Sr. Cyber Supply Chain Risk Management Analyst
WISC Enterprises, LLC
Cyber Supply Chain Risk Management Analyst
We are seeking a technically proficient Cyber Supply Chain Risk Management (C-SCRM) professional to support U.S. Government stakeholders. The C-SCRM Analyst is responsible for identifying, assessing, and mitigating risks associated with the distributed and interconnected nature of Information and Communications Technology and Operational Technology (ICT/OT) product and service supply chains throughout their entire lifecycle. This includes protecting against malicious functionality, counterfeit components, foreign influence, and vulnerabilities derived from poor manufacturing.
Responsibilities
- Risk Assessments: Evaluate vendor and supplier security postures (third-party/fourth-party) using frameworks such as NIST SP 800-161.
- Threat Analysis: Monitor, analyze, and report on supply chain threats (counterfeit, malicious insertion, Tampering).
- Policy Governance & Compliance: Lead the development, formal documentation, and maintenance of organizational C-SCRM policies, Standard Operating Procedures (SOPs), and implementation plans; concurrently monitor and enforce policy compliance across the enterprise by conducting systematic audits and risk assessments to ensure alignment with federal mandates such as NIST SP 800-161, DFARS, FAR, and Executive Order requirements.
- Acquisition Support: Integrate C-SCRM controls into procurement documents, RFPs, and contracts, working alongside acquisition teams.
- Technical Evaluation: Perform Software Bill of Materials (SBOM) and Hardware Bill of Materials (HBOM) analysis to identify components and vulnerabilities.
- Operationalization: Develop and maintain C-SCRM policies, procedures, and Standard Operating Procedures (SOPs).
- Incident Response: Support incident response teams when compromised products are identified.
- Reporting: Create and present risk briefing materials, dashboards, and metrics to senior leadership.
Required Qualifications
- Education & Experience: Bachelor's degree in Computer Science, Information Systems, Cyber Security, or Supply Chain Management, plus 2-8+ years of experience in cyber risk or supply chain management.
- Frameworks: In-depth knowledge of NIST SP 800-161r1-upd1, NIST Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations, and Risk Management Framework (RMF).
- Technical Skills: Experience implementing NIST and/or DoD C-SCRM policies. Familiarity with C-SCRM/Third-Party Risk Management tools such as Exiger and eMAS
- Security clearance: TS/SCI with Poly
Desired Qualifications
- Certifications: CISSP, CISM, CRISC, or C-SCRM certification.
- Task Management: Experience with DoD/IC/NGA task management system (e.g. CATMS, NCERTS)
- Domain Expertise: DoW Cybersecurity Supply Chain Risk Management.
- Communications: Strong written and verbal communication skills
- Professional Standard: Ability to execute complex workflows under general direction. Comfortable in an independent work environment. Self-directed.
Vacancy posted 4 days ago
Similar jobs that could be interesting for youBased on the Sr. Cyber Supply Chain Risk Management Analyst in Springfield, VA vacancy
$185k
...Overview Senior Supply Chain Risk Management (SCRM) Analyst/Engineer LOCATION : Arlington,VA JOB STATUS: Full-Time TRAVEL: Some travel required... ...supply chain risk management, intelligence analysis, cyber threat assessment, and cross-functional coordination in...CyberSeniorFull timeWork at officeASTRION, INC.
Arlington, VA3 days ago$62.64k - $89.49k
...Mission Technologies division. Warfare Systems comprises cyber and mission IT; electronic warfare; and C5ISR systems... ...is currently seeking an Intermediate-level Supply Chain Risk Management (SCRM) Audit Analyst to work out of Fairfax, VA in support of the DoD/DoW...CyberFull timeContract workWork at officeLocal area$45.48 - $50.48 per hour
...to Day: Insight Global is hiring a Risk Assessment Analyst, sitting hybrid in Alexandria, VA,... ...leadership in advancing cybersecurity and supply chain risk management across the Defense Industrial Base... ...officer-type role, contributing to cyber risk assessments, developing...Cyber$131.3k - $237.35k
...sector is seeking an experienced SCRM Analyst SME to support the delivery,... ...Responsibilities: Conducts comprehensive Cyber Supply Chain Risk Assessments on systems, products, and... ..., Executive Orders, and Office of Management and Budget (OMB) memorandums....CyberWork at officeLocal areaImmediate startLeidos
Alexandria, VA4 days ago- ...subject matter expertise, program management, and leadership to solve... ...organizational challenges. The analyst operates with significant autonomy... ...and initiatives, including risk management, resource allocation... ...uniquely qualified to deliver cyber/converged security, technology...CyberSeniorLocal areaWorldwideFlexible hours
Parsons Company
Springfield, VA5 days ago - ...Active Location: Hybrid - Arlington, VA Schedule: Full-time | Core hours 9:00 AM - 5:00 PM ET Focus Areas: Cyber Supply Chain Risk Management (C-SCRM), Enterprise Cybersecurity Architecture, Vendor Risk Management, Federal Information Assurance Overview...CyberSeniorFull timeTemporary workMonday to Friday
Phia
Fairfax, VA1 day ago - ...Job Family : Cyber Consulting Travel Required : Up to 10% Clearance Required... ..., supports audits, and provides risk and compliance advisory services to government... ...audits, evidence collection, and POA&M management. Ability to translate technical security...CyberSeniorTemporary workFlexible hours
Guidehouse
McLean, VA6 days ago - ...Technical Risk Analyst Location: Open to hybrid in Vienna, VA, Wichester, VA, Pensacola,... ...designated to support the Operational Risk Management (ORM) role for Issue Management. The... ...NCUA, FFIEC, GLBA, NIST (including the Cyber Security Framework and 800 Series. Effective...CyberFor contractorsRemote work
TechWish
Vienna, VA3 days ago - ...Management Analyst CeLeen, an operating firm of Command Holdings, is seeking a Management... ...shall assist and provide research, risk management, and cyber-physical security analytic support services... ..., implementing render safe and chain of custody guidance, reporting UAS incidents...CyberFull timeContract workFor contractorsWork at officeLocal areaVisa sponsorshipWork visaFlexible hours
Command Holdings, a Pequot Company
Arlington, VA1 day ago - Overview Join to apply for the Enterprise Risk Management Analyst Journeyman role at Spectrum Comm Inc Pentagon, Arlington, VA Spectrum is currently seeking a Management Analyst to support our customer site and support the Department of Navy’s Business Operations Service...Full time
$200.7k - $229.1k
...Senior Manager, Cyber Risk and Analysis Capital One is one of the fastest growing organizations in the world today, powered by our passion... ...be regularly worked. McLean, VA: $200,700 - $229,100 for Sr. Manager, Cyber Risk & AnalysisNew York, NY: $219,000 - $249,...CyberSeniorFull timePart timeLocal areaCapital One
McLean, VA1 day ago$74.8k - $130.9k
...what’s possible. Job Description: Risk Analyst Parsons is seeking a Risk Analyst to... ...key member of its talented Insurance/Risk Management team! This role is responsible for... ...Parsons is uniquely qualified to deliver cyber/converged security, technology-based intellectual...CyberContract workFor subcontractorLocal areaWorldwideFlexible hoursParsons Corporation
Centreville, VA1 day ago- ...Active Location: Hybrid – Arlington, VA Schedule: Full-time | Core hours 9:00 AM – 5:00 PM ET Focus Areas: Cyber Supply Chain Risk Management (C-SCRM), Workflow Automation, Data Aggregation & Visualization, Enterprise Cybersecurity Architecture, Federal...CyberSeniorFull timeTemporary workWork at officeMonday to Friday
Phia LLC
Fairfax, VA4 days ago $103.54k - $147.92k
...Technologies division. Warfare Systems comprises cyber and mission IT; electronic warfare; and... ...seeking a Junior Vulernability Management Analyst to work out of Fairfax, VA i in support... ...• Maintains detailed records supporting Risk Management Framework activities, including...CyberFull timeContract workFor contractorsWork at officeLocal areaWorldwideHII Mission Technologies Division
Fairfax, VA6 hours ago$103.54k - $147.92k
...Supports enterprise vulnerability management operations for Department of... ...controls under guidance of senior analysts. Maintains detailed records supporting Risk Management Framework activities,... ...stakeholders. Contributes to improved cyber hygiene, reduced exposure...CyberFull timeFor contractorsWork at officeLocal area- ...Command Holdings, a Pequot Company, is seeking a Management Analyst to support the Cybersecurity and Infrastructure... ...Programs. The role involves providing research and cyber-physical security analytic support to reduce risks posed by small unmanned aircraft systems. The...CyberSeniorContract workWork at office
Command Holdings, a Pequot Company
Arlington, VA1 day ago $229.9k - $262.4k
...Sr. Risk Manager, Data Protection This position represents a unique opportunity for those with hands-on cybersecurity technical and operational... ...individual will have the ability to use technical skills and cyber subject matter expertise to provide effective oversight,...CyberSeniorFull timePart timeLocal areaImmediate startCapital One Financial Corp
McLean, VA3 days ago- ...Task Management Analyst - Senior ECS is seeking a Task Management Analyst - Senior to support the Army National Guard (ARNG) ENOCS program... ...U.S. Citizenship required DoD 8140.03 Compliance: DoD Cyber Workforce Framework (DCWF) Work Role Conditional Alternative...CyberSeniorContract work
ECS
Fairfax, VA5 days ago - Ibis Public Sector is seeking a Cyber Solutions Architect with an active DHS TS Clearance to work in a hybrid schedule in... ...enterprise-level technical expertise to support federal cyber supply chain risk management and interagency collaboration. This role translates...CyberHourly pay
Ibis Public Sector
Arlington, VA2 days ago $314.8k - $359.3k
...Sr. Director, Cyber Technical (Cyber Hunt, Logging and Threat Detection) Cybersecurity is... ...s passionate about cybersecurity and risk management. You see security as an innovation enabler... ...Provide guidance and direction to analysts that identify patterns & trends within...CyberSeniorFull timePart timeLocal areaCapital One Financial Corp
McLean, VA3 days ago$120.8k - $137.9k
...Principal Risk Specialist, Identity & Access Management | Retail Bank As a Principal Associate within Capital One's Business Risk Office, you will operate at the intersection of business, cyber, and technology to reduce risk and friction in our Identity and Access...CyberFull timePart timeWork at officeLocal areaCapital One Financial Corp
McLean, VA4 days ago$131.3k - $149.8k
...Principal Risk Associate, Tech & Cyber Risk | Retail Bank As a Principal Associate of Tech & Cyber Risk within Capital One’s Business Risk Office, you will drive end-to-end risk management by partnering directly with technology stakeholders and engineering teams to...CyberFull timePart timeWork at officeLocal areaCapital One
McLean, VA4 days ago- ...build, operate, and maintain cyber-physical solutions for the nation... ...systems, and security management software. Sourcing Suppliers... ...impact pricing, availability, and risk. Identify and evaluate... ...Bachelor’s degree or higher in supply chain management, business...CyberSeniorContract workWork at office
M.C. Dean, Inc.
Vienna, VA1 day ago - ...oversight and analysis of the prime contractor's Earned Value Management System (EVMS), performing data validation, and presenting detailed... ...requests , variance analysis Financial & Budget Management Analyst - Senior Financial & Budget Management Analyst -...SeniorFor contractorsWork at office
RTI Consulting, LLC
Springfield, VA4 days ago $200.7k - $229.1k
Overview Sr. Manager, Cyber Risk & Analysis | Retail Bank Premium Products & Experiences Sr. Manager, Cyber Risk & Analysis | Retail Bank As a member of the Technology Risk Management team within Capital One’s Business Risk Office, you will apply your analytical, risk management...CyberSeniorFull timePart timeWork at officeLocal area- ...for a Security Program Senior Manager who will be responsible for... ...of APPAs physical and cyber security programmatic efforts... ...participation. Lead APPA supply chain efforts, including leading working... ...energy systems, engineering, risk management, or related discipline...CyberSeniorWork at office2 days per week3 days per week
American Public Power Association
Springfield, VA3 days ago $135k - $165k
...Security Engineer to support cybersecurity, compliance, and risk management activities supporting the U.S. Coast Guard (USCG). This role provides... .... Core responsibilities include: Support the program's cyber-risk reduction and vulnerability mitigation. Performs...CyberSeniorCurrently hiringGovcio LLC
Alexandria, VA2 days ago- ...is seeking an experienced Senior SCRM Analyst to enhance and support enterprise... ...Responsibilities include conducting Cyber Supply Chain Risk Assessments, ensuring compliance with... ...expert guidance in supply chain risk management. Candidates should possess a relevant...CyberSeniorFor contractors
$81.35k - $95.45k
...Sourcing, Supplier Management Certifications:... ...Procurement Analyst at GDIT. Your work... ...readiness, compliance, risk mitigation, and disciplined... ...to GDIT. The Sr Procurement... ...degree in business, supply chain, operations, or related... ..., AI/ML, Cloud, Cyber and application...CyberSeniorContract workTemporary workWork at officeImmediate startRemote workWorldwideFlexible hours3 days per weekGeneral Dynamics Information Technology
Falls Church, VA2 days ago- ...Red Gate Group is seeking a Business Operations & Program Management Support Analyst - Senior to support the National Geospatial-Intelligence Agency... ...support, including in-depth cross-program analysis, risk management, stakeholder communications, and resource integration...SeniorContract workImmediate startFlexible hours
Red Gate Group
Fort Belvoir, VA2 days ago
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Sr. Cyber Supply Chain Risk Management Analyst. Be the first to apply!
Related searches
- business analyst part time remote Springfield, VA
- senior business analyst contract Springfield, VA
- business development analyst Springfield, VA
- capital markets business analyst Springfield, VA
- senior business development analyst Springfield, VA
- knowledge management analyst Springfield, VA
- deloitte business technology analyst Springfield, VA
- business analyst Springfield, VA
- business strategy analyst Springfield, VA
- sharepoint business analyst Springfield, VA