1 to 25 of 522 Risk Assessment Jobs

Responsible for assisting in identifying the overall security requirements for the protection of data, to ensure the implementation of appropriate information security controls, and perform and analyze the security risk assessment, risk analysis, risk management process, security control assessments, and awareness activities for systems and networking operations. Provide assistance to ensure Cybersecurity functions are included in … integration of legacy systems. Contribute to the acquisition/RDT&E environment and building Cybersecurity into systems deployed in operational environments. Prepare security authorization documentation. Perform security planning, security assessment, risk analysis, risk assessment, and risk management support activities Perform risk assessment and management to support integration of legacy systems into existing IT … environment Review and analyze Cybersecurity built into systems to be deployed to operational environments Prepare risk assessment, plan of actions, authorization recommendations, and related security authorization documentation Identify and support overall security requirements for the protection of data to ensure the implementation of information security policies, activities, and controls Ensure Cybersecurity functions are included in the development and More ❯

Responsible for assisting in identifying the overall security requirements for the protection of data, to ensure the implementation of appropriate information security controls, and perform and analyze the security risk assessment, risk analysis, risk management process, security control assessments, and awareness activities for systems and networking operations. Provide assistance to ensure Cybersecurity functions are included in … integration of legacy systems. Contribute to the acquisition/RDT&E environment and building Cybersecurity into systems deployed in operational environments. Prepare security authorization documentation. Perform security planning, security assessment, risk analysis, risk assessment, and risk management support activities Perform risk assessment and management to support integration of legacy systems into existing IT … environment Review and analyze Cybersecurity built into systems to be deployed to operational environments Prepare risk assessment, plan of actions, authorization recommendations, and related security authorization documentation Identify and support overall security requirements for the protection of data to ensure the implementation of information security policies, activities, and controls Ensure Cybersecurity functions are included in the development and More ❯

in identifying the overall security requirements for protecting data and ensuring the implementation of appropriate information security controls. The ideal candidate will have expertise in performing and analyzing security risk assessments, risk analysis, and security control assessments, as well as a deep understanding of security management processes. You will play a key role in supporting the organization's … cybersecurity objectives, interacting with IT staff, customers, and high-level corporate officers. Key Responsibilities: Perform security planning, security assessment, risk analysis, risk assessment, and risk management support activities Perform risk assessment and management to support integration of legacy systems into existing IT environment Review and analyze Cybersecurity built into systems to be deployed … to operational environments Prepare risk assessment, plan of actions, authorization recommendations, and related security authorization documentation Qualifications: Required: Current Active TS/SCI with POLY Eight (8) years of experience as an IT Risk Assessor, System Security Engineer, Information Systems Security Manager or DAO in programs and contracts of similar scope, type and complexity is required. A More ❯

environments. Our team of security engineers support enhancements to system security architecture and cyber security capabilities; manage multiple system security plans for development, test and production systems following the Risk Management Framework (RMF); manage cross domain capabilities; and support Security Verification Testing (SVT) of relevant Type 1 devices. You will provide support for adding new capabilities to a complex … on current and desired system security architecture. Assessing and mitigating system security threats and risks throughout the program life cycle. Leading and/or contributing to the security planning, assessment, risk analysis, risk management, certification and awareness activities for various system and networking operations. Effectively collaborating with other internal technical experts on a day-to-day basis. … providing advice to Program Managers, Customer technical experts, and internal program teams. Formulating security compliance requirements for new system features. Identifying and remediating security issues throughout the system. Supporting risk assessment, risk management, security control assessment, continuous monitoring, service design, and other IA program support functions. Working with development teams to enrich team-wide understanding of More ❯

environments. Our team of security engineers support enhancements to system security architecture and cyber security capabilities; manage multiple system security plans for development, test and production systems following the Risk Management Framework (RMF); manage cross domain capabilities; and support Security Verification Testing (SVT) of relevant Type 1 devices. You will provide support for adding new capabilities to a complex … on current and desired system security architecture. Assessing and mitigating system security threats and risks throughout the program life cycle. Leading and/or contributing to the security planning, assessment, risk analysis, risk management, certification and awareness activities for various system and networking operations. Effectively collaborating with other internal technical experts on a day-to-day basis. … providing advice to Program Managers, Customer technical experts, and internal program teams. Formulating security compliance requirements for new system features. Identifying and remediating security issues throughout the system. Supporting risk assessment, risk management, security control assessment, continuous monitoring, service design, and other IA program support functions. Working with development teams to enrich team-wide understanding of More ❯

on current and desired system security architecture. Assessing and mitigating system security threats and risks throughout the program life cycle. Leading and/or contributing to the security planning, assessment, risk analysis, risk management, certification and awareness activities for various system and networking operations. Effectively collaborating with other internal technical experts on a day-to-day basis. … providing advice to Program Managers, Customer technical experts, and internal program teams. Formulating security compliance requirements for new system features. Identifying and remediating security issues throughout the system. Supporting risk assessment, risk management, security control assessment, continuous monitoring, service design, and other IA program support functions. Working with development teams to enrich team-wide understanding of … have excellent interpersonal skills. MDOPS Preferred Education, Experience, & Skills Must have a solid understanding of security practices and policies and hands-on vulnerability testing experience. Must have experience applying Risk Management Framework. Must have experience formulating and assessing IT security policy. Must have demonstrated knowledge of and experience with common security tools, such as Nessus, NMAP and Wireshark hardware More ❯

must. • Interact with members of the technical team to understand the current system, subsystems, and component specifications. • Responsible for understanding entire projects or processes spanning multiple technical areas. • Support risk assessment, risk management, security control assessment, continuous monitoring, service design, and other IA program support functions. • Support and assist in documentation production using various software tools … formatting and style throughout documentation. • Participate in the development, facilitation, and coordination of system documentation such as: System Engineering Plans; Initial Capabilities Documents; Requirements Specifications; and Interface Control Documentation; Assessment and authorization documentation (Body of Evidence) for management and continuous monitoring of information systems. • Effectively communicates with the customer and internal team members across multiple areas. • Assist with the … scans for each system and work with vendor and technical leads to bring findings into remediation; Document detailed Plans of Actions and Milestones (POAMs) for all open findings. • Supporting risk assessment, risk management, security control assessment, continuous monitoring, service design, and other IA program support functions. • Employing SE approach for systems planning design, execution, and sustainment. More ❯

Supply Chain Risk Assessor Rate - £500 (a day) Duration - 6 Months (Initially) Location - London (Hybrid) Ir35 - Inside (Must use an umbrella company) Key Responsibilities: Risk Posture Articulation: Develop and communicate a clear understanding of the FOS (Function of Supply) supply chain risk posture, taking into account critical factors for each supplier such as controls, policies, procedures, and … overall risk management frameworks in alignment with established security standards and industry best practices. Risk Assessment Prioritization: Conduct comprehensive risk assessments for each supplier, categorized by risk priority, based on tier levels. Ensure that existing risk assessments are up-to-date, and identify any gaps in risk management practices. Where necessary, lead the … development of new or updated risk assessments to address these gaps. Supplier Questionnaire Refinement: Oversee the supplier questionnaire process, ensuring that it accurately captures the relevant data needed to assess risk levels effectively. If necessary, refine and improve the questionnaire to ensure its efficacy in gathering the necessary information. Framework Development: Design and implement a repeatable and scalable More ❯

bonus and benefits Hybrid working available (3 days in the office) Our client, a dynamic and rapidly growing UK-based EMI FinTech Payments firm, is seeking an experienced Enterprise Risk Analyst to support their Head of Risk. This is a focused Enterprise Risk Analyst role dedicated entirely to the Second Line of Defence (2LOD), centred on embedding the … firm’s Governance, Risk, and Compliance (GRC) model. You will be instrumental in the day-to-day operation of the ERM framework, ensuring risk is managed consistently and strategically across the entire business. Duties of the Enterprise Risk Analyst to include: Risk Register Management: Own the central Risk Register , ensuring all key risks (Strategic, Financial … Operational, and Compliance) are accurately identified, assessed, and maintained. Risk Assessment Cycle: Facilitate and manage the formal Risk and Control Self-Assessment (RCSA) process across all business units. Control Framework: Maintain and evolve the company’s Risk Control Framework , ensuring controls are effective and aligned with the established risk appetite. Residual Risk Analysis More ❯

for a prime contract that is based out of our Columbia, MD office. As a DAO3., you will serve on a team that is responsible for the Authorization and Assessment process under the Risk Management Framework (RMF) for new and existing information systems and will be expected to maintain Authority to Operate compliance for all assigned systems. Responsibilities … Responsible for assisting in identifying the overall security requirements for the protection of data, to ensure the implementation of appropriate information security controls, and perform and analyze the security risk assessment, risk analysis, risk management process, security control assessments, and awareness activities for systems and networking operations. Provide assistance to ensure Cybersecurity functions are included in … and building Cybersecurity into systems deployed in operational environments. Prepare security authorization documentation. Here's What You'll Need: Eight (8) years of related work experience as an IT Risk Assessor, System Security Engineer, Information Systems Security Manager or DAO. A Bachelor's degree in Computer Science, Information Technology Engineering, or related field. In lieu of a Bachelor's More ❯

on current and desired system security architecture. Assessing and mitigating system security threats and risks throughout the program life cycle. Leading and/or contributing to the security planning, assessment, risk analysis, risk management, certification and awareness activities for various system and networking operations. Effectively collaborating with other internal technical experts on a day-to-day basis. … providing advice to Program Managers, Customer technical experts, and internal program teams. Formulating security compliance requirements for new system features. Identifying and remediating security issues throughout the system. Supporting risk assessment, risk management, security control assessment, continuous monitoring, service design, and other IA program support functions. Working with development teams to enrich team-wide understanding of More ❯

supporting briefing opportunities of interest for technology sponsors/mission partners. Problem Solving: Resolving programmatic and technical equipment issues involving customer programs, the IC community, and the military services. Risk Assessment: Providing cryptographic risk assessment support for satellite programs to the designated approving official and/or Chief lnformation Security Officer. Systems: Providing cyber security advice … cryptographic solutions Documentation: Facilitate the staffing of crypto design documentation Schedules: Track the work of other contracts related to requirements, issues, and schedules Program: Deliver programmatic expertise as required Risk: Deliver cryptographic risk assessment support to programs Support: Deliver implementation and integration support for key management systems Strategy: Advise customer on crypto acquisition strategies Work Environment: Location More ❯

Sr. Risk Manager, Data Risk Management Do you want to be part of an organization that's dedicated to helping Capital One manage data and, identify and effectively mitigate risk - for our customers, our communities and our associates? As part of Enterprise Data Risk Management (EDRM), you'll work with talented associates to provide oversight and … effective challenge to ensure that our businesses effectively manage data risk. This includes enabling our organizations to maintain a sustainable and holistic operational risk profile in order to deliver superior products while also protecting our customers. You'll also bring your unique perspective and experiences to help us be rigorous, curious and creative. As a Second Line Validator - Data … Risk Management (Sr. Risk Manager) at Capital One, you will be responsible for validating the first line data asset to ensure policy compliance and the sufficiency of the first line data risk controls. You will leverage your deep expertise in data risk management to provide effective challenges, ensuring the company's data management practices align with More ❯

for supporting applications. • Configure, administer, and troubleshoot endpoint security servers and products. • Develop programs/scripts to support process automation as needed. • Assist in the coordination and completion of Risk Management Framework (RMF) security packages utilizing Enterprise Mission Assurance Support Service (eMASS) in accordance with Navy Cybersecurity Assessment and Authorization (A&A) requirements. Ensure RMF package is developed … Officers (PSOs) and Navy Qualified Validators with regard to weekly RMF security package updates, task status, completion schedule, and/or control validation plan. • Assist with network vulnerability analysis, risk mitigation analysis, and Plan of Action and Milestone (POAM) and security control implementation tracking with RMF security packages utilizing Xacta. • Provide day to day support with security package creation … security control assessment, risk assessment, and POAM creation/remediation, and the continuous monitoring requirements for CMSA LANT's Circuit Package and Tactical Support System Package. • Ensure network performance monitoring and security event monitoring system dashboards are available to be viewed in the Network Operations Center during normal business hours. Education & Experience Requirements: • Bachelor's Degree in More ❯

Cyber Security Supply Chain Analyst Location: Remote Contract: Inside IR35 Day rate: Up to £670 per day Duration: 6 Months Start date: ASAP Key skills: Supply Chain, Risk Management, TPRM process, NCSC CAF framework We have an opportunity with one of the UK's biggest Retailers who have a network of branches nationwide. MI & Data Automation Analyst, you will … and wider business functions responsible for facilitating supplier onboarding, operational management and offboarding activities, to review, establish and drive adoption of a revised target operating model for supplier security risk management. The goal is to ensure that the Client has a robust and continually managed enterprise-wide supplier cyber risk assessment process to reduce exposure to potential … compromise of security, compliance or operational integrity of its supply chain. Principal accountabilities: - Key point of contact and subject matter expertise for third-party risk guidance - Oversee the review of target supply chain risk assessment processes, establishing agreed recommendations and operating model in accordance with the National Cyber Security Centre Cyber Assessment Framework principles - Product and More ❯

Cyber Security Supply Chain Analyst Location: Remote Contract: Inside IR35 Day rate: Up to £670 per day Duration: 6 Months Start date: ASAP Key skills: Supply Chain, Risk Management, TPRM process, NCSC CAF framework We have an opportunity with one of the UK's biggest Retailers who have a network of branches nationwide. MI & Data Automation Analyst, you will … and wider business functions responsible for facilitating supplier onboarding, operational management and offboarding activities, to review, establish and drive adoption of a revised target operating model for supplier security risk management. The goal is to ensure that the Client has a robust and continually managed enterprise-wide supplier cyber risk assessment process to reduce exposure to potential … compromise of security, compliance or operational integrity of its supply chain. Principal accountabilities: - Key point of contact and subject matter expertise for third-party risk guidance - Oversee the review of target supply chain risk assessment processes, establishing agreed recommendations and operating model in accordance with the National Cyber Security Centre Cyber Assessment Framework principles - Product and More ❯

and tailor the security control baseline with applicable overlays. Assist with development, maintenance, and tracking of the SP. Lead the security control implementation and testing efforts. Perform vulnerability-level risk assessment on the POA&M/RISK Assessment Worksheet. Assist with any security testing required as part of A&A or annual reviews. Assist in the … including leadership support, financial resources, and key security personnel, to support information technology (IT) security goals and objectives and reduce overall organizational risk. Advise senior management (e.g., CIO) on risk levels and security posture. Advise appropriate senior leadership or Authorizing Official of changes affecting the organization's cybersecurity posture. Collect and maintain data needed to meet system cybersecurity reporting. … address organizational security objective. Identify information technology (IT) security program implications of new technologies or technology upgrades. Interpret patterns of non compliance to determine their impact on levels of risk and/or overall effectiveness of the enterprise's cybersecurity program. Manage the monitoring of information security data sources to maintain organizational situational awareness. Oversee the information security training More ❯

support, IT and cyber policy writing and program implementation support. Our team will provide direct support cybersecurity policy, A&A artifacts, validation and security posture reviews. Key Responsibilities Provide risk assessment related technical consultations to Program Managers, Information System Owners, Information System Security Engineers (ISSE), and ISSOs. Prepare Security Assessment Report (SAR) and SAR Executive Summary based … on assessment results and in accordance with NAVSEA SOPs. Provide a summary of non-compliant security controls in Risk Assessment tab in eMASS in accordance with Navy SCA Risk Assessment Guide and the SCA. Verify that all vulnerabilities from raw assessment results are properly documented in the system's eMASS POA&M. Ensure traceability … Independently review system configurations to determine compliance with applicable STIGs and SRG. Validate security control implementation through on-site and in-person testing, examination, and interviews in support of Risk Assessments and Annual Security Reviews. Assist with the development and execute Security Assessment Plans (SAP). Serve as an independent and objective assessor, and extension of the Navy More ❯

security operations of the system. Assist ISSEs and ISSOs with evaluating security solutions to ensure they meet security requirements for processing classified information. Manage the performance of vulnerability/risk assessment analysis to support security authorization. Provide management support to configuration management (CM) for information system security software, hardware, and firmware. Manage changes to systems and assess the … security impact of those changes. Manage the process and preparation of documentation reviews to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs). Support security authorization activities in compliance with NSA/CSS Risk Management Framework (RMF) process and DoD Information Assurance Certification and Accreditation … organization's mission goals and needs, existing security products, and ongoing programs in the multi-level security arena Perform functional allocation and identify resources required for each task Perform risk analysis that also includes risk assessment Enable Government planning, coordination, and oversight of organizational implementation of information security services Enable design and implementation of future IT systems More ❯

security operations of the system. Assist ISSEs and ISSOs with evaluating security solutions to ensure they meet security requirements for processing classified information. Manage the performance of vulnerability/risk assessment analysis to support security authorization. Provide management support to configuration management (CM) for information system security software, hardware and firmware. Manage changes to systems and assess the … security impact of those changes. Manage the process and preparation of documentation reviews to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs). Support security authorization activities in compliance with MPO/CSS Risk Management Framework (RMF) process and DoD Information Assurance Certification and Accreditation … organization s mission goals and needs, existing security products, and ongoing programs in the multi-level security arena Perform functional allocation and identify resources required for each task Perform risk analysis that also includes risk assessment Enable Government planning, coordination, and oversight of organizational implementation of information security services Enable design and implementation of future IT systems More ❯

security operations of the system. Assist ISSEs and ISSOs with evaluating security solutions to ensure they meet security requirements for processing classified information. Manage the performance of vulnerability/risk assessment analysis to support security authorization. Provide management support to configuration management (CM) for information system security software, hardware and firmware. Manage changes to systems and assess the … security impact of those changes. Manage the process and preparation of documentation reviews to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs). Support security authorization activities in compliance with MPO/CSS Risk Management Framework (RMF) process and DoD Information Assurance Certification and Accreditation … organization s mission goals and needs, existing security products, and ongoing programs in the multi-level security arena Perform functional allocation and identify resources required for each task Perform risk analysis that also includes risk assessment Enable Government planning, coordination, and oversight of organizational implementation of information security services Enable design and implementation of future IT systems More ❯

security operations of the system. Assist ISSEs and ISSOs with evaluating security solutions to ensure they meet security requirements for processing classified information. Manage the performance of vulnerability/risk assessment analysis to support security authorization. Provide management support to configuration management (CM) for information system security SW, HW, and FW. Manage changes to systems and assess the … security impact of those changes. Manage the process and preparation of documentation reviews to include SSPs, Risk Assessment Reports, C&A packages, and System Requirements Traceability Matrices (SRTMs). Support security authorization activities in compliance with DoD RMF process and DIACAP. The Level 3 Information System Security Manager shall possess the following capabilities Perform requirements gathering and analysis … organization's mission goals and needs, existing security products, and ongoing programs in the multi-level security arena Perform functional allocation and identify resources required for each task Perform risk analysis that also includes risk assessment Enable Government planning, coordination, and oversight of organizational implementation of information security services Enable design and implementation of future IT systems More ❯

security operations of the system. Assist ISSEs and ISSOs with evaluating security solutions to ensure they meet security requirements for processing classified information. Manage the performance of vulnerability/risk assessment analysis to support security authorization. Provide management support to configuration management (CM) for information system security SW, HW, and FW. Manage changes to systems and assess the … security impact of those changes. Manage the process and preparation of documentation reviews to include SSPs, Risk Assessment Reports, C&A packages, and System Requirements Traceability Matrices (SRTMs). Support security authorization activities in compliance with DoD RMF process and DIACAP. The Level 3 Information System Security Manager shall possess the following capabilities Perform requirements gathering and analysis … organization's mission goals and needs, existing security products, and ongoing programs in the multi-level security arena Perform functional allocation and identify resources required for each task Perform risk analysis that also includes risk assessment Enable Government planning, coordination, and oversight of organizational implementation of information security services Enable design and implementation of future IT systems More ❯

lead the SME lending operations and capital markets strategy of our business. This role will be responsible for orchestrating the end-to-end lending lifecycle, structuring funding strategies, managing risk, and cultivating investor and capital market relationships. You will ensure that our lending portfolio grows in a disciplined fashion while ensuring capital sufficiency, compliance, and profitability. What do we … want to achieve together? Lending Operations & Strategy Define and execute the lending strategy for SMEs aligned with business goals and market dynamics Oversee origination, underwriting, credit assessment, approval, documentation, disbursement, and servicing of loans Develop credit policies, guidelines, scoring models, and risk frameworks Monitor portfolio performance, credit quality, delinquencies, provisions, and take corrective actions when needed Lead a … Ensure compliance with regulatory and reporting requirements for capital markets instruments Forecast capital needs, liquidity, cash flow, and funding gaps Lead negotiations, structuring, and issuance of capital markets transactions Risk Management & Governance Oversee risk measurement and management: credit risk, market risk, liquidity risk, operational risk Implement and maintain models and metrics (e.g. stress testing More ❯

RFP products. • Review acquisition documents and provides comments with programmatic perspective to ensure consistency and accuracy. Documents may include, but are not limited to, ADMs, LCSP, Acquisition Strategies, APBs, Risk Management Plans, PMRs and milestone decision briefings. • Support, prepare, review and develop acquisition reports, including statutory and regulatory acquisition report and milestone review documentations identified in DoDI 5000.02. • Support … and potential cost avoidance. • Assist with planning, evaluating and implementing program acquisition strategies. This includes DoD and AF policy and/or guidance; technical approach and/or requirements; risk assessment; and realism in achieving a product suitable for the warfighter within cost, schedule, and performance constraints. Also includes broad range of program acquisition strategies, market research, evaluating … in DoDI 5000.80, Operation of the Middle Tier of Acquisition and DoDI 5000.81, Urgent Capability Acquisition. • Support and coordinate with program level scheduling personnel. • Develop, maintain, and update program risk management plans IAW the Risk Management Guide for DoD Acquisition, AFPAM 63-128, and the Air Force RI3 Guidebook; facilitate program risk identification, risk analysis, risk More ❯