Supply Chain Risk Management – Scrm – Analyst
| Company | Agile Defense |
|---|---|
| Location | Ashburn, VA, USA |
| Salary | $Not Provided – $Not Provided |
| Type | Full-Time |
| Degrees | Bachelor’s |
| Experience Level | Senior |
Requirements
- A Bachelor’s degree and 8 years of applicable experience is required, or a High School diploma + 9 years of applicable experience
- Clearance: Employees are required to successfully complete a Background Investigation to support this program
- Professional writing, editing, and sourcing skills are mandatory in order to be successful in the position
- Ability to apply extensive knowledge of grammar, punctuation, and corporate writing standards in order to edit reports
- Ability to handle multiple tasks and adjust to changing priorities as needed
- Strong attention to details is required
- Past history developing policies and procedures for compliant procurement in a services environment
- Fundamental understanding of supplier quality management processes
- Strong understanding of Risk Management Framework (RMF)
- Strong understanding of NIST 800-161, NIST 800-30, NIST 800-37 or equivalent DoD policies/standards
Responsibilities
- Vulnerability due diligence assessments, Cybersecurity Maturity Model Certification, PMO and source code analysis
- Develop policies and procedures that support customer office and align to risk management framework
- Develop the foundational policies and processes to stand up the Cyber Risk Management Team within SOC
- Lead the development of supplier threat and vulnerability assessments related to risk and support change management efforts across the corporation
- Support category managers in developing risk assessments across various categories
- Draft and support all-source intelligence production in compliance with Tradecraft Standards
- Provide methods to properly communicate the risks applicable to stakeholders and senior management
- Create a holistic risk picture for the communications branch and provide briefings for senior management on the cyber risk posture of client
- Attend and participate in meetings, conferences, and working groups in support of the client
- Conduct risk, vulnerability, criticality assessments to prioritize supply chain vendors and their potential impact on client’s mission
- Assist the Government in conducting reviews and recommendations to aid the government in approving of risk acceptance memorandums, assist with the prioritization of POA&Ms, create risk profiles for all of the clients information systems, identify common gaps in the information system compliance to focus holistic funding in support of remediating security findings for multiple systems
Preferred Qualifications
- Experience in cyber government, and/or federal law enforcement
- Experience in Vulnerability scanning and analysis
- Experience in financial, CSP and FISMA audits