Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Cybersecurity Risk Analyst

$67 - $70 per hour

Eclaro

Overview Job Number: 26-01087 ECLARO is looking for a Cybersecurity Risk Analyst for our client in Manassas, VA . ECLARO’s client is a leading technology solutions provider, collaborating with customers to manage their needs and achieve success in their business goals. Position Overview Seeking a results-driven and analytically minded Cybersecurity Risk Analyst to serve a dual mission within the Cybersecurity team: owning Third-Party Risk Management (TPRM) operations and supporting the organization’s broader Cyber Governance & Risk. The successful consultant will be the Subject Matter Expert (SME) for the TPRM program, currently administered through the SAFe platform, and will be equally responsible for insider threat monitoring, custom cybersecurity awareness training development, awareness metrics reporting, Disaster Recovery (DR) coordination, and executive-level risk reporting. This role requires translating technical risk data into clear business intelligence, building Power BI dashboards and reports for leadership, and collaborating across IT, Operations, and Procurement. The ideal consultant brings hands-on TPRM experience, strong data visualization skills, and a passion for building programs that protect members, infrastructure, and operational continuity. Responsibilities Other related duties may be assigned. Third-Party Risk Management (TPRM) Operations Evaluate new and prospective vendors through structured cybersecurity risk assessments to determine cyber clearance eligibility before contract execution or system access. Serve as the primary SME and platform administrator for the TPRM solution (SAFe), maintaining data integrity, configuring risk workflows, and driving continuous platform optimization. Maintain and update the enterprise vendor inventory, tracking risk tier classification, assessment status, contract dates, and lifecycle position for all third parties. Execute structured vendor onboarding workflows, including security due diligence, contractual security requirements review, and formal risk acceptance documentation. Monitor and triage automated vendor security alerts generated through SAFe; analyze alert severity and communicate actionable risk intelligence to stakeholders on time. Manage vendor offboarding procedures, ensuring termination of data and system access, contractual closure, and record retention compliance. Conduct periodic reassessments and ongoing monitoring of in-scope vendors according to risk tiering methodology and assessment calendar. Develop and maintain Power BI dashboards and reports presenting vendor risk metrics, assessment completion rates, open risks, and trend analysis for leadership and risk committees. Cyber Governance, Risk & Insider Threat Support Insider Threat program by monitoring behavioral risk indicators, documenting escalation procedures, and maintaining governance records. Assist in the preparation of cybersecurity governance artifacts, including risk registers, policy documents, control metrics, and compliance reports aligned to NIST CSF and applicable regulatory frameworks. Generate periodic cyber risk reports for IT leadership, audit, and regulatory audiences, summarizing risk posture, open findings, control gaps, and remediation status. Build and maintain Power BI dashboards to visualize governance and risk metrics, control effectiveness trends, and risk KPIs across the organization. Participate in risk assessment activities and support internal control evaluations relevant to IT environments. Cybersecurity Awareness Training & Metrics Reporting Design and develop custom cybersecurity awareness training content tailored to the specific business operations and risk profiles of individual departments (e.g., Operations, Finance, Customer Engagement, Engineering). Collaborate with department leads to schedule, deploy, and track training completion across the organization. Administer phishing simulation campaigns; analyze results and produce actionable reports identifying at-risk user populations and trending behaviors. Build and maintain Power BI dashboards tracking cybersecurity awareness KPIs, including training completion rates, phishing click-through rates, repeat offender trends, and department-level performance over time. Prepare and present monthly and quarterly Cyber Awareness Reports for leadership, translating program metrics into clear risk narratives and recommended actions. Stay current with evolving social engineering tactics and regulatory guidance to keep training content timely and impactful. Evaluate training platform effectiveness and recommend enhancements. Disaster Recovery (DR) Coordination & Reporting Coordinate and facilitate Disaster Recovery testing exercises for core business applications in collaboration with IT Operations. Develop DR test plans, scoping documents, timelines, and stakeholder communication plans. Document test execution results, capture gaps or failures, and produce post-exercise reports for IT leadership and executives. Track remediation of identified DR gaps to closure; maintain updated DR runbooks, test records, and lessons-learned logs. Assist in the broader Business Continuity Planning (BCP) process as it pertains to cybersecurity resilience and recovery readiness. SharePoint Intranet & Stakeholder Dashboard Publishing Design, build, and maintain SharePoint sites and pages serving as the centralized hub for cybersecurity communications, dashboards, and reporting artifacts. Embed and publish Power BI reports into SharePoint pages, ensuring access to live dashboards without requiring Power BI licensing. Develop audience-specific SharePoint pages for distinct stakeholder groups with role-based access controls. Maintain separate SharePoint views for TPRM metrics, cyber awareness training, governance and risk posture indicators, and DR testing results. Collaborate with department heads to translate reporting needs into intuitive, self-service SharePoint dashboard pages. Establish a publishing cadence for dashboard refreshes and narrative updates. Apply SharePoint governance best practices, including naming conventions, version control, content lifecycle management, and access review procedures. Coordinate with IT infrastructure and Microsoft 365 administrators for site provisioning and integration with Power BI Service. Internal Communicate within the department and with other departments to ensure achievement of goals and standards; provide high-level service; coordinate activities; and improve the knowledge base of policies and programs. Participate in staff meetings to develop and implement plans; monitor and revise strategies; and contribute to policies and procedures. External Provide high-quality customer service to external customers and maintain professional relationships with customers and the public. Required Qualifications Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Risk Management, or a closely related field. Equivalent combination of education and professional experience will be considered. Minimum 3-5 years of progressive experience in cybersecurity, IT risk management, or a related GRC discipline. Demonstrated experience operating or administering a formal TPRM program or third-party risk platform. Proven ability to build Power BI reports and dashboards that translate security data into executive-ready metrics. Experience developing and delivering cybersecurity awareness training and reporting program metrics. Familiarity with Disaster Recovery planning, tabletop exercises, or DR test coordination. Power BI Report & Dashboard Development Vendor Risk Assessment & Lifecycle Management TPRM Platform Administration (SAFe or Equivalent) GRC Documentation & Control Mapping Security Questionnaire Evaluation (SIG, Custom) Phishing Simulation Analysis & Reporting Cyber Awareness Metrics Tracking & Presentation DR Test Planning, Facilitation & Post-Exercise Reporting Insider Threat Monitoring Support Advanced Microsoft Excel (Pivot Tables, Data Models) Executive-Ready PowerPoint Presentations SharePoint Site Management Clear written & verbal communication at all org levels. Executive-Level Risk Storytelling & Data Narration Cross-Functional Stakeholder Engagement Analytical Thinking & Risk Prioritization Project Coordination & Deadline Management Detail Orientation & Documentation Discipline Ability to manage multiple concurrent workstreams. Vendor Relationship Professionalism Collaborative team player with independent initiative. Adaptability in a fast-paced utility environment. Continuous learning mindset in evolving threat landscape. SharePoint site design and intranet page development. Preferred Skills Experience in a regulated industry (electric utility, energy, financial services, or healthcare). Hands-on experience with the SAFe TPRM platform or comparable solutions (One Trust, Process Unity, Prevalent, BitSight, Security Scorecard). Working knowledge of NIST CSF (v2.0), NIST SP 800-161 (C-SCRM), or ISO / IEC 27036 supply chain risk standards. Familiarity with Insider Threat frameworks and behavioral analytics monitoring. Experience with Business Continuity Management frameworks (ISO 22301). Background in Learning Management System (LMS) administration and instructional design principles for security awareness content. Advanced Power BI skills: DAX measures, row-level security, scheduled refresh, paginated reports. Certifications: PL-300, CTPRP, Security+ or equivalent. PL-300: Microsoft Power BI Data Analyst CTPRP: Certified Third Party Risk Professional Security+: CompTIA Security+ Pay Rate $67 - $70 / Hour Benefits 401k Retirement Savings Plan administered by Merrill Lynch Commuter Check Pretax Commuter Benefits Eligibility to purchase Medical, Dental & Vision Insurance through ECLARO How to Apply If interested, you may contact: Tim Cusick View email address on click.appcast.io View phone number on click.appcast.io Tim Cusick | LinkedIn Equal Opportunity Employer ECLARO values diversity and does not discriminate based on Race, Color, Religion, Sex, Sexual Orientation, National Origin, Age, Genetic Information, Disability, Protected Veteran Status, or any other legally protected group status, in compliance with all applicable laws. #J-18808-Ljbffr

Vacancy posted 1 day ago
Similar jobs that could be interesting for youBased on the Cybersecurity Risk Analyst in Manassas, VA vacancy
  • $67 - $70 per hour

     ...Cybersecurity Risk Analyst Job Number: 26-01087 Use your skills where innovative technology solutions begin. ECLARO is looking for a Cybersecurity Risk Analyst for our client in Manassas, VA. ECLARO's client is a leading technology solutions provider,... 
    Suggested
    Contract work

    Eclaro

    Manassas, VA
    1 day ago
  • $85k - $110k

     ...Cybersecurity Analyst I Location US-VA-Manassas ID 2026-4564 Category IT / Cyber Security / Network Systems...  ...organization's cybersecurity posture by performing comprehensive risk assessment and improving incidents response protocols. In... 
    Suggested
    Full time
    Immediate start
    Remote work

    American Systems

    Manassas, VA
    2 days ago
  •  ...customer-oriented Cyber Incident Response Analyst to join our team in McLean, VA ....  ...proactively identify and defend against emerging risks. Maintain comprehensive reporting and...  ...6 months of hire. Knowledge of cybersecurity principles, incident detection, and... 
    Suggested
    Shift work
    Night shift
    Day shift
    Afternoon shift

    MANTECH

    McLean, VA
    15 hours ago
  •  ...MANTECH seeks a motivated, career and customer-oriented Cyber Incident Response Analyst to join our team in McLean, Virginia . Our team provides 24x7x365 cybersecurity support to one of the most coveted targets in the world.  The Cyber Incident Response Analyst... 
    Suggested
    Shift work
    Night shift
    Day shift
    Afternoon shift

    MANTECH

    McLean, VA
    15 hours ago
  •  ...Senior Risk Analyst At Clicklease, we're passionate about helping small businesses access the equipment financing they need to grow and succeed. As a Risk Analyst, you'll support data-driven decision-making by analyzing portfolio performance, identifying trends, and... 
    Suggested

    ClickLease

    Manassas, VA
    15 hours ago
  •  ...motivated, career and customer-oriented Cyber Incident Response Analyst to join our team in McLean, VA .  This role supports our...  ...Qualifications: High school diploma Knowledge of cybersecurity principles, incident detection, analysis, and response methodologies... 
    Shift work
    Night shift
    Day shift
    Afternoon shift

    MANTECH

    McLean, VA
    15 hours ago
  •  ...Cybersecurity Analyst McLean, VA Top Secret/SCI Polygraph Career Level not specified Salary not specified Cybersecurity Analyst McClean, VA TS/SCI with Poly Bridge Core provides high energy, unified teams; technology integration experience; and innovative approaches... 
    Shift work
    Night shift
    Weekend work
    Afternoon shift

    Navstar

    McLean, VA
    1 day ago
  •  ...Overview Cybersecurity Analyst – McLean, VA. TS/SCI clearance with polygraph required. Bridge Core is seeking a skilled analyst to support government agencies in cyberspace. Responsibilities We are seeking a skilled and motivated Cybersecurity Analyst to join our team.... 
    Shift work
    Night shift
    Afternoon shift

    Bridge Core

    McLean, VA
    4 days ago
  • $114.6k - $190.2k

     ...groundbreaking tech. Explore thrilling projects in Digital Transformation, Cybersecurity, IT, Data Analytics and Software Development. Elevate your...  ...a motivated, career and customer-oriented Cybersecurity Analyst - Evenings to join our team in Tysons, VA The... 
    Hourly pay
    Contract work
    Temporary work
    Work experience placement
    Work at office
    Local area
    Remote work
    Shift work
    Afternoon shift

    ManTech International Corporation

    McLean, VA
    4 days ago
  •  ...Cyber Security Analyst Location: McLean, Virginia ***Clearance Requirement: TS/SCI w/ Full Scope Polygraph*** Position Description...  ...Incident Response Team, Security Operations Center, or other Cybersecurity position. Experience with using SIEM systems, network security... 
    Shift work
    Night shift
    Day shift
    Afternoon shift

    Signature Federal Systems , LLC

    McLean, VA
    1 day ago
  •  ...Bridge Core (BCore) is seeking a Cybersecurity Analyst in McLean, VA. The ideal candidate should have at least 1 year of experience in cybersecurity roles and possess an active TS/SCI clearance with polygraph. Responsibilities include utilizing SIEM systems for threat... 
    Shift work
    Afternoon shift

    Bridge Core

    McLean, VA
    15 hours ago
  • Job Description ECS is seeking a Cybersecurity Analyst (CDAP) - Journeyman to support the Army National Guard (ARNG) Enterprise Network Operations...  ...user activity, insider threat indicators, and high-risk behavioral patterns across ARNG enterprise environments. The... 
    Contract work
    Local area

    ECS

    Fairfax, VA
    4 days ago
  • Job Description Position Summary ECS is seeking a Cybersecurity Threat Analyst - Journeyman to support the Army National Guard (ARNG) Enterprise Network...  ...threats, correlating security telemetry, identifying risk trends, and producing findings that strengthen proactive cyber... 
    Contract work
    Local area

    ECS

    Fairfax, VA
    15 hours ago
  • Job Description Position Summary: ECS is seeking a Cybersecurity Analyst (CDAP) - Senior to support the Army National Guard (ARNG) Enterprise Network Operations and Cybersecurity Support (ENOCS) program. This position supports Task 3 — Cybersecurity Operations Support,... 
    Contract work
    Local area

    ECS

    Fairfax, VA
    3 days ago
  • ECS is seeking a Cybersecurity Analyst (CDAP) - Journeyman to support the Army National Guard's cybersecurity program. The role involves developing analytic rules to detect insider threats and coordinating with multiple security teams for incident response and analysis.... 

    ECS

    Fairfax, VA
    4 days ago
  • Job Description ECS is seeking an Operational Technology Cybersecurity Analyst - Journeyman to support the Army National Guard (ARNG) Enterprise...  ...Document cybersecurity findings, operational impacts, and risk implications, and support mitigation tracking, remediation validation... 
    Contract work
    Local area

    ECS

    Fairfax, VA
    2 days ago
  • $67.3k - $94.2k

     ...Risk & Controls Analyst Category: Cyber Security Main location: United States, Various Position ID: J0626-1135 Employment Type...  ...Education: ?Bachelor's degree in Information Technology, Cybersecurity, Risk Management, Accounting, Business, or a related field... 
    Full time
    Local area

    CGI Technologies and Solutions, Inc.

    Fairfax, VA
    1 day ago
  • $74.8k - $130.9k

     ...talent and redefine what's possible. Job Description: Risk Analyst Parsons is seeking a Risk Analyst to become a key member...  ...combining unique technologies with deep domain expertise across cybersecurity, missile defense, space, connected infrastructure,... 
    Contract work
    For subcontractor
    Local area
    Worldwide
    Flexible hours

    Parsons Corporation

    Centreville, VA
    3 days ago
  •  ...Senior Risk Analyst Immediate need for a talented Senior Risk Analyst with experience in the Banking & Financial Industry. This is a 06+ Months Contract opportunity with long-term potential and is located in McLean, VA. Please review the job description below. Key... 
    Contract work
    Immediate start

    Pyramid Consulting

    McLean, VA
    3 days ago
  • $104.8k - $192.2k

     ...world. Government and Public Sector – Technology Consulting - Cybersecurity – Penetration Tester – Senior From strategy to execution,...  ...attack paths to demonstrate realistic business and mission risk Perform manual validation of vulnerabilities identified through... 
    For contractors
    Work experience placement
    Summer holiday
    Work at office
    Local area
    Flexible hours

    EY

    McLean, VA
    2 days ago
  • $86.8k - $198k

     ...Risk Management Analyst, Lead The Opportunity: Manage the application of analytical risk management principles that enable organizations to achieve mission assurance by preparing for, preventing, mitigating, responding to and recovering from emergencies. Apply... 
    Full time
    Contract work
    Part time
    Work at office
    Local area
    Remote work

    BOOZ, ALLEN & HAMILTON, INC.

    Fairfax, VA
    15 hours ago
  •  ...and education. Come and experience your future! Classified Cybersecurity Leaders will secure life saving products and critical state of...  ...with internal LM and customer security requirements, primarily Risk Management Framework (RMF) to include Continuous Monitoring, Plan... 
    Full time
    Work at office
    Remote work
    Relocation
    Flexible hours
    Shift work
    3 days per week

    Lockheed Martin - US

    Manassas, VA
    8 days ago
  •  ...Methodology and Unified Facilities Criteria (UFC) 4-010-06, Cybersecurity of Facility-Related Control Systems. Assist in the...  ...alongside other cybersecurity engineers and Risk Management Framework (RMF) analysts. Additional Preferred Qualifications: · 5+ years... 

    Marathon TS

    McLean, VA
    4 days ago
  •  ...ensuring that day-to-day IT operations run smoothly. You will serve as the owner accountable for audits, security controls, and IT risk, while partnering closely with Operations, Engineering, HR, and Finance. This role reports directly to the Head of Ops and will help... 
    Full time
    Shift work

    Insight Global

    McLean, VA
    2 days ago
  • $85k - $141k

    ## Cybersecurity ConsultantApplylocations: US - VA, McLean: US - MD, Bethesdatime type: Full timeposted on: Posted Yesterdayjob requisition...  ...to Obtain Public Trust**What You Will Do:*** Lead cyber risk management efforts across a portfolio of client applications.*... 
    Temporary work
    Flexible hours

    Dovel Technologies

    McLean, VA
    4 days ago
  • $27 per hour

     ...offering a Consultant Development Program aimed at developing future Cybersecurity professionals by providing immersive training and hands-on...  ...activities related to Information Security, Compliance, and Risk Management. The role requires a Bachelor's degree and a... 
    Hourly pay
    Internship

    Medium

    Fairfax, VA
    4 days ago
  • Medium is offering a Consultant Development Program that provides a paid internship to develop skills in cybersecurity and compliance. Located in Fairfax, VA, and Irvine, CA, the program focuses on delivering project support within various information security practices... 
    Internship

    Medium

    Fairfax, VA
    4 days ago
  • Tevora in Fairfax is offering a Consultant Development Program designed to train participants in Cybersecurity and Information Security. This immersive paid internship spans from October 5th to December 11th and aims to equip interns with essential technical and professional... 
    Internship

    Tevora

    Fairfax, VA
    4 days ago
  • Tevora, located in Fairfax, VA, is offering a Consultant Development Program for aspiring cybersecurity professionals. This immersive paid internship will equip interns with the essential technical and professional skills needed to launch their careers as Information Security... 
    Internship

    Tevora

    Fairfax, VA
    4 days ago
  • $117.3k - $133.9k

     ...Principal, Risk Specialist Does the idea of working with and guiding professional, highly trained accountants, product, technology and other professionals inspire you? Are you a professional with a demonstrated ability to guide and support complex projects? Would you... 
    Full time
    Part time
    Local area

    Capital One

    McLean, VA
    4 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Cybersecurity Risk Analyst. Be the first to apply!