  • Ability to write and manage policies
  • Excellent communication and presentation skills to convey technical information to various stakeholders.
  • Familiarity with security technologies, security frameworks, tools, and industry best practices.
  • Project management skills to drive risk management initiatives and improvements.
  • Ability to adapt to evolving technologies and risks in the IT landscape.

Work Experience:
  • 5+ years of experience in a Senior Analyst role or Similar
  • 5+ yrs of experience in IT risk management, with a strong understanding of risk assessment methodologies, frameworks, and regulatory requirements.
  • 5+ yrs experience with Third Party Risk Management.
  • 3+ yrs experience with Artificial Intelligence, Cloud Platforms, and DevSecOps.
  • 3+ with incident response, crisis management, and business continuity planning.

Education:
  • Bachelor's degree in Information Technology, Cybersecurity, IT Risk Management, Business, or a related field (Master's preferred).

Certificates, licenses and registrations:
  • Professional certifications such as Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), or Certified Information Systems Auditor (CISA) or Project Management Professional are required.

Other:
  • Must be able to travel occasionally should a business need arise. For most roles travel would not be common. Travel may involve plane, car or metro. In accordance with ADA policies, reasonable accommodations regarding travel limitations can be provided. Travel will be more common for roles such as Account Executives (25 - 50%), senior leaders (10 - 20%) or Capella Core Faculty (5 - 10%).
  • Ability to work onsite in Corporate or Campus location (in a typical office environment) may be required based on role. If so, this would include being mobile within the office, including movement from floor-to-floor using elevators or stairs.
  • If offsite or hybrid role, must have access to work in setting which enables meeting all requirements of the role (including privacy, reliable internet access, phone, ability to video conference, etc.) at a remote location.
  • This role may require lifting, however reasonable accommodations will be provided in accordance with our ADA policies.
  • Must be able to meet critical thinking and problem solving aspects aligned to job duties, as well as effectively communicating with co-workers.
  • Must be able to work more than 40 hours per week when business needs warrant. Accommodations related to schedule may be considered.
  • Able to access information using a computer.
  • Other essential functions and marginal job functions are subject to modification.

#LI-JD1
SEI offers a comprehensive package of benefits to employees scheduled 30 hours or more per week. In addition to medical, dental, vision, life and disability plans, SEI employees may take advantage of well-being incentives, parental leave, paid time off, certain paid holidays, tax saving accounts (FSA, HSA), 401(k) retirement benefit, Employee Stock Purchase Plan, tuition assistance as well as entertainment and retail discounts. Non-exempt employees are eligible for overtime pay, if applicable.
Careers - Our Benefits, Strategic Education, Inc
SEI is an equal opportunity employer committed to fostering an inclusive and collaborative culture where individuals can grow their careers and contribute fully. We strive to attract talent with broad experiences, skills and perspectives. We welcome applications from all. While it is not typical for an individual to be hired at or near the top end of the pay range at SEI, we offer a competitive salary. The actual base pay offered to the successful candidate may vary depending on multiple factors including, but not limited to, job-related knowledge/skills, experience, business needs, geographical location, and internal pay equity. Our Talent Acquisition Team is ready to discuss your interest in joining SEI. The expected salary range for this position is below.
$119,300.00 - $178,900.00 - Salary
If you require reasonable accommodations to complete our application process, please contact our Human Resources Department at Careers@strategiced.com.

What Strategic Education employees say

Pay

Hours and flexibility

Workplace

Get the full story on Breakroom

Apply