ZipRecruiter

Log In

1

It Risk Jobs in Virginia (NOW HIRING)

Capital One

Manager - Cyber Risk & Analysis

Mclean, VA · On-site

Manager - Cyber Risk & Analysis As a Technology Risk Manager, you will drive strategy and execute ... Please note that this salary information is solely for candidates hired to perform work within one ...

next page

Showing results 1-20

People also search for

All JobsIt Risk JobsIt Risk Jobs in Virginia

It Risk information

See Virginia salary details

$14

$30

$73

How much do it risk jobs pay per hour?

As of May 30, 2026, the average hourly pay for it risk in Virginia is $30.08, according to ZipRecruiter salary data. Most workers in this role earn between $19.33 and $38.37 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as an IT Risk professional, and why are they important?

To thrive as an IT Risk professional, you need a strong understanding of information security principles, risk management frameworks, and relevant regulations, typically supported by a degree in information technology or cybersecurity. Familiarity with risk assessment tools, GRC (Governance, Risk, and Compliance) systems, and certifications such as CISM or CISSP is highly valued. Analytical thinking, attention to detail, and effective communication are vital soft skills for identifying vulnerabilities and collaborating with stakeholders. These competencies are crucial for proactively managing threats and ensuring the organization's information assets remain secure and compliant.

What are some common challenges faced by IT Risk professionals when working with cross-functional teams?

IT Risk professionals often collaborate with various departments such as IT, compliance, finance, and operations. A common challenge is effectively communicating technical risks in terms that non-technical stakeholders can understand, ensuring alignment on priorities and mitigation strategies. Navigating differing risk tolerances and balancing business needs with security requirements can also present difficulties. Building strong relationships and fostering ongoing dialogue are key to overcoming these challenges and ensuring successful risk management across the organization.

What is IT risk?

IT risk refers to the potential for losses or negative impacts to an organization resulting from the use of information technology. This includes threats such as data breaches, cyberattacks, system failures, and non-compliance with regulations. IT risk management involves identifying, assessing, and mitigating these risks to protect an organization’s information assets and ensure business continuity.

What is the difference between It Risk vs Cybersecurity Analyst?

AspectIt RiskCybersecurity Analyst
Required CredentialsCertifications like CRISC, CISSP, CISACertifications like CompTIA Security+, CISSP, CEH
Work EnvironmentRisk management teams, compliance departmentsSecurity operations centers, IT departments
Employer & Industry UsageFinancial, healthcare, and large enterprisesTech firms, finance, government agencies

It Risk professionals focus on identifying, assessing, and mitigating risks related to IT systems and compliance. Cybersecurity Analysts primarily monitor and respond to security threats and incidents. While both roles require similar certifications and work in overlapping environments, It Risk emphasizes risk management strategies, whereas Cybersecurity Analysts concentrate on security operations and threat response.

What are the most commonly searched types of It Risk jobs in Virginia? The most popular types of It Risk jobs in Virginia are:
What cities in Virginia are hiring for It Risk jobs? Cities in Virginia with the most It Risk job openings:
It Risk jobs near you
Infographic showing various It Risk job openings in Virginia as of May 2026, with employment types broken down into 82% Full Time, 13% Part Time, and 5% Contract. Highlights an 98% Physical, 1% Hybrid, and 1% Remote job distribution, with an average salary of $62,558 per year, or $30.1 per hour.

CMMC Champion and Head of IT Security and GRC, Unique Virginia HW-SW C

Unique Hardware Software Systems Company in Major Growth Mode

Reston, VA • On-site

$200K - $275K/yr

Full-time

Medical, Dental, Vision, Life, Retirement, PTO

This job post has expired today. Applications are no longer accepted.

Job description

CMMC Champion and Head of IT Security, Data Governance and IT Risk Audit and Controls

Unique Newly Created Role with a multi-national Hardware-Software Systems-designing-building-delivering critical Technology to DoD, Public Safety and other Essential Industries.

Please Note: Applicants local to the Northern Virginia area are preferred as this is an On-Site Role (work in the office Monday-Friday position)

Desired Skills/Experience:

·       Experience working in a similar leadership role for an international company that designs-builds-delivers technology (ideally mixing Hardware and Software) for DoD type customers.

·       Experience leading CMMC Certification at the corporate level for a similar type company, should be very familiar with CMMC focused Assessments (self vs. 3rd party assessments), FCI and CUI, critical asset and intellectual property safeguards, tiered levels and overall program leadership, planning-structure and guidance of CMMC Certification.

·       Experience leading IT Security for an international Firm, should have experience leading the global cybersecurity strategy, control framework, and maturity roadmap; oversea-plan-execute procedures for threat protection, incident response, vulnerability management, and security operations while ensuring current-modern security coverage across infrastructure, individual corporate devices, applications, cloud and identity all while keeping abreast of emerging technologies and tools.

·       Experience leading IT Risk-Compliance and related audits; experience working as the corporate driver/catalyst for enterprise IT risk management (including risk mitigation-remediation planning, risk control measures, and related documentation), accounting for ISO and CMMC accountability; experience leading internal self-audits and preparation for expected-anicipated 3rd party audits.

·       Experience leading IT and Data Governance: documenting/defining governance guardrails for cloud, third‐party platforms and tools, and also researching/documenting user and client permissions to Data, Systems and proprietary technologies; experience with AI Tools and/or AI Technology adoption while being the key driver for ensuring guardrails (governance) surrounding the rules in terms Data sharing with AI.

·       Experience working in a similar role involving ongoing communication and coordination with R&D, Sales, Engineering and HW-SW Product delivery teams from a standpoint of advising-suggesting-recommending best of breed solutions surrounding Security, Risk, Data Governance, CMMC and ISO compliance.

·       Must be willing and ready to travel domestically and internationally at regular intervals especially during your firs 6-12 months.

Preferred Background/Experience/Education/Training:

  • A Bachelor’s degree Computer Science, or related field (preferred).
  • Professional certifications such as CISSP, CISM, CISA, CRISC or similar.
  • Experience working for a company that produces integrated hardware‐and‐software products—ideally for DoD, defense, aerospace, or high‐risk regulated customers.
  • Strong understanding of cyber operations, cloud security, identity management, and regulatory frameworks.
  • Experience preparing organizations for internal and external audits (CMMC, ISO, defense‐sector requirements).
  • Demonstrated success building data governance programs and enabling secure AI adoption.
  • Exceptional communication skills with the ability to influence executives, technical teams, and global stakeholders.

Very Competitive Compensation including Salary, Bonus and Benefits.

Company Description

Constantly updating our technology to meet the demands of our multi-site business customers; Experiencing a Major Demand for our unique offering; Profitable and Stable; Managerial Culture towards using the best available technology; Busy Company with a Recession Resistant Business Model.