Current jobs related to Cybersecurity Risk Management Leader - Washington - BTI

  • Cybersecurity Risk Management Specialist

    2 weeks ago

    Washington, Washington, D.C., United States PKH Enterprises Full time

    Job OpportunityWe are seeking a highly skilled Cybersecurity Subject Matter Expert (SME) and Supply Chain Risk Management (SCRM) Analyst to provide expert-level systems analysis, design, integration, and implementation advice on complex cybersecurity challenges, with a specific focus on managing supply chain risks.Key Responsibilities:Provide high-level...

  • Cybersecurity Risk Management Lead

    2 weeks ago

    Washington, Washington, D.C., United States BTI Full time

    Job SummaryBTI is seeking a highly skilled Cybersecurity Risk Management Lead to lead a team in executing risk management efforts against our customer's inventory of on premise, vendor and cloud-based systems.Key ResponsibilitiesManage Information System Security Officers (ISSO) to support information technology (IT) security goals and objectives and reduce...

  • Cybersecurity Risk Specialist

    2 weeks ago

    Washington, Washington, D.C., United States New Light Technologies In Full time

    Job DescriptionWe are seeking a highly skilled Cybersecurity Risk Specialist to join our team at New Light Technologies In. The ideal candidate will have a strong background in cybersecurity and risk management, with a focus on human behavior and threat analysis.Key Responsibilities:Design and implement security awareness programs to educate employees on...

  • Cybersecurity Analyst

    1 week ago

    Washington, Washington, D.C., United States Sayres & Associates Full time

    Job SummarySayres & Associates is seeking a skilled Cybersecurity Analyst to support the technical implementation of the Risk Management Framework (RMF) Assessment and Authorization (A&A) services. The successful candidate will conduct cybersecurity and risk assessments on Platform Information Technology (PIT) and PIT control systems to identify and mitigate...

  • Cybersecurity Program Manager

    2 weeks ago

    Washington, United States Innovative Management Concepts Full time

    Job Title: Cybersecurity Program ManagerJoin Innovative Management Concepts, a Service-Disabled Veteran-Owned Small Business, as a Cybersecurity Program Manager. We are seeking a highly experienced professional to lead our cybersecurity team in providing top-notch services to government and commercial customers.About the RoleWe are looking for a seasoned...

  • Cybersecurity Risk Manager

    2 weeks ago

    Washington, Washington, D.C., United States Vets Hired Full time

    Job SummaryVets Hired is seeking a highly skilled Cybersecurity Risk Manager to join our team. As a key member of our security team, you will be responsible for conducting initial security assessments, maintaining security authorizations, and continuously updating security documentation to ensure compliance with NIST SP 800-37 Rev. 2.Key...

  • Cybersecurity Risk Assessment Lead

    4 weeks ago

    Washington, Washington, D.C., United States Gunnison Consulting Group Inc Full time

    Job Title: Cybersecurity Risk Assessment LeadGunnison Consulting Group Inc is seeking a highly skilled Cybersecurity Risk Assessment Lead to join our team in the Washington, DC area. As a Cybersecurity Risk Assessment Lead, you will play a critical role in supporting the Department of Health and Human Services' (HHS) cybersecurity mission.Job SummaryThe...

  • Cybersecurity Risk Management Lead

    1 month ago

    Washington, DC, United States BTI Full time

    Job Title: Information Systems Security ManagerJob SummaryBTI is seeking an experienced Information Systems Security Manager to lead our risk management efforts and ensure the security of our customer's inventory of on-premise, vendor, and cloud-based systems.Key ResponsibilitiesManage a team of Information System Security Officers (ISSOs) to support IT...

  • Cybersecurity Engineer

    1 week ago

    Washington, Washington, D.C., United States MBO Partners Full time

    MBO Partners is a leading provider of deep jobs solutions that connect and enable independent professionals and microbusiness owners to do business safely and effectively with enterprise organizations.Duration: Multi-year contractLocation: DC MetroSchedule: Hybrid work model – 2-3 days onsiteClearance: Active secret security clearance or higher...

  • Cybersecurity Risk Management Consultant

    2 weeks ago

    Washington, DC , USA, United States Dice Full time

    Job DescriptionDice is seeking a highly skilled Cybersecurity Risk Management Consultant to join our team. As a key member of our client's organization, you will be responsible for managing and mitigating information security risks across various projects.Key Responsibilities:Design and implement risk management frameworks to ensure compliance with...

  • Cybersecurity Risk Specialist

    1 week ago

    Washington, DC, United States Booz Allen Full time

    Cybersecurity Risk SpecialistCyber threats are a constant concern for organizations, and understanding these threats is crucial for mitigating risks. As a Cybersecurity Risk Specialist, you will support the Joint Cyber Operations Integration Center (JCOIC) in conducting security reviews of network diagrams and topologies, architecture diagrams, and...

  • Cybersecurity Risk Management Framework Specialist

    4 days ago

    Washington, Washington, D.C., United States Axient Full time

    Axient is seeking a Mid-level Cybersecurity Engineer to join our team in Washington Navy Yard. The Cybersecurity Engineer will be responsible for bringing platform information technology systems through the full life cycle of the Risk Management Framework process to achieve/renew Authority to Operate (ATO).Responsibilities:• Responsible for bringing...

  • Cybersecurity Developer

    1 week ago

    Washington, Washington, D.C., United States Metrea Management LLC Full time

    Job SummaryMetrea Management LLC is seeking a skilled Cybersecurity Developer to join our team. As a key member of our Platform Technology Team, you will be responsible for developing and enhancing cybersecurity needs to our overall infrastructure.Key ResponsibilitiesDeveloping analytics and metrics to support incident and response protocols.Conducting...

  • Cybersecurity Strategist

    14 hours ago

    Washington, United States Lamoreaux Search Full time

    Role OverviewThe Deputy Chief Information Security Officer will play a key role in enhancing cybersecurity defenses and safeguarding the integrity and resilience of critical systems and information for Lamoreaux Search. The ideal candidate will be a mission-driven individual with expertise in integrating people, processes, and technology into a proactive,...

  • Cybersecurity Risk Management Specialist for National Guard Employment Network

    6 days ago

    Washington, Washington, D.C., United States National Guard Employment Network Full time

    At National Guard Employment Network, we recognize the importance of cybersecurity in today's fast-paced digital landscape. That's why we're seeking an experienced Cybersecurity Risk Management Specialist to join our team.The ideal candidate will possess a strong background in governance, risk, and compliance (GRC), with a proven track record of developing...

  • Cybersecurity Program Manager

    2 weeks ago

    Washington, Washington, D.C., United States ASRC Federal Holding Company Full time

    Cybersecurity Program ManagerWe are seeking a highly skilled and motivated Cybersecurity Program Manager to oversee cybersecurity and Supply Chain Risk Management (SCRM) programs. The Program Manager will be responsible for leading day-to-day project management, ensuring the successful execution of cybersecurity and SCRM initiatives, and managing the...

  • Senior Cybersecurity Program Manager

    3 weeks ago

    Washington, Washington, D.C., United States MKS2 Technologies Full time

    Job SummaryMKS2 Technologies is seeking a highly experienced Senior Cyber Program Manager to lead our cybersecurity team in delivering complex and fast-paced projects to our clients in the Health and Human Services sector.This role requires a strong leader with extensive experience in managing multiple projects and teams, as well as a deep understanding of...

  • Cybersecurity Project Manager

    2 weeks ago

    Washington, Washington, D.C., United States RIVA Solutions Full time

    Cybersecurity Project ManagerRIVA Solutions is seeking a highly skilled Cybersecurity Project Manager to oversee the successful execution of cybersecurity projects supporting our Federal Government customer.The ideal candidate will have hands-on experience in managing security projects, knowledge of the latest cybersecurity threats, and a strong...

  • Senior Cybersecurity Risk Specialist

    7 days ago

    Washington, Washington, D.C., United States Information Systems Solutions Full time

    Job SummaryWe are seeking a highly skilled Senior Level ISSO to support the Office of Naval Intelligence. As a Senior Level ISSO, you will be responsible for ensuring the security and integrity of our systems and networks.Key ResponsibilitiesImplement and maintain the NAVINTEL ICD 503 Risk Management Framework (RMF) Implementation Policies/Directives and...

  • Cybersecurity Project Manager

    4 weeks ago

    Washington, Washington, D.C., United States MindPoint Group Full time

    Job Title: Cybersecurity Project ManagerMindPoint Group is seeking a highly skilled Cybersecurity Project Manager to lead our team in Washington, DC.Job SummaryWe are looking for a seasoned professional with a strong background in cybersecurity project management to oversee the implementation of our security solutions. The ideal candidate will have a proven...

Cybersecurity Risk Management Leader

2 months ago

Washington, United States BTI Full time

Business Technology Integrators (BTI) is in search of an Information Systems Security Manager (ISSM) to spearhead a dedicated team focused on implementing risk management strategies across our client's array of on-premise, vendor, and cloud-based systems.

The ideal candidate will provide expertise in the following areas:

  • Team Leadership: Oversee Information System Security Officers (ISSO) to achieve IT security objectives and mitigate overall organizational risk.
  • Risk Management Framework: Assist in the execution and management of the House Risk Management Framework (RMF) while guiding ISSOs on the correct application of cybersecurity policies and standards.
  • Policy Development: Collaborate with senior management to formulate and interpret information assurance guidelines, policies, and regulations.
  • Risk Advisory: Counsel senior management, including the Chief Information Security Officer (CISO), on risk levels and the overall security posture.
  • Change Management: Inform senior leadership or the Authorizing Official about changes that may impact the organization's cybersecurity stance.
  • Problem Solving: Conduct independent or coordinated studies to identify, assess, or recommend solutions to complex systems management challenges.
  • Security Improvements: Ensure that security enhancement actions are evaluated, validated, and executed as necessary.
  • Strategic Planning: Identify alternative information security strategies to meet organizational security goals.
  • Compliance Analysis: Analyze patterns of noncompliance to evaluate their effect on risk levels and the effectiveness of the enterprise's cybersecurity program.
  • Risk Assessments: Participate in information security risk assessments during the Security Assessment and Authorization process.
  • Remediation Planning: Ensure that plans of action and milestones or remediation strategies are established for vulnerabilities identified during assessments, audits, and inspections.

Additionally, the successful candidate will:

  • Quality Assurance: Conduct quality assurance reviews of cybersecurity deliverables to ensure consistency, accuracy, and relevance.
  • Technical Guidance: Provide technical and procedural advice to the risk management team.
  • Artifact Review: Perform quality reviews of security artifacts collected by ISSOs to ensure high-quality assessment and authorization (A&A) deliverables.
  • ISSO Responsibilities: Assume ISSO duties in their absence.
  • Procedure Compliance: Ensure adherence to approved House procedures in implementing security controls.
  • Vulnerability Tracking: Maintain a record of all vulnerabilities within existing authorization boundaries.
  • Technical Advisory: Advise ISSOs on all matters concerning the security of assigned IT systems.
  • Knowledge Maintenance: Keep abreast of system technology, security policies, and safeguards.
  • Continuous Monitoring: Ensure ongoing monitoring of authorization boundaries and implemented security controls.
  • Mitigation Guidance: Provide guidance to ISSOs on mitigation actions for security control deficiencies and vulnerability scans for assigned IT systems.
  • Training Development: Deliver role-based training for assigned ISSOs tailored to their specific roles and responsibilities.
  • Status Reporting: Brief senior management on the status of ISSOs and their respective projects.
  • Process Maturity: Collaborate with senior leadership to enhance risk management processes within the House environment.
  • Training Formalization: Develop and formalize risk management training specific to the House environment for diverse stakeholder groups.
  • Technical Reviews: Conduct assigned technical reviews and risk analyses, formulating cybersecurity risk mitigation recommendations and strategies based on identified threats.
  • Innovative Solutions: Research and propose innovative, secure, and, where feasible, automated solutions to enhance risk management processes and activities.
  • Technology Evaluation: Participate in the technical security evaluation and assessment of new technologies to support operations.
  • Audit Support: Provide audit support for cybersecurity-related audit activities and recommendations.
  • Additional Duties: Perform other responsibilities as assigned.

The successful candidate should possess the following qualifications:

  • At least eight (8) years of proven experience in cybersecurity risk management.
  • Experience managing systems security assessments and reviewing system security documentation for successful security authorization.
  • Strong knowledge and expertise with NIST publications.
  • Experience delivering quality A&A outputs.
  • Technical proficiency and understanding of common operating systems, network technologies, risk management frameworks, and security tools.
  • Familiarity with cloud service models, hybrid applications, and mobile security technologies.
  • Understanding of management, operational, and technical cybersecurity principles.
  • Experience with privacy principles and frameworks is preferred.