1

Cybersecurity Governance Risk Compliance Jobs in Reston, VA

OA Analyst

Arlington, VA · On-site

$85K - $105K/yr

Argo Cyber Systems is seeking an OA Analyst to support cybersecurity governance, risk, compliance, and modernization activities in federal environments. The selected candidate will work ...

Argo Cyber Systems is seeking an OA Analyst to support cybersecurity governance, risk, compliance, and modernization activities in federal environments. The selected candidate will work ...

next page

Showing results 1-20

Cybersecurity Governance Risk Compliance information

See Reston, VA salary details

$23.9K

$118.3K

$156.6K

How much do cybersecurity governance risk compliance jobs pay per year?

As of Jul 15, 2026, the average yearly pay for cybersecurity governance risk compliance in Reston, VA is $118,293.00, according to ZipRecruiter salary data. Most workers in this role earn between $104,000.00 and $134,200.00 per year, depending on experience, location, and employer.

What is the difference between Cybersecurity Governance Risk Compliance vs Cybersecurity Analyst?

AspectCybersecurity Governance Risk ComplianceCybersecurity Analyst
CertificationsCISA, CISSP, CISMCompTIA Security+, CISSP, CEH
Work EnvironmentPolicy development, audits, compliance frameworksMonitoring security systems, incident response
Employer & Industry UsageOrganizations with compliance needs, regulatory bodiesIT security teams, cybersecurity firms

While Cybersecurity Governance Risk Compliance focuses on establishing policies, ensuring regulatory adherence, and managing risks, Cybersecurity Analysts primarily monitor security systems, analyze threats, and respond to incidents. Both roles are essential in a comprehensive cybersecurity strategy but differ in scope and daily responsibilities.

What are the key skills and qualifications needed to thrive as a Cybersecurity Governance, Risk, and Compliance (GRC) professional, and why are they important?

To thrive as a Cybersecurity GRC professional, you need a solid understanding of information security frameworks, risk management principles, and regulatory compliance, often supported by a degree in cybersecurity or related fields. Familiarity with tools like GRC platforms (e.g., Archer, ServiceNow), and certifications such as CISSP, CISM, or CRISC are highly valued. Strong analytical thinking, attention to detail, and effective communication skills help you interpret regulations and collaborate with stakeholders. These skills ensure organizations can manage cybersecurity risks proactively while meeting regulatory and industry standards.

What are some typical challenges faced by professionals in Cybersecurity Governance, Risk, and Compliance (GRC) roles?

Professionals in Cybersecurity GRC roles often navigate the challenge of keeping up with rapidly changing regulatory requirements while ensuring company policies align with both business objectives and security best practices. Balancing the need for robust security controls with operational efficiency, educating non-technical stakeholders about risk, and managing audits are common aspects of the job. Additionally, GRC professionals frequently collaborate with IT, legal, and business teams to ensure a cohesive approach to risk management and compliance. This dynamic environment requires strong communication skills, adaptability, and a commitment to continuous learning.

What is Cybersecurity Governance, Risk, and Compliance (GRC)?

Cybersecurity Governance, Risk, and Compliance (GRC) refers to a framework used by organizations to align their IT and security strategies with business objectives, manage risks, and ensure compliance with laws and regulations. Governance involves setting policies and procedures, risk focuses on identifying and addressing threats, and compliance ensures adherence to required standards. Professionals in this field help organizations protect sensitive data, avoid regulatory penalties, and build trust with stakeholders. GRC is essential for maintaining effective cybersecurity and demonstrating due diligence.
What are popular job titles related to Cybersecurity Governance Risk Compliance jobs in Reston, VA? For Cybersecurity Governance Risk Compliance jobs in Reston, VA, the most frequently searched job titles are:
What job categories do people searching Cybersecurity Governance Risk Compliance jobs in Reston, VA look for? The top searched job categories for Cybersecurity Governance Risk Compliance jobs in Reston, VA are:
What cities near Reston, VA are hiring for Cybersecurity Governance Risk Compliance jobs? Cities near Reston, VA with the most Cybersecurity Governance Risk Compliance job openings:
Infographic showing various Cybersecurity Governance Risk Compliance job openings in Reston, VA as of July 2026, with employment types broken down into 1% As Needed, 82% Full Time, 12% Part Time, 1% Temporary, and 4% Contract. Highlights an 93% Physical, 2% Hybrid, and 5% Remote job distribution, with an average salary of $118,293 per year, or $56.9 per hour.
GRC Lead / Cyber Risk Manager

GRC Lead / Cyber Risk Manager

CyberLinx Solutions LLC

Washington, DC

$125K - $169K/yr

Other

Re-posted 7 days ago


Job description

CyberLinx Solutions LLC is seeking a forward thinking Cybersecurity GRC Lead / Cyber Risk Manager responsible for leading the organization's cybersecurity governance, risk, and compliance (GRC) program. This role oversees enterprise risk assessments, regulatory compliance, policy development, and security control implementation aligned to industry frameworks such as NIST CSF and NIST RMF.The ideal candidate will serve as a strategic advisor to leadership, ensuring cybersecurity risks are identified, assessed, and managed in alignment with business objectives and regulatory requirements. Key Responsibilities: Governance & Program Leadership Lead and manage the enterprise GRC program, including policies, standards, and procedures Serve as the primary advisor on cybersecurity risk and compliance matters Align cybersecurity strategy with business objectives and regulatory requirements Provide executive-level reporting on risk posture, compliance status, and remediation efforts Risk Management: Conduct enterprise and system-level cybersecurity risk assessments Develop and maintain risk registers aligned to NIST SP 800-53 and NIST SP 800-171 Define risk tolerance, scoring methodologies, and mitigation strategies Perform gap assessments and maturity evaluations using NIST CSF Compliance & Audit Ensure compliance with federal, state, and industry regulations for NIST RMF, and FISMA as applicable

Lead audit readiness efforts and coordinate internal/external audits Develop Plans of Action & Milestones (POA&M) and track remediation activities Maintain documentation supporting Authority to Operate (ATO) processes Security Controls & Frameworks Oversee implementation and validation of security controls Map controls across frameworks (NIST CSF, NIST 800-53, ISO 27001) Collaborate with technical teams to ensure control effectiveness Third-Party Risk Management Evaluate vendor and third-party cybersecurity risks Conduct security assessments and due diligence reviews Ensure contractual security and compliance requirements are met Required Qualifications: Bachelor's degree in Cybersecurity, Information Technology, Risk Management, or related field 8+ years of experience in cybersecurity, with at least 3-5 years in GRC or risk management leadership roles Strong knowledge of: NIST Cybersecurity Framework (CSF) NIST Risk Management Framework (RMF) NIST SP 800-53 / 800-171 Experience supporting audits, compliance programs, and regulatory frameworks Proven ability to lead cross-functional teams and communicate with executive leadership