
Enterprise Risk Analyst
Posted 3 days ago

Posted 3 days ago
This is a fully remote position, open to applicants in United States.
• Implement the VA Enterprise Risk Analysis process utilizing a tailored ERA tool to pinpoint significant cybersecurity risk factors in network-connected medical devices and Special Purpose Systems.
• Assess, summarize, and report on risk factors employing both quantitative and qualitative metrics to enhance awareness of remaining cyber risks.
• Collect, examine, and utilize system documentation along with data obtained through surveys and interviews.
• Record essential security posture components in a standardized reporting format.
• Conduct annual assessments to support effective ongoing monitoring.
• Partner with federal and contractor colleagues to achieve optimal results in the ERA process.
• Proven experience in Cybersecurity, risk management, or risk assessment for complex systems.
• Familiarity with NIST SP 800-53 and NIST SP 800-30 frameworks.
• Proficiency in documenting and illustrating network topology and network protocols.
• Capability to engage with clients and third parties directly to facilitate enterprise risk analysis.
• Ability to obtain and maintain a Public Trust or Suitability/Fitness determination as per client requirements.
• Bachelor’s degree in Computer Science, Mathematics, Engineering, or a related technical field, along with 10 years of pertinent work experience, or 18 years of relevant experience in lieu of a degree.
• Comprehensive benefits package available.
Pipe
Get handpicked remote jobs straight to your inbox weekly.