1

Director Third Party Risk Management Jobs in Reston, VA

You understand the processes, pain points, and personas in third party management, supply chain management, procurement, risk, and compliance * You lead inspirational, tailored presentations in a ...

Management, Internal Audit, Third Party Risk Management, etc. Basic Qualifications: * Bachelor's Degree in Business Or Marketing. * 4+ years of experience in Financial Services, Marketing, Compliance ...

Management, Internal Audit, Third Party Risk Management, etc. Basic Qualifications: * Bachelor's Degree in Business Or Marketing. * 4+ years of experience in Financial Services, Marketing, Compliance ...

Management, Internal Audit, Third Party Risk Management, etc. Basic Qualifications: * Bachelor's Degree in Business Or Marketing. * 4+ years of experience in Financial Services, Marketing, Compliance ...

You understand the processes, pain points, and personas in third party management, supply chain management, procurement, risk, and compliance * You lead inspirational, tailored presentations in a ...

next page

Showing results 1-20

Director Third Party Risk Management information

See Reston, VA salary details

$56.2K

$149K

$270.5K

How much do director third party risk management jobs pay per year?

As of Jul 13, 2026, the average yearly pay for director third party risk management in Reston, VA is $148,963.00, according to ZipRecruiter salary data. Most workers in this role earn between $109,800.00 and $174,300.00 per year, depending on experience, location, and employer.

What are some of the key challenges a Director of Third Party Risk Management faces when implementing risk assessment frameworks across a large organization?

One of the main challenges is ensuring consistency and thoroughness in risk assessments across diverse business units and geographies, each with varying levels of vendor complexity and regulatory requirements. Directors often need to balance rigorous risk controls with the need for operational efficiency, which requires strong communication and influence skills to gain stakeholder buy-in. Additionally, keeping up with evolving third-party risks, such as cybersecurity threats and supply chain disruptions, demands continuous process improvement and cross-functional collaboration with IT, legal, and procurement teams.

What does a Director of Third Party Risk Management do?

A Director of Third Party Risk Management is responsible for overseeing an organization's approach to identifying, assessing, and mitigating risks associated with its external partners, vendors, and suppliers. This role involves developing risk assessment frameworks, ensuring compliance with relevant regulations, and collaborating with internal teams to address any third-party issues that may affect the business. The director also leads the creation and execution of policies and procedures to manage third-party risks effectively, balancing operational needs with regulatory requirements.

What is the difference between Director Third Party Risk Management vs Vendor Risk Manager?

AspectDirector Third Party Risk ManagementVendor Risk Manager
CredentialsTypically requires advanced degrees and certifications like CTPRP or CRISCOften requires certifications such as CTPRP, CRISC, or vendor-specific training
Work EnvironmentStrategic leadership, overseeing multiple teams and enterprise-wide risk policiesOperational focus, managing vendor assessments and risk mitigation activities
Industry UsageUsed in large organizations across finance, healthcare, and technology sectorsCommon in organizations with extensive vendor networks, especially in finance and IT

The main difference is that the Director Third Party Risk Management holds a strategic, leadership role overseeing enterprise-wide third-party risks, while the Vendor Risk Manager focuses on operational vendor assessments and risk mitigation. Both roles require similar certifications but differ in scope and level of responsibility.

What are the key skills and qualifications needed to thrive as a Director of Third Party Risk Management, and why are they important?

To thrive as a Director of Third Party Risk Management, you typically need expertise in risk assessment, compliance, vendor management, and a relevant degree in business, finance, or a related field. Familiarity with risk management frameworks, regulatory requirements, and tools like GRC (Governance, Risk, and Compliance) platforms or vendor risk assessment software is essential. Exceptional leadership, strategic thinking, and negotiation skills help manage cross-functional teams and build strong relationships with vendors. These competencies are crucial to effectively mitigate third-party risks, ensure regulatory compliance, and protect the organization’s reputation and operations.
What are popular job titles related to Director Third Party Risk Management jobs in Reston, VA? For Director Third Party Risk Management jobs in Reston, VA, the most frequently searched job titles are:
What job categories do people searching Director Third Party Risk Management jobs in Reston, VA look for? The top searched job categories for Director Third Party Risk Management jobs in Reston, VA are:
What cities near Reston, VA are hiring for Director Third Party Risk Management jobs? Cities near Reston, VA with the most Director Third Party Risk Management job openings:
GRC Lead / Cyber Risk Manager

GRC Lead / Cyber Risk Manager

CyberLinx Solutions LLC

Washington, DC • On-site

$125K - $169K/yr

Other

Re-posted 5 days ago


Job description

CyberLinx Solutions LLC is seeking a forward thinking Cybersecurity GRC Lead / Cyber Risk Manager responsible for leading the organization's cybersecurity governance, risk, and compliance (GRC) program. This role oversees enterprise risk assessments, regulatory compliance, policy development, and security control implementation aligned to industry frameworks such as NIST CSF and NIST RMF.The ideal candidate will serve as a strategic advisor to leadership, ensuring cybersecurity risks are identified, assessed, and managed in alignment with business objectives and regulatory requirements. Key Responsibilities: Governance & Program Leadership Lead and manage the enterprise GRC program, including policies, standards, and procedures Serve as the primary advisor on cybersecurity risk and compliance matters Align cybersecurity strategy with business objectives and regulatory requirements Provide executive-level reporting on risk posture, compliance status, and remediation efforts Risk Management: Conduct enterprise and system-level cybersecurity risk assessments Develop and maintain risk registers aligned to NIST SP 800-53 and NIST SP 800-171 Define risk tolerance, scoring methodologies, and mitigation strategies Perform gap assessments and maturity evaluations using NIST CSF Compliance & Audit Ensure compliance with federal, state, and industry regulations for NIST RMF, and FISMA as applicable

Lead audit readiness efforts and coordinate internal/external audits Develop Plans of Action & Milestones (POA&M) and track remediation activities Maintain documentation supporting Authority to Operate (ATO) processes Security Controls & Frameworks Oversee implementation and validation of security controls Map controls across frameworks (NIST CSF, NIST 800-53, ISO 27001) Collaborate with technical teams to ensure control effectiveness Third-Party Risk Management Evaluate vendor and third-party cybersecurity risks Conduct security assessments and due diligence reviews Ensure contractual security and compliance requirements are met Required Qualifications: Bachelor's degree in Cybersecurity, Information Technology, Risk Management, or related field 8+ years of experience in cybersecurity, with at least 3-5 years in GRC or risk management leadership roles Strong knowledge of: NIST Cybersecurity Framework (CSF) NIST Risk Management Framework (RMF) NIST SP 800-53 / 800-171 Experience supporting audits, compliance programs, and regulatory frameworks Proven ability to lead cross-functional teams and communicate with executive leadership