Key skills
Cyber SecurityLeadershipRisk Management
About this role
Role Overview
- Design and govern the Cyber Supply Chain Risk Management continuous monitoring program
- Develop and maintain the Continuous Monitoring Program Plan
- Define monitoring strategies and escalation paths
- Identify Tier 1 vendors for monitoring
- Define cyber risk categories and monitoring frequency
- Establish remediation requirements for vendors
- Oversee analyst execution of monitoring and reporting
- Coordinate with various teams including Strategic Sourcing and CSCRM teams
- Lead escalation efforts when risks are identified
- Develop and maintain the Continuous Improvement Plan
Requirements
- Bachelor’s degree and 10 years of experience
- Experience leading cybersecurity, third-party risk, or supply chain risk programs
- Strong background in cybersecurity governance, process development, and stakeholder engagement
- Proven ability to develop program plans, workflows, and performance metrics
- Deep familiarity with NIST SP 800-161 and federal CSCRM practices (preferred)
- Experience supporting federal agencies or large enterprise cybersecurity programs (preferred)
- Experience briefing leadership and government stakeholders (preferred)
- Must be able to obtain and maintain Public Trust Clearance
- Must be a US Citizen
Tech Stack
- Cyber Security
Benefits
- Competitive benefits package including paid time off
- Healthcare benefits
- Supplemental benefits
- 401k with employer match
- Education reimbursement for certifications, degrees, or professional development
- Activities fund for virtual and in-person events