Key skills
Cyber SecurityIoTRisk Management
About this role
Role Overview
- Execute the VA Enterprise Risk Analysis (ERA) process using a custom ERA tool to identify key cybersecurity risk factors in network connected devices
- Acquire, review, and leverage system documentation and data gathered through questionnaires and interviews with customers in the field and vendor or manufacturer representatives to accurately document critical security posture elements
- Work within a Risk Management team to achieve best outcomes for the ERA process
Requirements
- Experience with cybersecurity, risk management, or risk assessment for complex systems
- Experience with NIST SP 800-53 and NIST SP 800-30
- Experience documenting and depicting network topology and network protocols
- Ability to engage directly with clients and third parties to facilitate enterprise risk analysis
- Ability to obtain and maintain a Public Trust or Suitability/Fitness determination based on client requirements
- Bachelor's degree in Computer Science, Engineering, or Mathematics and 10+ years of experience in information analysis, or 18+ years of experience in information analysis in lieu of a degree
- Experience with cybersecurity analysis of medical technology or Internet of Things (IoT)
- Experience with Governance, Risk, and Compliance (GRC)
- Experience with Assessment and Authorization (A & A) and eMASS
- Experience with Excel and Visio
- CompTIA Security+, Risk Management Professional (CRISC), or Risk and Information Systems Control (CRISC) Certification
Tech Stack
- Cyber Security
- IoT
Benefits
- health, life, disability, financial, and retirement benefits
- paid leave
- professional development
- tuition assistance
- work-life programs
- dependent care
- recognition awards program for exceptional performance