Developing an agency Information Security Risk Management Strategy in accordance with the latest released versions of NIST Special Publications (SPs) such as SP 800-37, Risk Management Framework for ...
Developing an agency Information Security Risk Management Strategy in accordance with the latest released versions of NIST Special Publications (SPs) such as SP 800-37, Risk Management Framework for ...
Developing an agency Information Security Risk Management Strategy in accordance with the latest released versions of NIST Special Publications (SPs) such as SP 800-37, Risk Management Framework for ...
Developing an agency Information Security Risk Management Strategy in accordance with the latest released versions of NIST Special Publications (SPs) such as SP 800-37, Risk Management Framework for ...
Risk Management Analyst with Security Clearance
Sterling, VA · On-site
$86K - $181K/yr
Up to 10% Type of Travel: Local * * * The Opportunity : We are seeking a detail-oriented and analytical Risks, Issues, and Opportunity Analyst to support our organization's risk management, issue ...
Risk Management Analyst with Security Clearance
Sterling, VA · On-site
$86K - $181K/yr
Up to 10% Type of Travel: Local * * * The Opportunity : We are seeking a detail-oriented and analytical Risks, Issues, and Opportunity Analyst to support our organization's risk management, issue ...
Risk Manager
Washington, DC · On-site
Job Summary Management Solutions is seeking a Risk Manager to support delivery of mission-critical ... services within a federal IT and cybersecurity environment. This role is client-facing and supports ...
Quick apply
Risk Manager
Washington, DC · On-site
Job Summary Management Solutions is seeking a Risk Manager to support delivery of mission-critical ... services within a federal IT and cybersecurity environment. This role is client-facing and supports ...
Risk Manager
Rockville, MD · On-site
Developing an agency Information Security Risk Management Strategy in accordance with the latest released versions of NIST Special Publications (SPs) such as SP 800-37, Risk Management Framework for ...
Risk Manager
Rockville, MD · On-site
Developing an agency Information Security Risk Management Strategy in accordance with the latest released versions of NIST Special Publications (SPs) such as SP 800-37, Risk Management Framework for ...
Role Summary TheDirector- ThirdParty Risk Management is aSecond Line of Defense (2LoD)leadership ... Reporting to the Head of Privacy & TPRM, this role is regarded as asubject matter expert in third ...
Role Summary TheDirector- ThirdParty Risk Management is aSecond Line of Defense (2LoD)leadership ... Reporting to the Head of Privacy & TPRM, this role is regarded as asubject matter expert in third ...
As part of the larger Operational Risk Management (ORM) organization, you will work with talented associates to provide oversight and effective challenge to ensure that our businesses effectively ...
As part of the larger Operational Risk Management (ORM) organization, you will work with talented associates to provide oversight and effective challenge to ensure that our businesses effectively ...
Enterprise Risk Management Specialist
$95K - $110K/yr
As a member of our team, you'll collaborate with leading experts to support our clients across the ... Own and manage product backlogs for risk technology solutions, including ServiceNow IRM and ...
Enterprise Risk Management Specialist
$95K - $110K/yr
As a member of our team, you'll collaborate with leading experts to support our clients across the ... Own and manage product backlogs for risk technology solutions, including ServiceNow IRM and ...
Senior Risk Manager with Security Clearance
Washington, DC · On-site
$94K - $198K/yr
This role requires a deep understanding of Risk Management and best practices. Responsibilities: * Proactively manage risks, address issues efficiently, and capitalize on potential opportunities ...
Senior Risk Manager with Security Clearance
Washington, DC · On-site
$94K - $198K/yr
This role requires a deep understanding of Risk Management and best practices. Responsibilities: * Proactively manage risks, address issues efficiently, and capitalize on potential opportunities ...
The Director of Program Management will oversee projects related to Joint All-Domain Command and ... risk management, schedule management, scope management, and budget management. • Mastery of ...
The Director of Program Management will oversee projects related to Joint All-Domain Command and ... risk management, schedule management, scope management, and budget management. • Mastery of ...
***REMOTE*** Sr Risk Management Consultant (RN/Registered Nurse) - Sinai Hospital
Baltimore, MD · On-site +1
$46.79 - $72.52/hr
The Senior Risk Management Consultant will provide a broad range of administrative, facilitation ... Partners with department leaders and Director to ensure execution of short and long term Risk ...
New
***REMOTE*** Sr Risk Management Consultant (RN/Registered Nurse) - Sinai Hospital
Baltimore, MD · On-site +1
$46.79 - $72.52/hr
The Senior Risk Management Consultant will provide a broad range of administrative, facilitation ... Partners with department leaders and Director to ensure execution of short and long term Risk ...
New
... awareness of the formal risk register, noting trends and potential delays in mitigation. Risk Planning & Mitigation • Develop risk management plans and strategies for the organization. • ...
... awareness of the formal risk register, noting trends and potential delays in mitigation. Risk Planning & Mitigation • Develop risk management plans and strategies for the organization. • ...
Enterprise Risk Management Specialist
$95K - $110K/yr
As a member of our team, you'll collaborate with leading experts to support our clients across the ... Own and manage product backlogs for risk technology solutions, including ServiceNow IRM and ...
Enterprise Risk Management Specialist
$95K - $110K/yr
As a member of our team, you'll collaborate with leading experts to support our clients across the ... Own and manage product backlogs for risk technology solutions, including ServiceNow IRM and ...
Enterprise Risk Management Specialist
$95K - $110K/yr
As a member of our team, you'll collaborate with leading experts to support our clients across the ... Own and manage product backlogs for risk technology solutions, including ServiceNow IRM and ...
Enterprise Risk Management Specialist
$95K - $110K/yr
As a member of our team, you'll collaborate with leading experts to support our clients across the ... Own and manage product backlogs for risk technology solutions, including ServiceNow IRM and ...
Enterprise Risk Management Specialist
Arlington, VA · On-site
$95K - $110K/yr
As a member of our team, you'll collaborate with leading experts to support our clients across the ... Own and manage product backlogs for risk technology solutions, including ServiceNow IRM and ...
Enterprise Risk Management Specialist
Arlington, VA · On-site
$95K - $110K/yr
As a member of our team, you'll collaborate with leading experts to support our clients across the ... Own and manage product backlogs for risk technology solutions, including ServiceNow IRM and ...
Advise Government leadership on emerging risks and opportunities Qualifications * 5+ years of risk management experience in DoD/Federal environments * Strong analytical and communication skills
Advise Government leadership on emerging risks and opportunities Qualifications * 5+ years of risk management experience in DoD/Federal environments * Strong analytical and communication skills
Project Risk Manager
Washington, DC · On-site
$55 - $80/hr
Must have proficiency in risk management processes and principles, along with expert-level knowledge of the Construction Risk Management as well Design phase risk management including planning phase.
Quick apply
Project Risk Manager
Washington, DC · On-site
$55 - $80/hr
Must have proficiency in risk management processes and principles, along with expert-level knowledge of the Construction Risk Management as well Design phase risk management including planning phase.
Advise Government leadership on emerging risks and opportunities Qualifications * 5+ years of risk management experience in DoD/Federal environments * Strong analytical and communication skills
Advise Government leadership on emerging risks and opportunities Qualifications * 5+ years of risk management experience in DoD/Federal environments * Strong analytical and communication skills
ProSidian Seeks a Risk Management Specialist | Compliance / Risk / Regulatory: Risk, Compliance ... Department of Energy, responsible for providing Direct loans, loan guarantees, credit assistance ...
ProSidian Seeks a Risk Management Specialist | Compliance / Risk / Regulatory: Risk, Compliance ... Department of Energy, responsible for providing Direct loans, loan guarantees, credit assistance ...
ProSidian Seeks a Risk Management Consultant | Compliance / Risk / Regulatory: Risk, Compliance ... Department of Energy, responsible for providing Direct loans, loan guarantees, credit assistance ...
Quick apply
ProSidian Seeks a Risk Management Consultant | Compliance / Risk / Regulatory: Risk, Compliance ... Department of Energy, responsible for providing Direct loans, loan guarantees, credit assistance ...
Director Of Risk Management information
See Silver Spring, MD salary details
$55.8K - $75.2K
6% of jobs
$75.2K - $94.5K
6% of jobs
$108.5K is the 25th percentile. Wages below this are outliers.
$94.5K - $113.9K
17% of jobs
$113.9K - $133.3K
16% of jobs
The median wage is $136.8K / yr.
$133.3K - $152.6K
23% of jobs
$163.3K is the 75th percentile. Wages above this are outliers.
$152.6K - $172K
11% of jobs
$172K - $191.3K
6% of jobs
$191.3K - $210.7K
4% of jobs
$210.7K - $230.1K
4% of jobs
$230.1K - $249.4K
2% of jobs
$249.4K - $268.8K
3% of jobs
$55.8K
$148K
$268.8K
How much do director of risk management jobs pay per year?
What is the highest paying risk management job?
What does a risk management director do?
What does a director of risk management make?
What is the difference between Director Of Risk Management vs Risk Analyst?
| Aspect | Director Of Risk Management | Risk Analyst |
|---|---|---|
| Credentials | Typically requires advanced degrees (e.g., MBA, Risk Management certifications) | Bachelor's degree in finance, risk management, or related field |
| Work Environment | Strategic leadership, overseeing risk policies and teams | Data analysis, risk assessment, supporting risk management strategies |
| Industry Usage | Used in large corporations, financial institutions, insurance companies | Common in finance, insurance, and corporate sectors |
The Director Of Risk Management focuses on strategic oversight and leadership in risk policies, while the Risk Analyst handles data analysis and risk assessment tasks. Both roles are essential in risk management but differ in scope and seniority.
How much does a head of risk management make?
Job description
CVP is seeking an Cybersecurity Risk Manager for a large government agency enterprise-level cybersecurity program. The Cybersecurity Risk Manager will work directly with the Cybersecurity Program Manager and the agency's CIO and CISO in cybersecurity tasks such as information security policy development and implementation; security compliance monitoring; security audit management; risk assessment; system authorization; security reporting; and other information security-related tasks.
Responsibilities- Identify, evaluate, and develop strategies for handling risks to reduce information security and privacy risk across the agency.
- Provide recommendations, guidance, planning, and implementation support for agency risk management activities and tools, and provide support as needed to enhance the agency's Information Security Program related to governance, optimizations, automation, and supporting tools.
- Developing an agency Information Security Risk Management Strategy in accordance with the latest released versions of NIST Special Publications (SPs) such as SP 800-37, Risk Management Framework for Information Systems and Organizations and SP 800-39, Managing Information Security Risk (as revised).
- Conducting an enterprise risk assessment and developing an agency Information Security Risk Assessment Report that addresses all findings from the assessment
- Developing an agency Privacy and Security Roadmap that recommends privacy and information security capabilities based on risks identified in the agency's Information Security Risk Assessment Report
- Developing an agency Information Security Risk Management Plan that addresses how the agency will implement and perform risk management activities regarding risk tolerance, risk assessment, risk response, risk monitoring, and risk capabilities
- Providing risk management guidance to the agency offices for A&A activities as required, ensuring continuous risk monitoring of information security control implementation effectiveness and required information security compliance requirements
- Support the Information Security and Assurance Office (ISAO) in implementing and overseeing the organization's information security risk management and security assessment and authorization (A&A) activities.
- Advise the agency on how best to tailor the revised A&A process to handle non-traditional technologies including, but not limited to, cloud, mobile, and Internet of Things.
- Provide the agency recommendations on how it can continuously monitor and assess the security posture of agency information systems over time and alert agency decision makers when an information system presents an increased risk or eminent threat to agency data and/or operations.
- Develop guidance, templates, other tools, and advice to the program offices to support their risk management and ATO activities.
- Provide risk management and information security continuous monitoring program implementation recommendations to program offices
- Track and review Plans of Actions and Milestones (POA&Ms) agency-wide to identify areas of risk as a result of unimplemented POA&Ms, a buildup of risk-based decisions, or other cross-cutting issues observed as a result of its risk management support.
- Track the A&A status for all divisions and programs that have information systems to validate they meet the requirements to protect the agency's data and operations.
- Develop the required artifacts to complete security accreditation packages for OCIO information systems and perform any required assessments, as requested. The Contractor shall provide oversight and advisory support to agency program office personnel for completion of information system A&A packages, as requested.
- Follow NIST Federal Information Processing Standards (FIPS) and Special Publications (SPs) to include, but not limited to, FIPS 199 and 200, SP 800-39, SP 800-37, SP 800-137, SP 800-60, SP 800-53, SP 800-53A, SP 800-34, SP 800-30, and SP 800-18. The Contractor shall comply with all agency IT security and Privacy policies and standards including, and the agency Privacy Impact Assessment (PIA) requirements and associated templates.
- Minimum of six years' experience in cybersecurity. 10+ years' experience is preferred.
- Minimum of six years' experience leading and delivering in FISMA-based and FedRAMP Assessment and Authorization (A&A) programs for comparably sized federal agencies and programs. Seven plus years' experience is preferred.
- Shall have at least one of the following industry-recognized certifications:
- Certified Information System Security Professional (CISSP)
- Certified Information Systems Auditor (CISA)
- Certified Information Security Manager (CISM)
- Certified in Risk and Information Systems Control (CRISC)
- Familiarity with Information Technology Infrastructure Library (ITIL) Foundation Compliance (GRC) tool, continuous monitoring, and vulnerability management tools or services. Note: NIH currently uses CSAM.
- Demonstrated experience managing cybersecurity teams including personnel, workload, priorities, scheduling, and risks.
- Proven experience bringing innovative approaches to help reduce the FISMA workload and time to authorization/reauthorization through such methods as boundary consolidation, common control identification and re-use, automation, assessment readiness reviews, and digital transformation.
Desired Skills
- PMP Certification
- CISSP Certification
- Experience with Security Assessment Tools (Tenable Nessus, DBProtect, Wireshark, WebInspect)
- NIH/HHS experience
Location
- Rockville, MD (Hybrid)
Salary Band: $155-165k (Depending on experience)
About CVP
CVP is an award-winning healthcare and next-gen technology and consulting services firm solving critical problems for healthcare, national security, and public sector clients. We help organizations achieve lasting transformation.CVP is an Equal Opportunity Employer dedicated to actively recruiting individuals and providing advancement opportunities based on merit and legitimate job qualifications. We ensure that all associates receive equal opportunities based on their personal qualifications and job requirements. CVP strictly prohibits any form of discrimination or harassment.At CVP, we cultivate a work environment that encourages fairness, teamwork, and respect among all associated. We are committed to maintaining a workplace where everyone can grow both personally and professionally.
Employment Type: FULL_TIMEAbout Customer Value Partners
Sourced by ZipRecruiter
Company size
51 - 200 Employees
Headquarters location
Fairfax, VA, US
Year founded
2002