Management or participation in Cybersecurity, Information Security, Risk, Compliance and/or Data Privacy Programs or Projects * Sample projects/programs could include but are not limited to:
Management or participation in Cybersecurity, Information Security, Risk, Compliance and/or Data Privacy Programs or Projects * Sample projects/programs could include but are not limited to:
Management or participation in Cybersecurity, Information Security, Risk, Compliance and/or Data Privacy Programs or Projects * Sample projects/programs could include but are not limited to:
Management or participation in Cybersecurity, Information Security, Risk, Compliance and/or Data Privacy Programs or Projects * Sample projects/programs could include but are not limited to:
Security Program Manager (INFOSEC)
Washington, DC ยท On-site
$145K - $177K/yr
Watermark Risk Management International, LLC is a Service-Disabled Veteran Owned Small Business specializing in security and risk management. The Security Program Manager will provide policy and ...
Security Program Manager (INFOSEC)
Washington, DC ยท On-site
$145K - $177K/yr
Watermark Risk Management International, LLC is a Service-Disabled Veteran Owned Small Business specializing in security and risk management. The Security Program Manager will provide policy and ...
IT Security Risk and Compliance Analyst II
Silver Spring, MD ยท Hybrid
$91K - $125K/yr
Support the organization's Information Security, Risk and Compliance programs (e.g., Vulnerability Management Program) to effectively address information technology risks in alignment with the ...
IT Security Risk and Compliance Analyst II
Silver Spring, MD ยท Hybrid
$91K - $125K/yr
Support the organization's Information Security, Risk and Compliance programs (e.g., Vulnerability Management Program) to effectively address information technology risks in alignment with the ...
Security Analyst/Senior Security Analyst (Technical cyber risk management) - ITDSGGR (Contractual)
Washington, DC ยท Hybrid
$113K - $146K/yr
Under the general supervision of an information security risk manager, the Security Analyst /SeniorSec urity Analyst (Technical cyber risk management) will provideexpertisewith security risk ...
Security Analyst/Senior Security Analyst (Technical cyber risk management) - ITDSGGR (Contractual)
Washington, DC ยท Hybrid
$113K - $146K/yr
Under the general supervision of an information security risk manager, the Security Analyst /SeniorSec urity Analyst (Technical cyber risk management) will provideexpertisewith security risk ...
Share Enterprise Cybersecurity Vulnerability Risk Analyst The Opportunity: Cyber threats are ... Experience managing the lifecycle of security findings or vulnerabilities, including intake ...
Share Enterprise Cybersecurity Vulnerability Risk Analyst The Opportunity: Cyber threats are ... Experience managing the lifecycle of security findings or vulnerabilities, including intake ...
Security Analyst/Senior Security Analyst (Technical cyber risk management) - ITDSGGR (Contractual)
Washington, DC ยท Hybrid
$113K - $146K/yr
Under the general supervision of an information security risk manager, the Security Analyst /SeniorSec urity Analyst (Technical cyber risk management) will provideexpertisewith security risk ...
Security Analyst/Senior Security Analyst (Technical cyber risk management) - ITDSGGR (Contractual)
Washington, DC ยท Hybrid
$113K - $146K/yr
Under the general supervision of an information security risk manager, the Security Analyst /SeniorSec urity Analyst (Technical cyber risk management) will provideexpertisewith security risk ...
Security Analyst/Senior Security Analyst (Technical cyber risk management) - ITDSGGR (Contractual)
Washington, DC ยท Hybrid
$113K - $146K/yr
Under the general supervision of an information security risk manager, the Security Analyst /SeniorSec urity Analyst (Technical cyber risk management) will provideexpertisewith security risk ...
Security Analyst/Senior Security Analyst (Technical cyber risk management) - ITDSGGR (Contractual)
Washington, DC ยท Hybrid
$113K - $146K/yr
Under the general supervision of an information security risk manager, the Security Analyst /SeniorSec urity Analyst (Technical cyber risk management) will provideexpertisewith security risk ...
This team is responsible for security, risk monitoring, and compliance across the Oracle ERP Fusion ecosystem, leveraging the Risk Management Cloud (RMC) module to identify, assess, and mitigate risk.
This team is responsible for security, risk monitoring, and compliance across the Oracle ERP Fusion ecosystem, leveraging the Risk Management Cloud (RMC) module to identify, assess, and mitigate risk.
This team is responsible for security, risk monitoring, and compliance across the Oracle ERP Fusion ecosystem, leveraging the Risk Management Cloud (RMC) module to identify, assess, and mitigate risk.
This team is responsible for security, risk monitoring, and compliance across the Oracle ERP Fusion ecosystem, leveraging the Risk Management Cloud (RMC) module to identify, assess, and mitigate risk.
This team is responsible for security, risk monitoring, and compliance across the Oracle ERP Fusion ecosystem, leveraging the Risk Management Cloud (RMC) module to identify, assess, and mitigate risk.
This team is responsible for security, risk monitoring, and compliance across the Oracle ERP Fusion ecosystem, leveraging the Risk Management Cloud (RMC) module to identify, assess, and mitigate risk.
This team is responsible for security, risk monitoring, and compliance across the Oracle ERP Fusion ecosystem, leveraging the Risk Management Cloud (RMC) module to identify, assess, and mitigate risk.
This team is responsible for security, risk monitoring, and compliance across the Oracle ERP Fusion ecosystem, leveraging the Risk Management Cloud (RMC) module to identify, assess, and mitigate risk.
... security and risk management experience. - Advanced awareness of current information security standards and developments (CSF, NIST, ISO), the COSO framework, as well as the emerging cyber threat ...
... security and risk management experience. - Advanced awareness of current information security standards and developments (CSF, NIST, ISO), the COSO framework, as well as the emerging cyber threat ...
Hybrid, onsite 3 days a week Position type: multiyear contract We are looking for an Oracle ERP Fusion security and controls analyst who manages user access, monitors Oracle Risk Management Cloud ...
Hybrid, onsite 3 days a week Position type: multiyear contract We are looking for an Oracle ERP Fusion security and controls analyst who manages user access, monitors Oracle Risk Management Cloud ...
Hybrid, onsite 3 days a week Position type: multiyear contract We are looking for an Oracle ERP Fusion security and controls analyst who manages user access, monitors Oracle Risk Management Cloud ...
Hybrid, onsite 3 days a week Position type: multiyear contract We are looking for an Oracle ERP Fusion security and controls analyst who manages user access, monitors Oracle Risk Management Cloud ...
Hybrid, onsite 3 days a week Position type: multiyear contract We are looking for an Oracle ERP Fusion security and controls analyst who manages user access, monitors Oracle Risk Management Cloud ...
Quick apply
Hybrid, onsite 3 days a week Position type: multiyear contract We are looking for an Oracle ERP Fusion security and controls analyst who manages user access, monitors Oracle Risk Management Cloud ...
Hybrid, onsite 3 days a week Position type: multiyear contract We are looking for an Oracle ERP Fusion security and controls analyst who manages user access, monitors Oracle Risk Management Cloud ...
Quick apply
Hybrid, onsite 3 days a week Position type: multiyear contract We are looking for an Oracle ERP Fusion security and controls analyst who manages user access, monitors Oracle Risk Management Cloud ...
Hybrid, onsite 3 days a week Position type: multiyear contract We are looking for an Oracle ERP Fusion security and controls analyst who manages user access, monitors Oracle Risk Management Cloud ...
Quick apply
Hybrid, onsite 3 days a week Position type: multiyear contract We are looking for an Oracle ERP Fusion security and controls analyst who manages user access, monitors Oracle Risk Management Cloud ...
Security Oversight Product Owner
Washington, DC ยท Remote
$120K - $130K/yr
This role ensures comprehensive security operations, continuous compliance management, proactive risk assessment, incident response, and security documentation support across high-profile, public ...
Quick apply
Security Oversight Product Owner
Washington, DC ยท Remote
$120K - $130K/yr
This role ensures comprehensive security operations, continuous compliance management, proactive risk assessment, incident response, and security documentation support across high-profile, public ...
Hybrid, onsite 3 days a week Position type: multiyear contract We are looking for an Oracle ERP Fusion security and controls analyst who manages user access, monitors Oracle Risk Management Cloud ...
Hybrid, onsite 3 days a week Position type: multiyear contract We are looking for an Oracle ERP Fusion security and controls analyst who manages user access, monitors Oracle Risk Management Cloud ...
Security Risk Management information
See Washington, DC salary details
$11.70 - $17.84
2% of jobs
$17.84 - $23.97
0% of jobs
$23.97 - $30.11
1% of jobs
$30.11 - $36.25
1% of jobs
$36.25 - $42.38
1% of jobs
$46.98 is the 25th percentile. Wages below this are outliers.
$42.38 - $48.52
26% of jobs
$48.52 - $54.65
11% of jobs
The median wage is $56.85 / hr.
$54.65 - $60.79
22% of jobs
$60.79 - $66.93
9% of jobs
$67.41 is the 75th percentile. Wages above this are outliers.
$66.93 - $73.06
17% of jobs
$73.06 - $79.20
9% of jobs
$11
$57
$79
How much do security risk management jobs pay per hour?
What are the typical challenges faced by professionals in Security Risk Management, and how can they be addressed?
What is Security Risk Management?
What are the key skills and qualifications needed to thrive in Security Risk Management, and why are they important?
What is the difference between Security Risk Management vs Security Analyst?
| Aspect | Security Risk Management | Security Analyst |
|---|---|---|
| Certifications | CRISC, CISSP, CISM | CompTIA Security+, CISSP, CEH |
| Work Environment | Strategic, policy-focused, risk assessment | Operational, monitoring, incident response |
| Employer & Industry Usage | Organizations managing enterprise security risks | Security teams, cybersecurity firms, IT departments |
Security Risk Management focuses on identifying, assessing, and mitigating security risks at an organizational level, often involving policy development and strategic planning. In contrast, Security Analysts primarily monitor security systems, analyze threats, and respond to incidents. Both roles are essential but differ in scope and responsibilities within the cybersecurity field.

Job description
WHAT WE DO
Our Security, Risk and Compliance consultants work with clients at all levels of the organization, from the C-suite to the shop floor, helping them to deliver on their most strategic initiatives. We're known for making realistic, data-driven decisions that deliver value in tangible ways to our clients. Our clients ask for us on projects that require a superior combination of technical and business capabilities, people and management skills, and a collaborative mindset. We excel in understanding complex programs and strategic initiatives and breaking them into actionable pieces.
We are actively looking for professionals in the following areas:
- Compliance
- Information Security
- Risk Management
- Data Privacy
The ideal candidate's experience may include but is not limited to the following:
- Management or participation in Cybersecurity, Information Security, Risk, Compliance and/or Data Privacy Programs or Projects
- Sample projects/programs could include but are not limited to:
- Compliance framework mapping and implementation,
- Regulatory mapping and implementation
- Audit, risk or regulatory remediation management,
- Readiness for new laws and regulations,
- Risk, Compliance or Information Security risk reporting and monitoring
- Creation of roadmaps to mature or advance Risk, Compliance or Information Security Strategies/Programs/Controls
- Design and enablement of cyber controls functions and processes
- Change management related to regulatory adoption or compliance changes
- Audit or certification readiness
- Familiarity or direct experience with GRC/Cybersecurity solutions, tools and technologies
- Control design or maturation for high-demand technical areas such as ERP, Identity and Access Management, Business Continuity and Resiliency, Cloud
- Knowledge of and/or application of industry specific regulations, laws, and standards such as the EU-GDPR, CCPA/CPRA, HIPAA, PCI
- Knowledge of and/or application of compliance and security frameworks and standards such as COSO, NIST, ISO
- Management of regulatory, internal or external audits, or experience as an auditor
- Projects or roles requiring coordination across lines of defense working with technical, business, compliance, risk and audit teams to deliver solutions
- Work or projects with military or federal government agencies in Risk, Compliance or Information Security/Cyber Security sectors
- Certifications: CIPP, CRCM, CRM, ARM, CISSP, CISM
- Sample projects/programs could include but are not limited to:
QUALIFICATIONS
Required-
- Alignment to our core values: Excellence, Participation, Integrity, and Collaboration
- Hungry, Humble, Smart
- Demonstrated business and technology acumen
- Strong written and verbal communication skills
- Understanding and experience solving real business problems
- Proven track record of delivering results
- Experience working with and/or leading a team
- Ability to work across industries, roles, functions & technologies
- Authorization for permanent employment in the United States (this position is not eligible for immigration sponsorship)
Preferred-
- Bachelor's degree
- 8+ years professional experience
- Experience across our service offerings