Cybersecurity Risk Assessment Specialist – Secret Clearance Required
Washington, District of Columbia, United States of America
Full Time
3 hours ago
No Visa Sponsorship
Key skills
Cyber SecurityLeadershipRisk Management
About this role
Role Overview
- Provide expert-level technical guidance and analysis to support cybersecurity and risk assessment initiatives, including supply chain risk management.
- Develop, enhance, and maintain standard operating procedures (SOPs) to support assessment execution and implementation.
- Conduct security assessments and hands-on testing, analyze results, document risks, and recommend appropriate countermeasures.
- Identify, evaluate, and report on system vulnerabilities, threats, and security gaps.
- Review and provide recommendations on program-level documentation, including: o Requirements specifications o System architecture and design documents o Test plans and security plans
- Develop and document security evaluation test plans and procedures.
- Support the development and implementation of information security policies, standards, and guidance.
- Ensure compliance with applicable frameworks and regulations (e.g., FISMA, NIST, OMB).
- Perform risk assessments, including analyzing threats, vulnerabilities, and potential impacts.
- Coordinate with cross-functional teams and stakeholders to support security testing and program objectives.
- Lead or participate in technical exchange meetings, documenting outcomes and action items.
- Prepare and deliver briefings to leadership on project status, risks, and key findings.
- Analyze and synthesize data from multiple sources to produce clear, actionable insights for both technical and non-technical audiences.
- Provide oversight for the design, development, and implementation of security support systems.
- Collaborate with stakeholders to map system functionality to security controls and compliance requirements.
Requirements
- Education: o Master’s degree (MS/MA) in Cybersecurity, Information Technology, Computer Science, or a related field
- Experience: o Minimum of 8+ years of relevant experience in cybersecurity, risk management, or assessment operations o Experience supporting federal or highly regulated environments preferred
- Certifications (preferred): o CISSP, CISM, CISA, CEH, or other relevant industry certifications
Tech Stack
- Cyber Security