System OneNewRisk Analyst System OneRisk AnalystMerrifield, VARemoteBachelors Degree, Information systems, Information Security, Computer Science, or related field of study. • Prior experience with tools like Confluence and ADO preferred.
JobotNewSenior QA Lead / Senior QA Analyst JobotSenior QA Lead / Senior QA AnalystGaithersburg, MDRemote$135,000–$150,000 / yearWith deep expertise in cloud-first architectures, automation, DevSecOps, virtualization, reliability engineering, and large-scale systems integration, we help organizations modernize infrastructure, improve operational efficiency, and support mission-critical environments where performance, security, and resiliency are essential. We work closely with stakeholders at every level of the organization—from executive leadership to engineering and operations teams—to provide scalable, resilient, and secure technology solutions that solve complex business and operational challenges.
Company ConfidentialSecurity Control Assessor (SCA) Company ConfidentialSecurity Control Assessor (SCA)Springfield, VA$102,831–$150,000Full timeEngineer Info Assurance 3: 5 years relevant experience with Bachelors in related field; 3 years relevant experience with Masters in related field; 0 years experience with PhD or Juris Doctorate in related field; or High School Diploma or equivalent and 9 years relevant experience. Engineer Info Assurance 2: 2 years relevant experience with Bachelors in related field; 0 years experience with Masters in related field; or High School Diploma or equivalent and 6 years relevant experience.
Company ConfidentialRisk and Insurance Manager - Real Estate/Multi-Family Property Management Company ConfidentialRisk and Insurance Manager - Real Estate/Multi-Family Property ManagementGaithersburg, MD$100,000–$120,000 / yearFull timeWhile performing the duties of this job which coincide with visits to property sites, the employee may occasionally be exposed to wet and/or humid conditions; moving mechanical parts; high, precarious places; fumes or airborne particles; toxic or caustic chemicals; outside weather conditions; extreme cold; extreme heat; risk of electrical shock; and vibration. This role is exempt and has an anticipated annual pay range of $100k-$120k for a new employee depending on a number of relevant factors including individuals’ experience, qualifications, knowledge, skills, abilities, client/property or company budgetary limitations/guidelines, and other job-related company and market considerations.
AECOMHuman Health and/or Ecological Risk Assessor AECOMHuman Health and/or Ecological Risk AssessorGermantown, MD$62,000–$72,000 / yearWe invite you to bring your bold ideas and big dreams and become part of a global team of over 50,000 planners, designers, engineers, scientists, digital innovators, program and construction managers and other professionals delivering projects that create a positive and tangible impact around the world. **ReqID:** J10152351 **Business Line:** Environment **Business Group:** DCS **Strategic Business Unit:** West **Career Area:** Science **Work Location Model:** Hybrid **Compensation:** USD 62000 - USD 72000 - yearly
Company ConfidentialCyber Engineer - 27644 Company ConfidentialCyber Engineer - 27644Annapolis Junction, MD$128,887–$175,000Full time9 years relevant experience with Bachelors in related field; 7 years relevant experience with Masters in related field; 4 years relevant experience with PhD or Juris Doctorate in related field; or High School Diploma or equivalent and 13 years relevant experience. HII Mission Technologies has a need for a Cyber Engineer who will be responsible for guiding systems through the full Risk Management Framework (RMF) lifecycle and ensuring all security controls are properly designed, implemented, documented, and assessed.
Johns Hopkins Applied Physics LaboratoryCybersecurity Compliance Auditor / Security Control Assessor (SCA) Johns Hopkins Applied Physics LaboratoryCybersecurity Compliance Auditor / Security Control Assessor (SCA)Laurel, MarylandWe are seeking a Cybersecurity Compliance Auditor / Security Control Reviewer (SCR) to perform independent security control assessments across classified information systems to determine the overall effectiveness of the controls. Collaborate with Program Managers/System Owners, ISSMs, ISSOs, system engineers/administrators, and program teams to resolve findings and improve security posture.
Harmonia Holdings Group, LLCSecurity Control Assessor Harmonia Holdings Group, LLCSecurity Control AssessorWashington, DCThis role is responsible for planning, conducting, and overseeing independent security assessments of systems, applications, networks, and common controls to evaluate the effectiveness of management, operational, and technical security controls in accordance with NIST SP 800-37. Harmonia Holdings Group, LLC is an award-winning, rapidly growing federal government contractor committed to providing innovative, high-performing solutions to our government clients and focused on fostering a workplace that encourages growth, initiative, creativity, and employee satisfaction.
The Newberry GroupJunior Security Control Assessor The Newberry GroupJunior Security Control AssessorFt. Meade, MDFull timeThis includes medical coverage with three plan options, dental and vision coverage, personal time off, paid holidays, paid parental leave, telecommuting if available, retirement savings accounts (Pre-Tax and Roth), flexible and dependent care savings accounts, life insurance, long and short-term disability coverage, tuition and training reimbursement, employee assistance program, and more. For each RMF Review, the assessors shall perform the following: The candidate will be required to review applicable controls to determine compliance status and enter all test results into the designated repository (Enterprise Mission Assurance Support Service (eMASS).
PeratonSecurity Control Assessor Representative PeratonSecurity Control Assessor RepresentativeLinthicum, Maryland$135,000–$216,000 / year
GAMA-1 TechnologiesSenior Security Control Assessor (SCA) GAMA-1 TechnologiesSenior Security Control Assessor (SCA)Washington, DCFull timeGAMA-1 Technologies is seeking a Senior Security Control Assessor to support cybersecurity assessments and compliance activities across federal systems and national security environments. This position is ideal for cybersecurity professionals with deep assessment experience who enjoy working at the intersection of compliance, technical security, and risk management.
IMAGINEEER LLCSME Security Control Assessor IMAGINEEER LLCSME Security Control AssessorArlington, VAWe are looking for a SME Security Control Assessor that supports security control assessment activities for HHS-ACF information systems by applying NIST security controls and frameworks to evaluate control implementation and effectiveness. Additionally, the role maintains assessment documentation and tracking artifacts, reviews security documentation, and assists in the development of Plans of Action and Milestones (POA&Ms).
AGE solutionsSecurity Control Assessor, Mid AGE solutionsSecurity Control Assessor, MidFort Meade, MDRemoteDemonstratable understanding of key technologies areas/domain such as: Network, Mobility, Windows, UNIX, Cloud Environments and Cloud Native Tools/Services, Host Based Security System (HBSS)/Endpoint Security Solutions (ESS), Databases, Applications. Skills and Knowledge: Demonstrated experience with STIGs (Security Technical Implementation Guides), Security Requirement Guides (SRGs), Plan of Action and Milestones (POA&Ms) and cybersecurity best practices.
Technology Security Associates, Inc.Senior Security Control Assessor Technology Security Associates, Inc.Senior Security Control AssessorArlington, VA$130,000–$150,000 / yearJHNA/TSA provides for the welfare of its employees and their dependents through a comprehensive benefits program by offering healthcare benefits, paid leave, retirement plans, insurance programs, and education and training assistance. TSA is currently seeking a Senior Security Control Assessor who will serve as a Functional Lead and provide support to our NAVAIR customer in the DC Metro area.
Macpower Digital Assets Edge Private LimitedSecurity Control Assessor - Active TS/SCI Macpower Digital Assets Edge Private LimitedSecurity Control Assessor - Active TS/SCIArlington, VA$100,000–$149,000 / yearClearance: Active TS/SCI eligibility required, plus Special Access Program (SAP) access eligibility and willingness for Counterintelligence polygraph Industry: Public Sector/Government (DoD/Air Force support) Key Responsibilities: Conduct comprehensive assessments of management, operational, and technical security controls for information systems (IS) using Risk Management Framework (RMF) and Joint SAP Implementation Guide (JSIG). Meet DoD Directive 8570.01-M certification requirements for Information Assurance Technician Level III or Information Assurance Manager Level I within 6 months of hire.
TLA-LLCSecurity Assessor TLA-LLCSecurity AssessorMcLean, VAIdentify Vulnerabilities and Risks: Utilize assessment tools and manual techniques (e.g., vulnerability scanning, penetration testing, code review) to identify security weaknesses, document findings, and assess the severity of risk. · Documentation and Reporting: Prepare detailed documentation, including Security Assessment Plans (SAP), Security Assessment Reports (SAR), and Plans of Action and Milestones (POA&Ms), for identified weaknesses and deficiencies.
SkyePoint DecisionsSenior Security Control Assessor SkyePoint DecisionsSenior Security Control AssessorWashington, DCRemoteSkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider headquartered in Dulles, Virginia with operations across the U.S. We provide innovative enterprise-wide solutions as well as targeted services addressing the complex challenges faced by our federal government clients. Salary at SkyePoint is determined by various factors, including but not limited to location, work schedule, the candidate's combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability, market data and business considerations.
Macpower Digital Assets Edge LLCSecurity Control Assessor - Active TS/SCI Macpower Digital Assets Edge LLCSecurity Control Assessor - Active TS/SCIArlington, VAFull timeClearance: Active TS/SCI eligibility required, plus Special Access Program (SAP) access eligibility and willingness for Counterintelligence polygraph Industry: Public Sector/Government (DoD/Air Force support) Key Responsibilities: Conduct comprehensive assessments of management, operational, and technical security controls for information systems (IS) using Risk Management Framework (RMF) and Joint SAP Implementation Guide (JSIG). Meet DoD Directive 8570.01-M certification requirements for Information Assurance Technician Level III or Information Assurance Manager Level I within 6 months of hire.
Tyto Athene, LLCNewJunior Security Controls Assessor Tyto Athene, LLCJunior Security Controls AssessorWashington, Washington, DC$75,000–$95,000 / yearPerform security testing at the control-requirement level for each unique component of each system (e.g., application, web application server, financial systems, database server/instance, operating systems, specialized appliances, network and infrastructure devices, and end-user devices (e.g., mobile phones, laptops, etc.). Conduct technical content review and analysis of technical reports from security vulnerability scan, penetration test, and configuration compliance scan tools with respect to the subject system’s context and environment in order to analyze the findings accurately and completely.
IBSS CorporationNewSecurity Control Assessor IBSS CorporationSecurity Control AssessorSilver Spring, MD$80,000–$110,000 / yearDevelop, review, and evaluate essential security assessment outputs, including a Security Assessment Plan (SAP), Security Requirements Traceability Matrix (SRTM), Penetration Testing Report (PTR), Security Assessment Report (SAR), Risk Assessment Report (RAR), and Assessment Findings Report (AFR). If you require reasonable accommodation in completing this application, interviewing, completing any pre-employment testing, or otherwise participating in the employee selection process, please direct your inquiries to the Talent Acquisition department at Recruiting@ibsscorp.com.
ManTechSecurity Control Assessor ManTechSecurity Control AssessorWashington, DCMust hold at least one of the following certifications: Certified Information Systems Security Professional (CISSP), Global Information Security Professional (GISP), or the CompTIA Advanced Security Practitioner (CASP), Certified Information System Manager (CISM), or other certifications exemplifying skill sets such as those described in DoD Instruction 8570.1. + Initiate, coordinate, and recommend to the FBI Authorizing Official all Interconnection Security Agreement (ISAs), Memorandum of Understanding (MOUs), and Memorandum of Agreement (MOAs) that permit the interconnection of an FBI IS with any non-FBI or joint-use IS.
RedTrace Technologies IncSecurity Control Assessor III (SCA III), (TS, w/ SCI Eligibility) - RedTrace Technologies IncSecurity Control Assessor III (SCA III), (TS, w/ SCI Eligibility) -Arlington, VAFull timePosition Description:The SCA is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed within or inherited by an IS to determine the overall effectiveness of the controls (i.e., the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements for the system). We are seeking an Security Control Assessor (SCA) III to carry out the following duties and responsibilities:Perform oversight of the development, implementation and evaluation of IS security program policy; special emphasis placed upon integration of existing SAP network infrastructure .
RedTrace Technologies IncSecurity Control Assessor II (SCA II), (TS, w/ SCI Eligibility) - RedTrace Technologies IncSecurity Control Assessor II (SCA II), (TS, w/ SCI Eligibility) -Crystal City, VAFull timePosition Description:The SCA is responsible for conducting a comprehensive assessment of the management, operational, and technical security controls employed within or inherited by an IS to determine the overall effectiveness of the controls (i.e., the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security requirements for the system). We are seeking an Security Control Assessor (SCA) II to carry out the following duties and responsibilities:Perform oversight of the development, implementation and evaluation of IS security program policy; special emphasis placed upon integration of existing SAP network infrastructure .
SkyePoint DecisionsAWS Assessor SkyePoint DecisionsAWS AssessorWashington, DCSkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider headquartered in Dulles, Virginia with operations across the U.S. We provide innovative enterprise-wide solutions as well as targeted services addressing the complex challenges faced by our federal government clients. The AWS Assessor is responsible for conducting a comprehensive assessment of implemented controls and control enhancements to determine the effectiveness of the controls, i.e., the extent to which the controls are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the security and privacy requirements for the system and the organization.
Peraton IncInformation Systems Security Officer (Technical ISSO / RMF Assessor) Peraton IncInformation Systems Security Officer (Technical ISSO / RMF Assessor)Washington, DC$112,000–$179,000 / yearThe ideal candidate will be confident writing Security Test Procedures (STPs), building Security Controls Traceability Matrices (SCTMs), interpreting ACAS/Nessus scan results, and using Splunk to verify control effectiveness. We are seeking a highly skilled and technically proficient Information Systems Security Officer (ISSO) with hands-on experience developing, implementing, and validating security controls within DoD RMF environments.
Leidos Holdings IncTraveling Security Control Assessor Leidos Holdings IncTraveling Security Control AssessorAlexandria, VA$85,150–$153,925 / yearDemonstrated experience with STIGs, SRGs, POA&Ms and cybersecurity best practices, as well as relevant tools such as eMASS, STIG Viewer, Nessus, ACAS, SCAP, or HBSS Strong understanding of the RMF process, NIST SP 800- 37, NIST SP 800-53, CNSSI 1253, as well as key technologies areas/domain such as: Network, Mobility, Windows, UNIX, Cloud Environments and Cloud Native Tools/Services, Host Based Security System (HBSS)/Endpoint Security Solutions (ESS), Databases, Applications Strong written and verbal communication skills for reporting assessment findings. Basic Qualifications: Active DoD Top Secret clearance with SCI eligibility required Current DoD 8570 IAM II or IAT II certification Ability and willingness to travel for assessments as required, up to 85% of the time Bachelors degree (IT-related field preferred) and eight (8) years of cybersecurity or network security experience, including five (5) years of experience in a Certification and Accreditation/A&A role.
Leidos Holdings IncTraveling Security Control Assessor (Journeyman) Leidos Holdings IncTraveling Security Control Assessor (Journeyman)Fort George G. Meade, MD$67,600–$122,200 / yearAdditional relevant experience may be considered in lieu of degreeDemonstrated experience with STIGs, SRGs, POA&Ms and cybersecurity best practices, as well as relevant tools such as eMASS, STIG Viewer, Nessus, ACAS, SCAP, or HBSS Strong understanding of the RMF process, NIST SP 800- 37, NIST SP 800-53, CNSSI 1253, as well as key technologies areas/domain such as: Network, Mobility, Windows, UNIX, Cloud Environments and Cloud Native Tools/Services, Host Based Security System (HBSS)/Endpoint Security Solutions (ESS), Databases, Applications Strong written and verbal communication skills for reporting assessment findings---The maximum starting salary for this position is $85,000. Assist with mentoring and guiding personnel by providing technical expertise, best practices, and professional development support to enhance team capabilities and knowledgeBasic Qualifications:Active DoD Top Secret clearance with SCI eligibility requiredCurrent DoD 8570 IAM II or IAT II certification Ability and willingness to travel for assessments as required, up to 85% of the timeBachelor''s degree (IT-related field preferred) and five (5) years of cybersecurity or network security experience, including three (3) years of experience in a Certification and Accreditation/A&A role.
Capital One Financial CorpManager - Technology Risk - Enterprise Services Risk Office Capital One Financial CorpManager - Technology Risk - Enterprise Services Risk OfficeMcLean, VA$149,800–$171,000 / yearBasic Qualifications: • Bachelors Degree or military experience • At least 3 years of experience in performing risks assessments and risk advisory work for card or debit payments networks • At least 4 years of experience in an information technology or risk management field • At least 4 years of experience in project, risk program, or process management • At least 4 years of experience supporting, partnering, and interacting with internal and external business clients • At least 4 years of experience consulting with senior executives or strategy building. Sales Territory: $149,800 - $171,000 for Manager, Cyber Risk & Analysis McLean, VA: $164,800 - $188,100 for Manager, Cyber Risk & Analysis Richmond, VA: $149,800 - $171,000 for Manager, Cyber Risk & Analysis Candidates hired to work in other locations will be subject to the pay range associated with that location, and the actual annualized salary amount offered to any candidate at the time of hire will be reflected solely in the candidate's offer letter.
SkyePoint DecisionsSecurity Control Assessor SkyePoint DecisionsSecurity Control AssessorWashington, DCRemoteSkyePoint Decisions is a leading Cybersecurity Architecture and Engineering, Critical Infrastructure and Operations, and Applications Development and Maintenance IT service provider headquartered in Dulles, Virginia with operations across the U.S. We provide innovative enterprise-wide solutions as well as targeted services addressing the complex challenges faced by our federal government clients. Salary at SkyePoint is determined by various factors, including but not limited to location, work schedule, the candidate's combination of education, knowledge, skills, competencies, and experience, as well as contract-specific affordability, market data and business considerations.
Chenega CorporationSecurity Control Assessor Chenega CorporationSecurity Control AssessorAlexandria, VAThe Security Control Assessor is responsible for supporting A&A or other IA/CND Compliance and Auditing processes and inspections for all enterprise systems and networks, ensuring validity and accuracy review of all associated documentation. Current knowledge of cloud-computing technologies and security as they relate to Infrastructure-as-a-Service (IaaS), Platform-as-a-Service (PaaS), and Software-as-a-Service (SaaS).
Circle Internet Financial LLCSenior Manager, Global Risk Management, Enterprise Fraud Risk Circle Internet Financial LLCSenior Manager, Global Risk Management, Enterprise Fraud RiskWashington, DC$172,500–$222,500 / yearDevelop and maintain the enterprise fraud risk framework, policies, and controls, covering threats such as synthetic identity fraud, account takeovers, authorized push payment fraud, internal misconduct, social engineering, scams, and emerging typologies (e.g., deepfakes, AI-driven impersonation, mule networks). Circle's platform includes the world's largest regulated stablecoin network anchored by USDC, Circle Payments Network for global money movement, and Arc, an enterprise-grade blockchain designed to become the Economic OS for the internet.
TechWishTechnical Risk Analyst TechWishTechnical Risk AnalystMerrifield, VAQualifications • Experience in the credit union/financial services industry with a focus on regulatory frameworks, information security assessments, and remediation activities • Desired knowledge of NCUA, FFIEC, GLBA, NIST (including the Cyber Security Framework and 800 Series • Effective planning and organizational skills • Effective research, analytical and problem solving skills • Strong verbal, written and interpersonal communication skills, including technical writing • Desired Bachelor Degree in business, information systems or related field or equivalent work/military experience • Ability to present findings and conclusions clearly and concisely • Experience in working with all levels of staff, management, stakeholders, and third parties • Ability to build effective relationships through rapport, trust, diplomacy, and tact. The Contractor Analyst will be responsible for supporting the daily operations of issue management, partnering with RCSA and control testing teams as well as issue remediation tracking.
PL ASSOCIATES INC. (PLA)Project Risk Manager PL ASSOCIATES INC. (PLA)Project Risk ManagerWASHINGTON, DC$50–$80 / hourMust have proficiency in risk management processes and principles, along with expert-level knowledge of the Construction Risk Management as well Design phase risk management including planning phase. The risk manager candidate must be insightful and should be intimately familiar with Risk Management in project phases such as Design phase, Pre-Construction and Construction Phases of the project.
BlueVoyantBusiness Risk Analyst I BlueVoyantBusiness Risk Analyst IHybrid, Washington, DCFull timeFounded in 2017 by Fortune 500 executives, including Chairman of the Board, Jim Rosenthal, Vice Chairman, Tom Glocer, and former Government cyber officials, BlueVoyant is headquartered in New York City and has offices in Maryland, Tel Aviv, San Francisco, London, Budapest, and Latin America and is committed to building a workplace where talented people are empowered to do their best work in the fight against global cyber threats. Led by CEO, John Hernandez, BlueVoyant’s highly skilled team includes former government cyber officials with extensive frontline experience in responding to advanced cyber threats on behalf of the National Security Agency, Federal Bureau of Investigation, Unit 8200, and GCHQ, together with private sector experts.
McCormick & Co IncSenior Security Risk Analyst (HYBRID) McCormick & Co IncSenior Security Risk Analyst (HYBRID)HUNT VALLEY, MD$87,910–$153,870 / yearIntake and analysis of identified risks from a variety of sources including audits, compliance checks, automated vulnerability systems, and other internally or externally reported risks. Base Salary: $87,910-$153,870 Base salary compensation will be determined based on factors such as geographic location, skills, education, experience for this role, and/or internal equity of our current employees as part of any final offer.
Customer Value PartnersRisk Manager Customer Value PartnersRisk ManagerRockville, Maryland$155,000–$165,000 / yearThe Cybersecurity Risk Manager will work directly with the Cybersecurity Program Manager and the agency’s CIO and CISO in cybersecurity tasks such as information security policy development and implementation; security compliance monitoring; security audit management; risk assessment; system authorization; security reporting; and other information security-related tasks. Developing an agency Information Security Risk Management Strategy in accordance with the latest released versions of NIST Special Publications (SPs) such as SP 800-37, Risk Management Framework for Information Systems and Organizations and SP 800-39, Managing Information Security Risk (as revised).
TechnomicsCyber Risk Analyst SME TechnomicsCyber Risk Analyst SMEArlington, VAWe deliver practical, credible and defensible results offering actionable insights by applying data-driven and analytics-based approaches in combination with multidisciplinary talent, subject matter experts, and tangible and repeatable assets in the form of databases, models, approaches and techniques. Senior Analystshave the knowledge, skills, abilities and initiative to deliver timely, practical and innovative solutions to our clients as part of high-performing project teams typically composed of a mix of junior and mid-level analysts who will look to you for technical acumen and mentoring.
INSPYR SolutionsOracle ERP Risk Analyst INSPYR SolutionsOracle ERP Risk AnalystMerrifield, VAThis team is responsible for security, risk monitoring, and compliance across the Oracle ERP Fusion ecosystem, leveraging the Risk Management Cloud (RMC) module to identify, assess, and mitigate risk. Information collected and processed through your application with INSPYR Solutions (including any job applications you choose to submit) is subject to INSPYR Solutions’ Privacy Policy and INSPYR Solutions’ AI and Automated Employment Decision Tool Policy: https://www.inspyrsolutions.com/policies/.
Summit Technologies, Inc.Risk Manager - Managed Service Provider Support Summit Technologies, Inc.Risk Manager - Managed Service Provider SupportAlexandria, VAThe Risk Manager leads identification, analysis, prioritization, and mitigation of risks, issues, and opportunities across supported systems. Advise Government leadership on emerging risks and opportunities.
T. Rowe PriceSenior Equity Risk Manager T. Rowe PriceSenior Equity Risk ManagerBaltimore, MDFull timeThis senior manager is a high-impact role within the Equity Risk team, reporting to the Director of Equity Risk who leads a team of 6 associates, that contributes to effective risk oversight of the equity investment division, provides risk coverage for important equity strategies, and advances the evolution of risk analytics and modelling tools. T. Rowe Price is a leading global asset manager, entrusted with managing $1.79 trillion in client assets as of November 2025 and serving millions of clients globally who rely on the firm for its retirement expertise and active management across asset classes.
Kennedy Krieger InstituteNewAssociate Risk Manager Kennedy Krieger InstituteAssociate Risk ManagerBaltimore, MDCollaborate with the Legal Risk Coordinator and Legal Counsel to assist staff with various risk matters including complex patient issues, guardianship and custody issues, legal document review and testimony for legal matters.8. The Associate Risk Manager is responsible for identifying, evaluating, and mitigating risks that could impact patient safety, staff well-being, regulatory compliance, and organizational operations.
EagleBankOperational Risk Manager EagleBankOperational Risk ManagerBethesda, Maryland$114,071–$192,797 / yearAs an individual contributor, this role will lead all aspects of the governance of the operational risk management program and provide senior management with data driven reporting, analytics and insights to deliver a sustainable risk remediation and management and support strategic planning and decision making. Implementation and the execution of the enterprise wide Risk And Control Self Assessments (“RCSA”) and the annual Enterprise Risk Assessment from a second line oversight perspective, and an ongoing maturation of the programs.
Insurance Office of AmericaRisk Manager - Insurance Insurance Office of AmericaRisk Manager - InsuranceAnnapolis, MDRemote$110,000–$145,000 / yearFull timePlease note: If this position is posted as either fully remote and/or hybrid, in accordance with company policy, individuals residing within a 50-mile radius of a branch location may be required to work onsite in a hybrid capacity as there may be occasions when on-site presence is necessary to meet specific business needs. This role acts as a strategic advisor to clients or internal stakeholders, aligning insurance solutions with business objectives while ensuring regulatory compliance, cost efficiency, and effective claims management.
Mitchell MartinNewCybersecurity Risk Analyst (Senior) - Remote Mitchell MartinCybersecurity Risk Analyst (Senior) - RemoteMerrifield, VARemote$44.10–$63 / hourBy applying for this job, you agree to receive AI-generated calls, text messages, and/or emails from Mitchell Martin Inc and its affiliates and contracted partners at various frequency through traditional and automated methods. This remote contract position involves conducting comprehensive risk assessments and implementing information security strategies.
Capital One Financial CorpStrategic Risk Manager Capital One Financial CorpStrategic Risk ManagerMcLean, VA$151,900–$173,400 / yearPreferred Qualifications: Strategy or Risk management experience in a large financial services organization or management consultancy Experience in the payments industry Comprehensive knowledge of the end-to-end risk management lifecycle, risk frameworks, and governance structures Proven ability to distill complex information into a consumable narrative for an executive and Board level audience Proven ability to identify and evaluate risk pathways and devise management strategies Collaborative, team player with the ability to navigate a complex organization and influence outcomes Strong analytical, problem solving and critical thinking skills. Effective Challenge: (1) Provide oversight and effective challenge of Risk ID and other risk assessments to ensure Divisions are appropriately considering the risks from market trends, changes in the competitive environment, and the company's own strategic decisions and execution; (2) Provide expert advice on the quantification and qualitative impact of strategic risks on the company's business model or financial performance; Assessment: Evaluate the adequacy and effectiveness of Division's risk control and mitigation actions, ensuring they are timely, appropriate, and mitigate key failure modes.
Sunrise Senior LivingClinical Risk Manager (Remote) Sunrise Senior LivingClinical Risk Manager (Remote)McLean, VARemoteOperating as a key subject matter expert and advisor, this role collaborates closely with clinical staff, legal counsel and organization leadership to ensure compliance with healthcare regulations, reduce liability exposure and promote a culture of resident safety and risk awareness. The unique responsibilities for this role include but are not limited to the essential functions listed as follows: Manages ongoing analysis, development and implementation of methods and systems to improve the overall safety, efficiency and effectiveness of the Legal & Clinical Risk Management program.
ESSCleared On Site Chief Security Architect for Governance, Risk and Compliance (5030) ESSCleared On Site Chief Security Architect for Governance, Risk and Compliance (5030)Washington, DC$137,600–$231,200 / yearLaw Enforcement Agency OCIO's organization is moving to Information Systems Security as a Service and requires a Chief Security Architect to serve as the program's principal technical authority, providing strategic risk advisory to OCIO leadership, Authorizing Officials, and ISSO(E)(M)s while overseeing the security posture of 600+ information systems across all classification levels. This role translates the Customer's security vision into actionable technical guidance, validates the system categorization methodology, reviews high-risk change requests, and enables innovation through evaluation of emerging technologies (AI/ML, zero trust, cloud-native security) within the Customer's governance constraints.
WiSC Enterprises, LLCSr. Cyber Supply Chain Risk Management Analyst WiSC Enterprises, LLCSr. Cyber Supply Chain Risk Management AnalystSpringfield, VirginiaThe C-SCRM Analyst is responsible for identifying, assessing, and mitigating risks associated with the distributed and interconnected nature of Information and Communications Technology and Operational Technology (ICT/OT) product and service supply chains throughout their entire lifecycle. Frameworks: In-depth knowledge of NIST SP 800-161r1-upd1, NIST Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations, and Risk Management Framework (RMF).
Blue Water ThinkingEnterprise Risk Management (ERM) Director Blue Water ThinkingEnterprise Risk Management (ERM) DirectorWashington, DC$160,000–$180,000 / yearLeveraging our executive team's military experience and private and public sector consulting expertise, Blue Water Thinking takes an integrated "one-team" approach and brings to bear best-fit solutions, thought leadership, and grit to meet our client's transformational needs. Fueled by our values of integrity, respect, professionalism, stewardship and customer service, the Blue Water Thinking team understands the power of the human connection, collaboration, humility and loyalty to one another, our clients and industry partners.
SET DevelopmentCyber Security Product Risk Manager (Space Systems) SET DevelopmentCyber Security Product Risk Manager (Space Systems)Arlington, VAFull timeThis role sits at the intersection of cybersecurity, space systems engineering, and compliance, ensuring that cyber risks are identified, assessed, and mitigated across the full product lifecycle—from architecture through operations. Our teams embed directly with clients to solve complex technical challenges across spacecraft systems, avionics, flight software, communications, and mission operations.