Enterprise Risk Analyst

MKS2 Technologies, LLC

Completely RemoteFull TimeInformation Technology
Posted Today

Job description

Responsibilities

  • Execute the VA Enterprise Risk Analysis process using custom tools to identify cybersecurity risk factors in medical devices and special purpose systems
  • Summarize, evaluate, and report risk factors using quantitative and qualitative scores
  • Acquire and review system documentation through questionnaires and interviews with field customers and vendors
  • Document critical security posture elements including hardware/software inventory, communications profiles, and system interconnections
  • Perform annual reviews to support continuous monitoring and ensure residual risks are current
  • Collaborate with Federal and contractor teammates within a Risk Management team

Requirements

  • Experience with Cybersecurity, risk management, or risk assessment for complex systems
  • Experience with NIST SP 800-53 and NIST SP 800-30
  • Experience documenting and depicting network topology and network protocols
  • Ability to engage directly with clients and third parties
  • Ability to obtain and maintain a Public Trust or Suitability/Fitness determination
  • Bachelor’s degree in Computer Science, Mathematics, Engineering or technical discipline with 10 years of relevant experience (or 18 years of experience in lieu of degree)

Preferred Qualifications

  • Experience with cybersecurity analysis of medical technology or IoT
  • Experience with Governance, Risk, and Compliance (GRC)
  • Experience with Assessment and Authorization (A&A) and eMASS
  • Proficiency with Excel and Visio
  • CompTIA Security+, CRISC, or CISM certifications
  • Existing Public Trust clearance

About the Company

MKS2 Technologies, LLC is an award-winning, high-growth small business providing innovative technology solutions in Cyber Security, Instructional Design, Software Engineering, and IT Support Services to government agencies.

Skills & tools

CybersecurityRisk ManagementNIST

What the team is looking for

Use this list as a quick fit check before you apply.

  1. 01Cybersecurity risk management experience
  2. 02NIST SP 800-53/800-30 knowledge
  3. 03Network topology documentation
  4. 04Bachelor's degree in technical field
  5. 05Ability to obtain Public Trust
ScoutJobsAd

Wake up to a shortlist, not a search results page.

ScoutJobs scores every new listing against your CV, salary floor and visa. A handful of real matches by morning.

Get your daily matches