Current jobs related to Cybersecurity Risk Management Lead - Washington - BTI


  • Washington, Washington, D.C., United States BTI Full time

    Job SummaryBTI is seeking a highly skilled Cybersecurity Risk Management Lead to lead a team in executing risk management efforts against our customer's inventory of on premise, vendor and cloud-based systems.Key ResponsibilitiesManage Information System Security Officers (ISSO) to support information technology (IT) security goals and objectives and reduce...


  • Washington, Washington, D.C., United States Gunnison Consulting Group Inc Full time

    Job Title: Cybersecurity Risk Assessment LeadGunnison Consulting Group Inc is seeking a highly skilled Cybersecurity Risk Assessment Lead to join our team in the Washington, DC area. As a Cybersecurity Risk Assessment Lead, you will play a critical role in supporting the Department of Health and Human Services' (HHS) cybersecurity mission.Job SummaryThe...


  • Washington, DC, United States BTI Full time

    Job Title: Information Systems Security ManagerJob SummaryBTI is seeking an experienced Information Systems Security Manager to lead our risk management efforts and ensure the security of our customer's inventory of on-premise, vendor, and cloud-based systems.Key ResponsibilitiesManage a team of Information System Security Officers (ISSOs) to support IT...


  • Washington, Washington, D.C., United States PKH Enterprises Full time

    Job OpportunityWe are seeking a highly skilled Cybersecurity Subject Matter Expert (SME) and Supply Chain Risk Management (SCRM) Analyst to provide expert-level systems analysis, design, integration, and implementation advice on complex cybersecurity challenges, with a specific focus on managing supply chain risks.Key Responsibilities:Provide high-level...


  • Washington, United States Innovative Management Concepts Full time

    Job Title: Cybersecurity Program ManagerJoin Innovative Management Concepts, a Service-Disabled Veteran-Owned Small Business, as a Cybersecurity Program Manager. We are seeking a highly experienced professional to lead our cybersecurity team in providing top-notch services to government and commercial customers.About the RoleWe are looking for a seasoned...


  • Washington, Washington, D.C., United States New Light Technologies In Full time

    Job DescriptionWe are seeking a highly skilled Cybersecurity Risk Specialist to join our team at New Light Technologies In. The ideal candidate will have a strong background in cybersecurity and risk management, with a focus on human behavior and threat analysis.Key Responsibilities:Design and implement security awareness programs to educate employees on...


  • Washington, Washington, D.C., United States Vets Hired Full time

    Job SummaryVets Hired is seeking a highly skilled Cybersecurity Risk Manager to join our team. As a key member of our security team, you will be responsible for conducting initial security assessments, maintaining security authorizations, and continuously updating security documentation to ensure compliance with NIST SP 800-37 Rev. 2.Key...


  • Washington, DC , USA, United States Dice Full time

    Job DescriptionDice is seeking a highly skilled Cybersecurity Risk Management Consultant to join our team. As a key member of our client's organization, you will be responsible for managing and mitigating information security risks across various projects.Key Responsibilities:Design and implement risk management frameworks to ensure compliance with...


  • Washington, Washington, D.C., United States Innovative Management Concepts, Inc. Full time

    Job DescriptionThe Cybersecurity Team Lead will oversee a team of security control assessors to conduct comprehensive assessments of management, operational, technical, and privacy security controls employed within or inherited by an information system. This role will lead the team to efficiently manage the workload and provide risk results that determine...


  • Washington, Washington, D.C., United States MBO Partners Full time

    MBO Partners is a leading provider of deep jobs solutions that connect and enable independent professionals and microbusiness owners to do business safely and effectively with enterprise organizations.Duration: Multi-year contractLocation: DC MetroSchedule: Hybrid work model – 2-3 days onsiteClearance: Active secret security clearance or higher...


  • Washington, Washington, D.C., United States Innovative Management Concepts, Inc. Full time

    Job DescriptionThe Security Control Assessor (SCA) Team Lead will lead a team of security control assessors to conduct comprehensive assessments of management, operational, technical, and privacy security controls employed within or inherited by an information system. This role will be responsible for leading a team to efficiently manage the workload and...


  • Washington, Washington, D.C., United States Sayres & Associates Full time

    Job SummarySayres & Associates is seeking a skilled Cybersecurity Analyst to support the technical implementation of the Risk Management Framework (RMF) Assessment and Authorization (A&A) services. The successful candidate will conduct cybersecurity and risk assessments on Platform Information Technology (PIT) and PIT control systems to identify and mitigate...


  • Washington, United States Dynamic Solutions Technology LLC Full time

    Job Title: Lead Cybersecurity SpecialistDynamic Solutions Technology, LLC is seeking a highly skilled Lead Cybersecurity Specialist to join our team in Washington DC area. As a key member of our cybersecurity team, you will be responsible for ensuring the security and integrity of our systems and data.Responsibilities:Integrate and test new technology to...


  • Washington, Washington, D.C., United States ASRC Federal Holding Company Full time

    Cybersecurity Program ManagerWe are seeking a highly skilled and motivated Cybersecurity Program Manager to oversee cybersecurity and Supply Chain Risk Management (SCRM) programs. The Program Manager will be responsible for leading day-to-day project management, ensuring the successful execution of cybersecurity and SCRM initiatives, and managing the...


  • Washington, Washington, D.C., United States MindPoint Group Full time

    Job Title: Cybersecurity Project ManagerMindPoint Group is seeking a highly skilled Cybersecurity Project Manager to lead our team in Washington, DC.Job SummaryWe are looking for a seasoned professional with a strong background in cybersecurity project management to oversee the implementation of our security solutions. The ideal candidate will have a proven...


  • Washington, Washington, D.C., United States Axient Full time

    Axient is seeking a Mid-level Cybersecurity Engineer to join our team in Washington Navy Yard. The Cybersecurity Engineer will be responsible for bringing platform information technology systems through the full life cycle of the Risk Management Framework process to achieve/renew Authority to Operate (ATO).Responsibilities:• Responsible for bringing...


  • Washington, Washington, D.C., United States BlueVoyant Full time

    Job Title: Risk Management AnalystWe are seeking a highly skilled Risk Management Analyst to join our team at BlueVoyant. As a Risk Management Analyst, you will work closely with clients to identify and mitigate supply chain risks and cybersecurity challenges.Key Responsibilities:Participate in third-party risk management consulting engagements to identify...


  • Washington, Washington, D.C., United States Metrea Management LLC Full time

    Job SummaryMetrea Management LLC is seeking a skilled Cybersecurity Developer to join our team. As a key member of our Platform Technology Team, you will be responsible for developing and enhancing cybersecurity needs to our overall infrastructure.Key ResponsibilitiesDeveloping analytics and metrics to support incident and response protocols.Conducting...

  • Cybersecurity Lead

    7 days ago


    Washington, Washington, D.C., United States clearAvenue, LLC Full time

    About the Role:Cybersecurity Lead at clearAvenue, LLC will be responsible for analyzing IT requirements and providing objective advice on information security requirements. The ideal candidate will have a Bachelor's degree in computer science or a relevant field and certifications such as CISSP, ISC2, and DISA Host Based Security System...


  • Washington, Washington, D.C., United States T. White Parker Full time

    Cybersecurity Program Manager Job DescriptionT. White Parker is seeking a highly skilled and experienced Cybersecurity Program Manager to lead our cybersecurity client engagements. The successful candidate will have a strong background in designing, implementing, and operating comprehensive cybersecurity programs, as well as experience working with senior...

Cybersecurity Risk Management Lead

2 months ago


Washington, United States BTI Full time

Business Technology Integrators (BTI) is in search of an Information Systems Security Manager (ISSM) to oversee a dedicated team focused on implementing risk management strategies for our diverse range of systems, including on-premise, vendor, and cloud-based solutions.

The ideal candidate will be responsible for:

  • Leadership: Directing Information System Security Officers (ISSO) to achieve IT security objectives and mitigate organizational risks.
  • Risk Management Framework: Supporting the execution and management of the House Risk Management Framework (RMF) while guiding ISSOs on the application of cybersecurity policies.
  • Policy Development: Assisting senior management in formulating and interpreting information assurance guidelines and regulations.
  • Risk Advisory: Providing insights to senior management, including the Chief Information Security Officer (CISO), regarding risk levels and security posture.
  • Change Management: Advising leadership on significant changes that may impact the organization’s cybersecurity stance.
  • Problem Solving: Conducting studies to identify and recommend solutions for complex systems management challenges.
  • Security Improvements: Ensuring that security enhancement actions are properly evaluated and implemented.
  • Compliance Monitoring: Interpreting noncompliance patterns to assess their impact on risk levels and the effectiveness of the cybersecurity program.
  • Risk Assessments: Participating in security risk assessments during the Security Assessment and Authorization process.
  • Remediation Planning: Ensuring that plans for addressing vulnerabilities identified during assessments are established and followed.

Additionally, the successful candidate will:

  • Quality Assurance: Conduct quality reviews of cybersecurity deliverables to maintain consistency and accuracy.
  • Technical Guidance: Provide expert advice to the risk management team regarding information systems.
  • Artifact Review: Perform quality checks on security documentation prepared by ISSOs to ensure high-quality assessment and authorization deliverables.
  • ISSO Responsibilities: Assume ISSO duties in their absence.
  • Procedure Compliance: Ensure adherence to approved procedures in implementing security controls.
  • Vulnerability Tracking: Maintain records of vulnerabilities within authorization boundaries.
  • Technical Support: Advise ISSOs on all security-related matters concerning assigned IT systems.
  • Knowledge Maintenance: Keep abreast of system technologies, security policies, and safeguards.
  • Continuous Monitoring: Ensure ongoing monitoring of authorization boundaries and security controls.
  • Training Development: Provide role-specific training for ISSOs.
  • Management Briefings: Update senior management on ISSO activities and project statuses.
  • Process Maturity: Collaborate with leadership to enhance risk management processes.
  • Training Formalization: Develop and formalize risk management training tailored to various stakeholders.
  • Technical Reviews: Conduct technical evaluations and risk analyses, offering recommendations for cybersecurity risk mitigation.
  • Innovative Solutions: Research and propose secure, automated solutions to enhance risk management practices.
  • Technology Assessment: Participate in the evaluation of new technologies to support operations.
  • Audit Support: Provide assistance for cybersecurity audit activities.
  • Additional Duties: Perform other responsibilities as assigned.

The successful candidate will possess:

  • A minimum of eight (8) years of proven experience in cybersecurity risk management.
  • Experience managing security assessments and reviewing documentation for system security authorization.
  • Strong familiarity with NIST publications.
  • Proven ability to deliver quality assessment and authorization documentation.
  • Technical expertise in operating systems, network technologies, risk management frameworks, and security tools.
  • Understanding of cloud service models and mobile security technologies.
  • Knowledge of cybersecurity principles across management, operational, and technical domains.
  • Preferred experience with privacy principles and frameworks.