ZipRecruiter

Log In

1

Third Party Risk Jobs in Virginia (NOW HIRING)

TriOptus LLC

Project Manager

Richmond, VA · On-site

Manage brand new project within ESM that will involve overseeing third party remediation efforts to ensure compliance with Third Party Risk Management and Spend policies by policy compliance date.

Exiger

Enterprise Customer Success Manager

Mclean, VA · Remote

Familiarity with third-party risk management, supply chain risk, or compliance technology preferred. * Hands-on experience with Customer Success platforms like Gainsight or Planhat. * Exceptional ...

Exiger

Government Pre-Sales Engineer

Mclean, VA · On-site

Our Government business continues to grow rapidly as agencies turn to Exiger to bring clarity, trust, and defensibility to supply chain, third-party, and software risk decisions. We are hiring a ...

Freddie Mac

Portfolio Risk Lead - Servicing

Mclean, VA · On-site

Attend Seller/Servicer Forum and Third-Party Risk oversight meetings * Monitor Transfers of Servicing (TOS) and VPC transfers * Participation in Contingency planning activities with the business ...

Truist

Technology Risk Senior Specialist

Richmond, VA

$97.50K/yr

... Third Party Risk Management (TPRM) team and Risk Type Owners within Information Risk Oversight (IRO) to ensure balanced and coordinated coverage of risks generated or managed by TD&O Cost and ...

S&P Global

Director IT Audit (Mobility)

Richmond, VA

Stay ahead of the evolving technology risk landscape including AI governance, cloud security, ransomware, third-party risk, and regulatory developments affecting IT controls. * Build and lead a high ...

next page

Showing results 1-20

People also search for

All JobsThird Party Risk JobsThird Party Risk Jobs in Virginia

Third Party Risk information

See Virginia salary details

$14

$30

$73

How much do third party risk jobs pay per hour?

As of May 31, 2026, the average hourly pay for third party risk in Virginia is $30.08, according to ZipRecruiter salary data. Most workers in this role earn between $19.33 and $38.37 per hour, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive as a Third Party Risk professional, and why are they important?

To thrive as a Third Party Risk professional, you need a solid understanding of risk management principles, vendor assessment processes, and relevant regulatory frameworks, often supported by a degree in business, finance, or a related field. Familiarity with risk assessment tools, GRC (governance, risk, and compliance) software, and certifications such as Certified Third Party Risk Professional (CTPRP) are common requirements. Strong analytical thinking, attention to detail, and effective communication skills help you evaluate vendors and influence stakeholders. These skills are vital for identifying, mitigating, and managing risks associated with third-party relationships to protect organizational integrity and compliance.

What are some common challenges faced in a Third Party Risk role and how can they be managed?

Professionals in Third Party Risk often encounter challenges such as managing a large and diverse vendor portfolio, staying updated on regulatory requirements, and ensuring timely risk assessments. Navigating communication gaps between internal stakeholders and external vendors can also be demanding. These challenges are typically managed by implementing robust risk assessment frameworks, fostering cross-functional collaboration, and leveraging technology to streamline due diligence and monitoring processes. Continuous training and clear communication protocols further help in addressing these complexities and maintaining effective third-party risk management.

What is Third Party Risk?

Third Party Risk refers to the potential risks and vulnerabilities an organization faces when working with external vendors, suppliers, or service providers. These risks can include data breaches, compliance violations, operational disruptions, and reputational damage resulting from the actions or failures of third parties. Managing third party risk involves identifying, assessing, monitoring, and mitigating these risks to protect the organization’s interests and ensure regulatory compliance.

What is the difference between Third Party Risk vs Vendor Risk Management?

AspectThird Party RiskVendor Risk Management
FocusAssessing risks from all external entities, including vendors, partners, and contractorsEvaluating risks specifically associated with third-party vendors
CredentialsRisk management certifications, compliance knowledgeVendor management certifications, procurement experience
Work EnvironmentCorporate risk teams, compliance departmentsProcurement, vendor management teams
Industry UsageFinancial, healthcare, technology sectorsPrimarily in supply chain and procurement functions

Third Party Risk encompasses a broader scope, including all external entities, while Vendor Risk Management specifically focuses on vendors. Both roles require risk assessment skills and industry knowledge, but Third Party Risk roles often involve broader compliance and strategic oversight.

What are the most commonly searched types of Third Party Risk jobs in Virginia? The most popular types of Third Party Risk jobs in Virginia are:
What are popular job titles related to Third Party Risk jobs in Virginia? For Third Party Risk jobs in Virginia, the most frequently searched job titles are:
What job categories do people searching Third Party Risk jobs in Virginia look for? The top searched job categories for Third Party Risk jobs in Virginia are:
What cities in Virginia are hiring for Third Party Risk jobs? Cities in Virginia with the most Third Party Risk job openings:
Third Party Risk jobs near you
Infographic showing various Third Party Risk job openings in Virginia as of May 2026, with employment types broken down into 1% As Needed, 89% Full Time, 7% Part Time, and 3% Contract. Highlights an 90% Physical, 2% Hybrid, and 8% Remote job distribution, with an average salary of $62,558 per year, or $30.1 per hour.
Governance, Risk, and Compliance (GRC) Analyst

Governance, Risk, and Compliance (GRC) Analyst

EdgeConneX

Herndon, VA • On-site

Full-time

Posted 5 days ago

Job description

Led by an experienced management team and supported by a strong investor group, including large and experienced institutions and strategic partners, EdgeConneX offers a dynamic, fast-paced work environment where we are bringing flexibility, proximity, power, and connectivity to some of the world's key businesses. With major offices in Herndon, Denver, and Amsterdam, we have a global footprint and a unified team of employees committed to providing a premier customer experience and delivering the full spectrum of data center solutions, from core to edge, like no other data center provider can do.
Focused on driving innovation and helping our customers define and deliver their own unique vision for the Edge, at any scale, in any market worldwide, for any requirement, we are building tomorrow's data center infrastructure, today for some of the world's most demanding Network, Content, and Cloud customers.
We are seeking a highly motivated and experienced Governance, Risk, and Compliance (GRC) Analyst to join our team. The ideal candidate will have at least five years of experience in GRC or IT risk, a bachelor's degree or higher in a related field, and professional certifications in GRC or cybersecurity. As a GRC Analyst, you will play a pivotal role in ensuring our organization adheres to regulatory requirements, manage risks effectively, and maintain robust governance practices for industry standards, frameworks and international data protection law.
Responsibilities:
  • Develop, implement, and maintain governance, risk, and compliance frameworks, policies, standards and procedures.
  • Conduct risk assessments and analyze potential threats to the organization's information systems and business operations.
  • Monitor compliance with internal policies and external regulatory requirements (e.g., NIS2, DORA, ISO27001, AICPA Trust Principles, NIST, CIS, GDPR, SOX, HIPAA).
  • Track changes to regional data protection law in the regions where EdgeConneX operates (APAC, EU, North America and South America)
  • Collaborate with cross-functional teams to identify, assess, and mitigate risks across the organization.
  • Maintain risk registers, compliance metrics, and reporting dashboards
  • Support third-party risk management and vendor security assessments
  • Prepare and present regular reports on risk management activities, compliance status, and remediation efforts to management.
  • Support internal and external audits, including gathering documentation and facilitating audit processes.
  • Stay up to date with changes in relevant laws, regulations, and industry best practices.
  • Assist in the development and delivery of training programs related to governance, risk, and compliance topics.
  • Contribute to continuous improvement of GRC processes and tooling

Required education & experience:
  • Bachelor's degree or higher in Information Security, Computer Science, Business Administration, or a related field.
  • Minimum of 5 years of professional experience in governance, risk, and compliance or a related discipline.
  • Professional certifications such as CISA, CRISC, CISSP, CISM, ISO27001LA or similar are required.
  • Strong understanding of regulatory requirements and frameworks (e.g., ISO 27001, NIST, PCI DSS).
  • Risk assessment methodologies and control testing
  • Excellent analytical and problem-solving skills.
  • Strong communication and interpersonal skills, with the ability to work collaboratively across departments.
  • Experience with:
    • Policy development and lifecycle management
    • Third-party/vendor risk assessments
    • GRC tools and risk management platforms (e.g., DRATA, VANTA, Archer, OneTrust)
  • Detail-oriented and highly organized, with a proactive approach to identifying and managing risks.

Preferred experience:
  • Experience with GRC software platforms and tools.
  • Project management experience or certification.
  • Experience in a regulated industry (e.g., datacenter, finance, technology).
  • Ability to train and mentor junior staff.

EdgeConneX believes inclusion - of thought, backgrounds and experiences - affects all that we do, from our employees to the solutions we deliver. Our goal is to create an environment where embracing differences helps deepen the lives and work experience of our employees, enhances our innovation and creativity, and enriches our involvement in our communities. EdgeConneX is an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, age, national origin or ancestry, physical or mental disability, as well as any other category protected by applicable federal, state, or local laws.
EdgeConneX offers a competitive benefits package.
For more information on how we process your data, visit our Data Privacy Policy here.

Apply