Partners in your success

Risk Management Framework Lead

Location: Kentucky
Position City: Fort Knox
Position State:
Position Zip Code: 40121
Country: United States

Description

The Risk Management Framework Lead will conduct third party risk assessments to assist in determining their ability to protect confidential and sensitive data:

• Act as a subject matter expert, liaise with key business and technology stakeholders to ensure compliance expectations are realized in a timely manner
• Communicate on regular basis with key stakeholders on status, issues and solutions to resolving those issues
• Analyze assessment findings and establish a risk score based on an established scoring framework
• Monitor appropriate sources for newly identified vulnerabilities, evaluate the risks such vulnerabilities pose to the organization’s information and systems, and advise management of appropriate measures to eliminate or reduce the organization’s risk or exposure to such vulnerabilities
• Work with Oversight Managers to ensure Security is engaged in projects
• Develop security deliverables based on the security documentations that is provided by the vendor
• Maintains an up-to-date understanding of industry best practices
• Assesses threats and vulnerabilities regarding information assets and recommends the appropriate security measures
• Interfaces with third-party vendors to evaluate changes in vendor infrastructure


Required Skills and Experience

• 7 to 10 years’ experience in Risk Management Framework (RMF) concepts and process
• Ability to manage system vulnerabilities and associated Risk Management Documents (Plans of Actions and Milestones (POAMs), Risk Acceptance Documents, and Waivers
• Working understanding of DISA System Technical Implementation Guide (STIGs) and have the ability to provide guidance to technical Subject Matter Experts (SMEs) based on those STIGS
• Understanding of a wide variety of IT system infrastructure and application development methodologies 
• Excellent problem-solving ability
• Amazing attention to detail
• IAM level III compliance (CISSP or equivalent) 
Desired Skills/Certifications: 
• ITIL v3 Foundations
• Knowledge Army's RMF management package Enterprise Mission Assurance Support Service (eMASS)


Education

BS Degree in Engineering, Computer Science, Information Systems.


Security Clearance

U.S. Citizen with an active DoD Secret clearance.


EOE M/F/Disability/Vet





Are you a returning applicant?

Previous Applicants:

If you do not remember your password click here.

Back to Search Results

New Search


Powered By Taleo