1

Security Risk Compliance Jobs in Virginia (NOW HIRING)

IG Compliance & Security Analyst Cooley is seeking an IG Compliance & Security Analyst to join the ... Conduct formal risk assessment reviews to determine the critical points of business exposure

IG Compliance & Security Analyst Cooley is seeking an IG Compliance & Security Analyst to join the ... Conduct formal risk assessment reviews to determine the critical points of business exposure

Audit Compliance Analyst

Richmond, VA ยท On-site +1

$125K/yr

Collaborate with Information Security, Risk, Compliance, Legal, Audit, IT, and business stakeholders to support enterprise policy and compliance initiatives * Operationalize and automate policy and ...

Collaborate with Information Security, Risk, Compliance, Legal, Audit, IT, and business stakeholders to support enterprise policy and compliance initiatives * Operationalize and automate policy and ...

next page

Showing results 1-20

Security Risk Compliance information

See Virginia salary details

$32.2K

$80.4K

$122.4K

How much do security risk compliance jobs pay per year?

As of Jul 5, 2026, the average yearly pay for security risk compliance in Virginia is $80,447.00, according to ZipRecruiter salary data. Most workers in this role earn between $60,000.00 and $99,100.00 per year, depending on experience, location, and employer.

What is the difference between Security Risk Compliance vs Security Analyst?

AspectSecurity Risk ComplianceSecurity Analyst
CertificationsISO 27001 Lead Implementer, CISSP, CISACISSP, CompTIA Security+, GIAC Security Certifications
Work EnvironmentPolicy development, compliance audits, risk assessmentsMonitoring security systems, incident response, vulnerability analysis
Employer & Industry UsageFinancial, healthcare, government sectors focusing on regulatory adherenceIT departments across various industries focusing on security operations

Security Risk Compliance professionals focus on ensuring organizations meet regulatory standards and manage security risks through policies and audits. Security Analysts primarily monitor security systems, analyze threats, and respond to incidents. While both roles require security certifications and work within similar environments, their core responsibilities differ: compliance versus active security monitoring.

What are some common challenges faced by Security Risk Compliance professionals when balancing regulatory requirements with business objectives?

Security Risk Compliance professionals often need to navigate the delicate balance between adhering to complex regulatory standards and supporting the organization's operational goals. A major challenge is ensuring compliance without hindering business innovation or efficiency. This involves working closely with various departments to interpret regulations, communicate risks, and implement pragmatic controls that satisfy both legal requirements and business needs. Effective collaboration and ongoing education are key to overcoming these challenges and maintaining a strong security posture.

What are the key skills and qualifications needed to thrive as a Security Risk Compliance professional, and why are they important?

To thrive as a Security Risk Compliance professional, you need a solid understanding of information security frameworks, risk assessment methodologies, and relevant regulations, often supported by a degree in cybersecurity or a related field. Familiarity with tools such as GRC (Governance, Risk, and Compliance) platforms, vulnerability scanners, and certifications like CISSP, CISA, or CRISC is typically required. Strong analytical thinking, attention to detail, and effective communication skills help you identify risks and collaborate with stakeholders. These skills are vital to ensure organizations meet compliance requirements, mitigate risks, and maintain trust with clients and regulators.

What is Security Risk Compliance?

Security Risk Compliance refers to the process of identifying, assessing, and managing risks to an organization's information systems while ensuring adherence to relevant laws, regulations, and industry standards. Professionals in this field develop policies, conduct risk assessments, and implement controls to protect sensitive data from threats. Their work helps organizations minimize security vulnerabilities and avoid legal or financial consequences related to non-compliance.
What job categories do people searching Security Risk Compliance jobs in Virginia look for? The top searched job categories for Security Risk Compliance jobs in Virginia are:
What cities in Virginia are hiring for Security Risk Compliance jobs? Cities in Virginia with the most Security Risk Compliance job openings:
Risk and Compliance Systems Analyst

Risk and Compliance Systems Analyst

System One Holdings, LLC

Vienna, VA โ€ข On-site

Full-time

Medical, Dental, Vision, Life, Retirement

Posted 11 days ago


Job description

Job Title: Risk and Compliance Systems Analyst (Oracle ERP Fusion and RMC)
Location: Vienna, VA
Pay Rate: open to W2 and established 1099's
Work Model: Hybrid, onsite 3 days a week
Position type: multiyear contract

We are looking for an Oracle ERP Fusion security and controls analyst who manages user access, monitors Oracle Risk Management Cloud (RMC) compliance issues, supports audits, documents processes, tests system changes, and coordinates with Finance, HR, Procurement, and IT teams to keep the ERP environment secure and compliant.
Candidates must have 5-10 years of professional experience and recent, hands on experience with both Oracle ERP Fusion and RMC. We are able to work with W2 and established 1099s.
This position is a Finance Technology Security & Controls Analyst/Business Systems Analyst role focused on Oracle ERP Fusion security, risk monitoring, and compliance operations within a Finance Technology environment. The role supports the Oracle ERP Fusion ecosystem and Oracle Risk Management Cloud (RMC) by managing user access, privileged access, risk alerts, incidents, audit readiness, and compliance activities. It combines security operations, business analysis, testing, stakeholder coordination, and documentation responsibilities. The ideal candidate will work across Finance, Procurement, HR, and Technology teams to strengthen security controls, support audits and ICFR compliance, improve processes, conduct testing (SIT/UAT), and drive operational improvements using automation and AI tools like Microsoft Copilot.
We are seeking a skilled contractor to join the Finance Technology Security and Controls team. This team is responsible for security, risk monitoring, and compliance across the Oracle ERP Fusion ecosystem, leveraging the Risk Management Cloud (RMC) module to identify, assess, and mitigate risk. This role blends security and compliance operations with business systems analysis, requiring strong coordination, documentation, and testing capabilities within a Finance Technology environment. The ideal candidate demonstrates intellectual curiosity and is comfortable leveraging tools such as Microsoft Copilot to enhance productivity and outcomes.
Key Responsibilities
โ€ข Perform user access reviews and manage privileged access across Oracle ERP Fusion
โ€ข Monitor, investigate, and resolve RMC alerts and incidents related to security and compliance, including:
o Incident intake, tracking, and resolution
o Monitoring incident aging and driving timely closure
o Escalation management based on risk and timelines
o Documentation of findings, root cause, and remediation actions
โ€ข Collaborate with internal and external auditors to support ICFR requirements and audit readiness
โ€ข Partner across Procurement, Finance, HR, and Technology teams to ensure alignment on security and control execution
โ€ข Act as a Business Systems Analyst
o Gather, document, and refine requirements
o Analyze processes and recommend improvements
o Support risk assessments and remediation efforts
โ€ข Author and execute test scenarios to support system changes, including System Integration Testing and User Acceptance Testing
โ€ข Coordinate meetings, track action items, and drive follow-ups across stakeholders
โ€ข Develop and maintain documentation including SOPs, process guides, and audit artifacts
โ€ข Identify opportunities to improve efficiency through automation, standardization, and use of AI tools
Required Skills and Experience
โ€ข Strong experience with Oracle ERP Fusion security, including roles, privileges, and data access
โ€ข Hands-on experience with Oracle Risk Management Cloud (RMC)
โ€ข Solid understanding of ICFR and compliance frameworks
โ€ข Experience with user access management, privileged access, and risk monitoring
โ€ข Ability to work across ERP modules including Finance, Procurement, and HR
โ€ข Experience managing incidents, including tracking, aging, escalation, and resolution
โ€ข Strong documentation, organization, and analytical skills
โ€ข Experience coordinating across multiple stakeholders and driving deliverables to completion
โ€ข Strong communication and collaboration skills
Preferred Qualifications
โ€ข Prior experience supporting audit and risk management activities
โ€ข Familiarity with segregation of duties concepts
โ€ข Experience with OTBI reporting for security and compliance
โ€ข Experience authoring and executing SIT and UAT test scenarios
โ€ข Comfort using AI-enabled tools such as Microsoft Copilot
โ€ข Background in Finance Technology or similar environments
System One, and its subsidiaries including Joulรฉ and Mountain Ltd., are leaders in delivering outsourced services and workforce solutions across North America. We help clients get work done more efficiently and economically, without compromising quality. System One not only serves as a valued partner for our clients, but we offer eligible employees health and welfare benefits coverage options including medical, dental, vision, spending accounts, life insurance, voluntary plans, as well as participation in a 401(k) plan.
System One is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, age, national origin, disability, family care or medical leave status, genetic data, veteran status, marital status, or any other characteristic protected by applicable federal, state, or local law.
#M-
#LI-