1 to 25 of 392 Risk Analysis Jobs

Director, Cyber and Digital Risk ManagementCountry: United States of America Your Journey Starts Here: Santander is a global leader and innovator in the financial services industry. We believe that our employees are our greatest asset. Our focus is on fostering an enriching journey that empowers you to explore diverse career opportunities while nurturing your personal growth. We are committed … your success. An exciting journey awaits, if you are interested in exploring the possibilities We Want to Talk to You! The Difference You Make: The Director, Cyber and Digital Risk Management m onitors activities to minimize the company's exposure to information security risks. Activities may include 2nd line of defense independent assurance over technical cyber risk analysis, risk identification and remediation. The incumbent shall support the preservation of digital trust and ensure that the oversight is adequate to minimize compliance and regulatory risk by resolving issues and ensuring adherence to industry good practice frameworks, company and legal standards. The Director is responsible for ensuring that the company's activities adhere to the necessary rules More ❯

Director, Cyber and Digital Risk ManagementCountry: United States of America Your Journey Starts Here: Santander is a global leader and innovator in the financial services industry. We believe that our employees are our greatest asset. Our focus is on fostering an enriching journey that empowers you to explore diverse career opportunities while nurturing your personal growth. We are committed … your success. An exciting journey awaits, if you are interested in exploring the possibilities We Want to Talk to You! The Difference You Make: The Director, Cyber and Digital Risk Management m onitors activities to minimize the company's exposure to information security risks. Activities may include 2nd line of defense independent assurance over technical cyber risk analysis, risk identification and remediation. The incumbent shall support the preservation of digital trust and ensure that the oversight is adequate to minimize compliance and regulatory risk by resolving issues and ensuring adherence to industry good practice frameworks, company and legal standards. The Director is responsible for ensuring that the company's activities adhere to the necessary rules More ❯

Be inspired to be your best self and have fun in the process Integrity: Do the right thing, the right way, every time! Summary: JCS is seeking an experienced Risk and Business Analyst to support a Senior Risk and Vulnerability Analyst for the Department of Homeland Security (DHS), Cybersecurity and Infrastructure Security Agency (CISA). In this role … the ideal candidate will analyze risk data and information from multiple sources, prepare the environment, respond to information requests, and submit intelligence collection and production requirements in support of planning and operations. This position offers an excellent opportunity to be part of a high-performing team responsible for supporting a high-velocity collaborative environment, along with tremendous growth potential. … If you are interested in a challenge and a great working environment, apply today! Responsibilities: The specific duties include but are not necessarily limited to the following: Support risk analysis and prioritization to identify and rank cybersecurity risks to national security infrastructure. Integrate cyber threat, vulnerability, and consequence data from public and private stakeholders to inform risk More ❯

Amyx is seeking to hire a Risk Services Analysis Lead to support our Department of Homeland Security, CISA contract in the Washington DC area. Responsibilities Manage Manage Risk Analysis activities across our data analysis and risk services tasks develop comprehensive risk assessments related to topics such as, but not limited to Electromagnetic Pulse … Position, Navigation, and Timing, and Space/Space Weather. provide written assessments of risk based on extensive research from various sources (e.g., government reports, industry publications, and open-source intelligence) and coordination which include recommendations for reducing risk and assessments on the likelihood that the recommendations will be adopted. identify trends and patterns in threats. provide evaluation on … the likelihood and impact of potential threats on critical infrastructure systems using cost-benefit analysis principles and methodologies, and familiarity with risk assessment frameworks and methodologies used in critical infrastructure protection. maintain awareness of the latest advancements in technology, regulations, and threat landscapes to ensure ongoing effectiveness of risk management strategies. communicate complex technical information clearly and More ❯

computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategies. Validates and verifies system security requirements definitions and analysis and establishes system security designs. Designs, develops, implements and/or integrates IA and security systems and system components including those for networking, computing, and enclave environments to include … design and implementation of trusted relations among external systems and architectures. Assesses and mitigates system security threats/risks throughout the program life cycle. Contributes to security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations. Reviews certification and accreditation (C&A) documentation, providing feedback on completeness and compliance of its … to : system security design process; engineering life cycle; information domain; cross domain solutions; commercial off-the-shelf and government off-the-shelf cryptography; identification; authentication; and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing; certification and accreditation process; principles of IA (confidentiality, integrity, non-repudiation, availability, and access control); and security More ❯

assessments of computing environments to identify points of vulnerability, non-compliance with established Cybersecurity standards and regulations, and recommend mitigation strategies. Validate and verifies system security requirements definitions and analysis and establishes system security designs. Design, develop, implement and/or integrate Cybersecurity and security systems and system components including those for networking, computing, and enclave environments to include … implementation of trusted relations among external systems and architectures. Assess and mitigate system security threats/risks throughout the system development life cycle. Contribute to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations. Review certification and accreditation (C&A) documentation, provide feedback on completeness and compliance of its … content. Support security authorization activities in compliance with MPO/CSS Information System Certification and Accreditation Process (NISCAP) and DoD Risk Management Framework (RMF), the NIST Risk Management Framework (RMF) process, and prescribed MPO/CSS business processes for security engineering. Participate as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and More ❯

assessments of computing environments to identify points of vulnerability, non-compliance with established Cybersecurity standards and regulations, and recommend mitigation strategies. Validate and verifies system security requirements definitions and analysis and establishes system security designs. Design, develop, implement and/or integrate Cybersecurity and security systems and system components including those for networking, computing, and enclave environments to include … implementation of trusted relations among external systems and architectures. Assess and mitigate system security threats/risks throughout the system development life cycle. Contribute to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations. Review certification and accreditation (C&A) documentation, provide feedback on completeness and compliance of its … content. Support security authorization activities in compliance with MPO/CSS Information System Certification and Accreditation Process (NISCAP) and DoD Risk Management Framework (RMF), the NIST Risk Management Framework (RMF) process, and prescribed MPO/CSS business processes for security engineering. Participate as the primary security engineering representative on engineering teams for the design, development, implementation, evaluation, and More ❯

assessments of computing environments to identify points of vulnerability, non-compliance with established Cybersecurity standards and regulations, and recommend mitigation strategies. Validate and verifies system security requirements definitions and analysis and establishes system security designs. Design, develop, implement and/or integrate Cybersecurity and security systems and system components including those for networking, computing, and enclave environments to include … implementation of trusted relations among external systems and architectures. Assess and mitigate system security threats/risks throughout the system development life cycle. Contribute to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations. Review certification and accreditation (C&A) documentation, provide feedback on completeness and compliance of its … content. Support security authorization activities in compliance with NSA/CSS Information System Certification and Accreditation Process (NISCAP) and DoD Risk Management Framework (RMF), the NIST Risk Management Framework (RMF) process, and prescribed NSA/CSS business processes for security engineering. The Level 2 Information Systems Security Engineer shall possess the following capabilities: • Participate as the primary security More ❯

computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategies. Validate and verify system security requirements definitions and analysis and establishes system security designs. Design, develop, implement and/or integrate IA and security systems and system components including those for networking, computing, and enclave environments to include … and implementation of trusted relations among external systems and architectures. Assess and mitigate system security threats/risks throughout the program life cycle. Contribute to the security planning, assessment, risk analysis, risk management, certification, and awareness activities for system and networking operations. Review certification and accreditation (C&A) documentation, providing feedback on completeness and compliance of its … content. Support security authorization activities in compliance with NSA/CSS Information System Certification and Accreditation Process (NISCAP) and DoD Risk Management Framework (RMF), the NIST Risk Management Framework (RMF) process, and prescribed NSA/CSS business processes for security engineering designs. Apply system security engineering expertise in one or more of the following to: System security design More ❯

Responsible for assisting in identifying the overall security requirements for the protection of data, to ensure the implementation of appropriate information security controls, and perform and analyze the security risk assessment, risk analysis, risk management process, security control assessments, and awareness activities for systems and networking operations. Provide assistance to ensure Cybersecurity functions are included in … of legacy systems. Contribute to the acquisition/RDT&E environment and building Cybersecurity into systems deployed in operational environments. Prepare security authorization documentation. Perform security planning, security assessment, risk analysis, risk assessment, and risk management support activities Perform risk assessment and management to support integration of legacy systems into existing IT environment Review and … analyze Cybersecurity built into systems to be deployed to operational environments Prepare risk assessment, plan of actions, authorization recommendations, and related security authorization documentation Identify and support overall security requirements for the protection of data to ensure the implementation of information security policies, activities, and controls Ensure Cybersecurity functions are included in the development and risk management process More ❯

Responsible for assisting in identifying the overall security requirements for the protection of data, to ensure the implementation of appropriate information security controls, and perform and analyze the security risk assessment, risk analysis, risk management process, security control assessments, and awareness activities for systems and networking operations. Provide assistance to ensure Cybersecurity functions are included in … of legacy systems. Contribute to the acquisition/RDT&E environment and building Cybersecurity into systems deployed in operational environments. Prepare security authorization documentation. Perform security planning, security assessment, risk analysis, risk assessment, and risk management support activities Perform risk assessment and management to support integration of legacy systems into existing IT environment Review and … analyze Cybersecurity built into systems to be deployed to operational environments Prepare risk assessment, plan of actions, authorization recommendations, and related security authorization documentation Identify and support overall security requirements for the protection of data to ensure the implementation of information security policies, activities, and controls Ensure Cybersecurity functions are included in the development and risk management process More ❯

computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations and recommend mitigation strategies. Validates and verifies system security requirements definitions and analysis and establishes system security designs. Designs, develops, implements and/or integrates IA and security systems and system components including those for networking, computing, and enclave environments to include … design and implementation of trusted relations among external systems and architectures. Assesses and mitigates system security threats/risks throughout the program life cycle. Contributes the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations. Reviews certification and accreditation (C&A) documentation, providing feedback on completeness and compliance of its … to: system security design process; engineering life cycle; information domain; cross domain solutions; commercial off-the-shelf and government off-the-shelf cryptography; identification, authentication; and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing; certification and accreditation process; principles of IA (confidentiality, integrity, non-repudiation, availability, and access control); and security More ❯

computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations and recommend mitigation strategies. Validates and verifies system security requirements definitions and analysis and establishes system security designs. Designs, develops, implements and/or integrates IA and security systems and system components including those for networking, computing, and enclave environments to include … design and implementation of trusted relations among external systems and architectures. Assesses and mitigates system security threats/risks throughout the program life cycle. Contributes the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations. Reviews certification and accreditation (C&A) documentation, providing feedback on completeness and compliance of its … to: system security design process; engineering life cycle; information domain; cross domain solutions; commercial off-the-shelf and government off-the-shelf cryptography; identification, authentication; and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing; certification and accreditation process; principles of IA (confidentiality, integrity, non-repudiation, availability, and access control); and security More ❯

computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations and recommend mitigation strategies. Validates and verifies system security requirements definitions and analysis and establishes system security designs. Designs, develops, implements and/or integrates IA and security systems and system components including those for networking, computing, and enclave environments to include … and implementation of trusted relations among external systems and architectures. Assesses and mitigates system security threats/risks throughout the program life cycle. Contributes to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations. Reviews certification and accreditation (C&A) documentation, providing feedback on completeness and compliance of its … to : system security design process; engineering life cycle; information domain; cross domain solutions; commercial off-the-shelf and government off-the-shelf cryptography; identification; authentication; and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing; certification and accreditation process; principles of IA (confidentiality, integrity, non-repudiation, availability, and access control); and security More ❯

Overview We are seeking applicants with four to eight years of experience possessing strong quantitative background with an emphasis in Department of Defense (DoD) acquisition cost estimating analysis, familiarity with various cost analysis models and tools, strong analytical, interpersonal, and presentation skills. Seeking a highly motivated individual with a strong work ethic, ability to work autonomously or in … a team environment, with excellent communication, quantitative, research and analytical skills to provide cost estimating/analysis and budget analysis and execution support for Air Force acquisition programs. Microsoft Office proficiency (Excel, Word, and Power Point) and experience in cost modeling and cost analysis of weapon systems. Responsibilities Individual will perform a variety of cost and economic … analysis. Work may include cost research, data collection, parametric cost estimating, cost and schedule estimating, life cycle cost analysis, cost estimating relationship and model development, cost risk analysis, project forecasting and risk assessment, cost-benefit analysis, and software cost estimating. Skills Required We are seeking applicants with four to eight years of experience possessing strong More ❯

Overview Nakupuna Solutions is looking for a Risk Analysis and Management (RAM) Program Analyst to support the Bureau of Administrations' Office of the Procurement Executive, Office of Risk Analysis and Management (A/OPE/CECAS/RAM). The Risk Analysis and Management (RAM) Program Analyst is responsible for Counter Terrorism (CT) vetting … grants by the Department to ensure that none have connections and/or are supporters to terrorism. Vetting staff are not looking at all source intelligence and providing finished analysis: they gather information that is passed to program offices for decisions. The Department does not vet: government to government assistance, inter-agency transfers, assistance to international organizations, urgent humanitarian … and responsibilities to this job at any time due to reasonable accommodation or other reasons. Conduct vetting of organizations and key individuals for performance in high threat/high risk areas. This function includes but is not limited to: Receiving and inputting the request for vetting Reviewing and verifying the request for vetting Performing the vetting searches and conducting More ❯

inputs from all programs. Qualified candidates will interface with all elements of the program team to develop and support regular maintenance of the program IMS. Candidates will perform schedule analysis in support of assigned programs or projects. Ensures major projects and program schedules and plans are integrated across company functional groups including finance, engineering, material, manufacturing, and quality. Tracks … plans and schedules, performs risk analysis, identifies, and resolves critical path and network logic conflicts. Utilizes Gantt, Critical path, Driving Path, Variance metrics, milestone charts, earned value management and other project management techniques to gauge progress and identify performance variances to facilitate focus and intervention on critical areas. Ensures compliance with internal program procedures and project control system … May lead or participate in scheduling status reviews. Skills/Experience: Essential Functions: Develop integrated master schedules using IMP, SOW and WBS. Creates and tracks plans and schedules, performs risk analysis, identifies and resolves critical path and network logic conflicts. Working knowledge of Planning & Scheduling Excellence Guide (PASEG), Version 4.0, EVMS Standard (EIA 748-D), Integrated Product and More ❯

in identifying the overall security requirements for protecting data and ensuring the implementation of appropriate information security controls. The ideal candidate will have expertise in performing and analyzing security risk assessments, risk analysis, and security control assessments, as well as a deep understanding of security management processes. You will play a key role in supporting the organization … s cybersecurity objectives, interacting with IT staff, customers, and high-level corporate officers. Key Responsibilities: Perform security planning, security assessment, risk analysis, risk assessment, and risk management support activities Perform risk assessment and management to support integration of legacy systems into existing IT environment Review and analyze Cybersecurity built into systems to be deployed to … operational environments Prepare risk assessment, plan of actions, authorization recommendations, and related security authorization documentation Qualifications: Required: Current Active TS/SCI with POLY Eight (8) years of experience as an IT Risk Assessor, System Security Engineer, Information Systems Security Manager or DAO in programs and contracts of similar scope, type and complexity is required. A Bachelor's More ❯

analysis. Design, develop, implement and/or integrate Cybersecurity and security systems and system components and assist architects and systems developers in implementation of appropriate information security functionality. Perform risk analysis and management, recommending solutions when necessary. What you'll do Information Systems Security Engineer (ISSE) Requirements Participate as the primary security engineering representative on engineering teams for … Cybersecurity architectures, systems, or system components. Support the Government in the enforcement of the design and implementation of trusted relationships among external systems and architectures. Support security planning, assessment, risk analysis, and risk management. Identify overall security requirements for the proper handling of Government data. Provide security planning, assessment, risk analysis, and risk management. More ❯

RFP products. • Review acquisition documents and provides comments with programmatic perspective to ensure consistency and accuracy. Documents may include, but are not limited to, ADMs, LCSP, Acquisition Strategies, APBs, Risk Management Plans, PMRs and milestone decision briefings. • Support, prepare, review and develop acquisition reports, including statutory and regulatory acquisition report and milestone review documentations identified in DoDI 5000.02. • Support … and potential cost avoidance. • Assist with planning, evaluating and implementing program acquisition strategies. This includes DoD and AF policy and/or guidance; technical approach and/or requirements; risk assessment; and realism in achieving a product suitable for the warfighter within cost, schedule, and performance constraints. Also includes broad range of program acquisition strategies, market research, evaluating deliverables … in DoDI 5000.80, Operation of the Middle Tier of Acquisition and DoDI 5000.81, Urgent Capability Acquisition. • Support and coordinate with program level scheduling personnel. • Develop, maintain, and update program risk management plans IAW the Risk Management Guide for DoD Acquisition, AFPAM 63-128, and the Air Force RI3 Guidebook; facilitate program risk identification, risk analysis More ❯

support of hardware, software, and service acquisition and life cycle management. Participate in meetings and support specified Program Integrated Product Teams (IPTs). Provide specialized technical, manufacturing, and management risk analysis leading to risk assessments/recommendations to inform government officials of business and technology transition risks and mitigations for SBIR Small Business Concerns (SBC). Education … have science and technology process experience. At least six (6) years of experience in 2 of the following Defense acquisition areas: logistics, research and development, configuration management or systems analysis/design. Demonstrated knowledge in one or more of the following areas: program management, systems engineering, system acquisition, financial management, test and evaluation or integrated logistics support. Demonstrated knowledge … and/or familiarity with the DoD and SECNAV 5000 acquisition series, Federal and DoD acquisition regulations and PPBE process. Demonstrated knowledge in risk analysis/risk management Demonstrated knowledge in developing a business plan Demonstrated knowledge in specialized and focused company management assessment recommendations. Preferred Experience: Over ten (10) years of experience performing work related to More ❯

computing environments to identify points of vulnerability, non-compliance with established Information Assurance (IA) standards and regulations, and recommend mitigation strategies. Validates and verifies system security requirements definitions and analysis and establishes system security designs. Designs, develops, implements and/or integrates IA and security systems and system components including those for networking, computing, and enclave environments to include … design and implementation of trusted relations among external systems and architectures. Assesses and mitigates system security threats/risks throughout the program lifecycle. Contributes to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations. Reviews certification and accreditation (C&A) documentation, providing feedback on completeness and compliance of its … following: system security design process; engineering life cycle; information domain; cross domain solutions; commercial off-the-shelf and government off-the-shelf cryptography; identification; authentication and authorization; system integration; risk management; intrusion detection; contingency planning; incident handling; configuration control; change management; auditing; certification and accreditation process; principles of IA (confidentiality, integrity, non-repudiation, availability, and access control); and security More ❯

the time of application. What you will be doing: The contractor shall provide cyber security and security engineering services for the Fort Meade customer including system security engineering, cybersecurity risk assessments, and security architecture support. The ISSE shall perform, or review, technical security assessments of computing environments to identify points of vulnerability, non-compliance with established cybersecurity standards and … among external systems and architectures Applies knowledge of cybersecurity policy, procedures, and workforce structure to design, develop, and implement secure networking, computing, and enclave environments Supports security planning, assessment, risk analysis, and risk management Interacts with the customer and other project team members during meetings, presentations, and briefings Designs, develops, implements and/or integrates cybersecurity and … developers in the identification and implementation of appropriate information security functionality to ensure uniform application of Agency security policy and enterprise solutions Assesses and mitigates system security threats/risk throughout the program life cycle Contributes to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations Applies system More ❯

environments. Our team of security engineers support enhancements to system security architecture and cyber security capabilities; manage multiple system security plans for development, test and production systems following the Risk Management Framework (RMF); manage cross domain capabilities; and support Security Verification Testing (SVT) of relevant Type 1 devices. You will provide support for adding new capabilities to a complex … current and desired system security architecture. Assessing and mitigating system security threats and risks throughout the program life cycle. Leading and/or contributing to the security planning, assessment, risk analysis, risk management, certification and awareness activities for various system and networking operations. Effectively collaborating with other internal technical experts on a day-to-day basis. Communicating … providing advice to Program Managers, Customer technical experts, and internal program teams. Formulating security compliance requirements for new system features. Identifying and remediating security issues throughout the system. Supporting risk assessment, risk management, security control assessment, continuous monitoring, service design, and other IA program support functions. Working with development teams to enrich team-wide understanding of different types More ❯

environments. Our team of security engineers support enhancements to system security architecture and cyber security capabilities; manage multiple system security plans for development, test and production systems following the Risk Management Framework (RMF); manage cross domain capabilities; and support Security Verification Testing (SVT) of relevant Type 1 devices. You will provide support for adding new capabilities to a complex … current and desired system security architecture. Assessing and mitigating system security threats and risks throughout the program life cycle. Leading and/or contributing to the security planning, assessment, risk analysis, risk management, certification and awareness activities for various system and networking operations. Effectively collaborating with other internal technical experts on a day-to-day basis. Communicating … providing advice to Program Managers, Customer technical experts, and internal program teams. Formulating security compliance requirements for new system features. Identifying and remediating security issues throughout the system. Supporting risk assessment, risk management, security control assessment, continuous monitoring, service design, and other IA program support functions. Working with development teams to enrich team-wide understanding of different types More ❯