51 to 75 of 306 Permanent Risk Assessment Jobs

customer at Camp Roberts in San Miguel, California. Job Responsibilities include: Supports our Army customer by providing a critical cybersecurity role by ensuring continuous monitoring in accordance with DoD Risk Management Framework (RMF), and through system monitoring and analysis support for the detection of cyber incidents and provides recommendations on how to correct findings. This role combines the duties … systems, ensuring full compliance with RMF, DoDI 8510.01, and NIST SP 800-53 security control baselines. Manage and maintain all RMF-related documentation including System Security Plans (SSPs), Security Assessment Reports (SARs), Risk Assessment Reports (RARs), and Plan of Action and Milestones (POA&Ms). Conduct security control assessments and facilitate ongoing authorization (ATO/ATC) activities. More ❯

technical expert responsible for implementing, managing, and maintaining comprehensive cybersecurity operations across Marine Corps University's complex IT infrastructure. This role combines strategic oversight with direct technical execution of Risk Management Framework (RMF) processes, security tool administration, and daily cybersecurity operations while ensuring compliance with DoD directives throughout the MCU environment. In this position you will: Responsible for developing … maintaining comprehensive cybersecurity strategies across all MCU network environments. Execute hands-on configuration of security policies, technical controls, and procedural frameworks to ensure full compliance with DoD Information Assurance Risk Management Framework (DIARMF) standards and Marine Corps cybersecurity directives. Author detailed security assessment reports, System Security Plans (SSPs), and Risk Assessment Reports (RARs) for multiple Authority … four years in senior-level positions managing complex DoD information systems and RMF processes. Active advanced security certification such as CISSP, CASP+ CE or CISM Expert-level proficiency with Risk Management Framework (RMF) processes including System Security Plan (SSP) development, Control Correlation Bridge (CCB) implementation, and Continuity of Operations Planning (COOP) documentation. Proven leadership capabilities with experience managing technical More ❯

Safety (Energized Electrical Work, Arc Flash, NPFA 70E) Control of Hazardous Energy (Lockout/Tagout), including familiarity of EU-OSHA Occupational Noise Exposure & Control Heat Stress & Illness Prevention Exposure Assessment (Industrial Hygiene) Emergency Response Planning Working at Heights Confined Space Entry Heavy Material Handling Powered Industrial Trucks (Forklifts) Construction-Related Risks (Cranes/Rigging, Trenching/Shoring, Mobile Elevated … Work Platforms (MEWPs), etc.) Fire/Life Safety Hazardous Substances Handling WasteManagement Ergonomics Spill Prevention Control and Countermeasures (SPCC) Risk Assessment and Mitigation methodology 3rdParty Safety Supplier Management Essential Job Functions Implement health and safety standards and principles, policies, and practices including but not limited to; safety management systems, training, risk assessments, assist with industrial hygiene assessments … Being accountable for EHS performance metrics and implementation of annual improvement plans. Periodically inspecting, auditing, andreviewing safe work practices to ensure compliance with regulations and company policies. Conduct workplace risk/exposure assessments for various classes of hazards. Supporting incident investigations and root cause analysis, so that corrective and preventive actions can be identified, communicated globally, and implemented. Conducting More ❯

support our Army customer in San Antonio, Texas Job Responsibilities include: Supports our Army customer by providing a critical cybersecurity role by ensuring continuous monitoring in accordance with DoD Risk Management Framework (RMF), and through system monitoring and analysis support for the detection of cyber incidents and provides recommendations on how to correct findings. This role combines the duties … systems, ensuring full compliance with RMF, DoDI 8510.01, and NIST SP 800-53 security control baselines. Manage and maintain all RMF-related documentation including System Security Plans (SSPs), Security Assessment Reports (SARs), Risk Assessment Reports (RARs), and Plan of Action and Milestones (POA&Ms). Conduct security control assessments and facilitate ongoing authorization (ATO/ATC) activities. More ❯

LLC (DI) is searching for a full-time Assistant Information System Security Officer (AISSO) to work in Washington, DC. The Assistant Information System Security Officer (AISSO) will provide comprehensive Risk Management Framework (RMF) support across various systems and environments, under the guidance of the ISSO and in alignment with DoD cybersecurity standards. Responsibilities: - Collaborate in the development and refinement … of Systems Engineering Risk Management Plans that comply with DoDI 8510.01 and current DoD RMF policies. - Support the creation and ongoing maintenance of Plan of Action and Milestones (POA&Ms) to address identified cybersecurity gaps, ensuring alignment with applicable STIGs. - Assist in performing Risk Assessments using tools like ACAS, Nessus, and SCAP, and generate thorough Risk Assessment Reports (RARs). - Contribute to the preparation, review, and organization of Assessment and Authorization (A&A) packages ensuring completeness, consistency, and accuracy across documentation sets. - Maintain and update entries in eMASS and deliver other cybersecurity-related documentation in MS Office or Visio formats. - Coordinate with Red and Blue Teams on vulnerability assessments and incident response activities. - Assist with More ❯

data. THE OPPORTUNITY As an ISSO Level 2, you'll be instrumental in transforming traditional security architectures to Zero Trust models while maintaining continuous security authorization under the NIST Risk Management Framework. You'll work with cutting-edge security tools including LatteArt, ScanBoy, Biscotti, Sear, and Exacta, ensuring our defense systems remain resilient against evolving cyber threats. This position … Leadership • Provide comprehensive System Security Plan (SSP) lifecycle support from initial development through continuous monitoring • Master and apply specialized security applications including LatteArt, ScanBoy, Biscotti, Sear, and Exacta • Lead Risk Management Framework (RMF) processes ensuring compliance with NIST standards and DoD directives • Develop and maintain Certification and Accreditation (C&A) packages for classified information systems • Prepare Risk Assessment … Maintain day-to-day security operations for multiple information systems processing classified data • Evaluate and implement security solutions meeting stringent requirements for classified information processing • Perform continuous vulnerability and risk assessments supporting ongoing authorization activities • Manage configuration control for security-relevant hardware, software, and firmware • Assess security impacts of system changes and coordinate remediation efforts Technical Security Management • Administer More ❯

ensure compliance with all associated controls and responsibilities in the day-to-day performance of their duties. Individuals working in departments that are considered to be in the high-risk category will be required to undergo advanced training based on their role and level of access. Individuals with access to modify data and the configuration baseline will require further … Data Environment Repository (SPIDER) Navy Data Environment (NDE) Open Architecture Retrieval System (OARS) Configuration Data Managers Database-Open Architecture (CDMD-OA) Configuration Management Professional (CMPro) Navy Tool for Interoperability Risk Assessment (NTIRA) Assured Compliance Assessment Solution (ACAS) Enterprise Mission Assurance Support Service (eMASS) Federal Information Security Management Act (FISMA) database Vulnerability Remediation Asset Manager (VRAM) Xacta Information … Assurance (IA) Manager and NSERC DoD Information Technology Portfolio Repository-DON (DITPR-DON) DON Application Database Management System (DADMS) Microsoft Visio, PEO C4I Risk Exchange Online Server Tool and Office Suite & Jira Online Tool Excellent organizational skills with the ability to identify, prioritize, and execute tasks to meet project deadlines consistently. DESIRED Knowledge of and practical experience with submarine More ❯

one mind, and one purpose, we can accomplish our mission and be an organization anyone would be proud to be a part of. POSITION SUMMARY Aleut is seeking an Assessment and Authorization (A&A) Assessor for Software/SaaS/Hardware to work with the United States Air Force Academy (USAFA) RMF team. This position requires personnel to work … Air Force, and USAFA cybersecurity policies and control requirements. Perform evaluations of acquisition requests and technical artifacts in accordance with AFI 17-101 and USAFA local procedures, assessing potential risk to mission systems, data confidentiality, and operational integrity. Coordinate with requestors, cybersecurity stakeholders, and acquisition personnel to gather relevant information and provide timely written recommendations for system integration or … risk-based rejection. Develop, maintain, and annually review a Standard Operating Procedure (SOP) for all assessment types to ensure consistent evaluation standards and alignment with evolving Air Force and DoD policies. Complete and document Privacy Impact Assessments (PIAs) (e.g., DD Form 2930) as required, in collaboration with system owners and in compliance with AFI 33-332, Air Force More ❯

Reports to: Team Leader, Analytics, Claims and Underwriting Solutions (International) Location: London/Hybrid Business Description Verisk Analytics is a multinational data and analytics risk assessment company and a leading source of information about insurance risk. To serve our clients, we draw upon our vast experience in data management and predictive modelling to offer decision analytics to the … insurance industry through underwriting to claims management in personal lines, commercial lines, and the London market. In underwriting we create sophisticated risk models to assist insurers with risk selection and accurate pricing. Our range of models is broad spanning residential and commercial property perils, motor insurance, SME business covers, travel, pet and health insurance. To feed our risk … and manage cases more effectively. Role Purpose Verisk are looking for a Data Scientist to support the development of various data science models to support the development of our risk management products. The International Analytics Team is a dynamic and exciting place to work: our projects are extremely varied and include developing supervised machine learning models, unsupervised clustering type More ❯

Ensure that protection and detection capabilities are acquired or developed using the IS security engineering approach and are consistent with organization-level cybersecurity architecture. • Participate in an information security risk assessment during the Security Assessment and Authorization process. • Participate in the development or modification of the computer environment cybersecurity program plans and requirements. • Recognize a possible security … violation and take appropriate action to report the incident, as required • Ensure plans of actions and milestones or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc. • Provide technical documents, incident reports, and findings from computer examinations, summaries, and other situational awareness information to higher headquarters • Develop and maintain RMF Assess and Authorize documentation … required to achieve an Authority to Operate (ATO). Prepare and maintain information systems ATO record on the Navy's Enterprise Mission Assurance Support Service (eMASS) • Run vulnerability assessment tools; ACAS vulnerability scanner, Security Content Automation Protocol (SCAP), STIG Viewe • Manage system/network vulnerabilities using the Vulnerability Remediation and Assets Manager (VRAM) Qualifications/Requirements: • MUST be a More ❯

The Security Engineer III participates in all aspects of information systems and network security including intrusion detection, incident response, vulnerability assessment, application security and compliance with the corporate information security policy. Primarily be responsible for implementing, operating and improving security technologies including DLP, Antivirus, IPS/IDS, End Point Protection, Database Activity Monitoring, Web Application Firewall and processes. Essential … security implementations, monitoring, and enforcement - Investigates, recommends, evaluates, deploys and integrates operational security tools and techniques to improve our ability to protect corporate assets and infrastructure - Participate in technical risk assessments and security exposure analyses of systems, networks and business applications - Analyze network security elements and overall network security architectural designs to ensure secure and optimal system and network …/procedures - Evaluate, implement, tune and operate Security Solutions such as IPS, Vulnerability scanning tools, encryption capabilities, etc. - Monitor and recommend improvements of security technologies and their various reports - Risk Management/Security Audit/Assessment Support/Ad-hoc support - Support security audit/assessment related activities and compliance reviews# - Performs other task, duties and projects More ❯

our customers. About the role As an Onboarding Analyst at Equals Group, you will be an integral part of a dedicated team responsible for conducting KYC checks and performing risk assessments on new business and personal customer applications You will collaborate closely with the Compliance and Risk departments to ensure that new customers are onboarded within the firm … s risk appetite framework while adhering to AML regulations and other relevant compliance requirements In this fast-paced environment, you will need to take initiative, think critically, and act quickly to ensure customers are onboarded smoothly while mitigating potential risks. About you We believe that certain skills are essential in order to be successful in this role and these … out individual interviews for shortlisted candidates and assess who is best suited for the role after we have discussed everything with you. Responsibilities Conduct Customer Due Diligence (CDD) and risk assessments on new business and personal customer applications, ensuring compliance with AML regulations Verify and validate the accuracy of customer information and supporting documentation, including identification, corporate structures, and More ❯

Implementing and development of the DHS IT security standards • Gathering and organizing technical information about the lab's mission goals and needs, existing security products, and ongoing programs • Performing risk analyses which also includes risk assessment • Planning and leading major technology assignments • Evaluating performance results and recommends major changes affecting short-term project growth and success - Functioning More ❯

tracking and reporting to the Technology Leadership Team and the wider organization. Become fully embedded into our engineering teams and practices to: Lead threat modeling, vulnerability prioritization, and hold risk assessment exercises. Monitor zero-day threats and vulnerabilities, ensuring they are properly prioritized and resolved by responsible teams. Guide architectural security reviews to ensure resilient, secure systems in … Experience of solving complex information security concerns in both a technical and strategic role. Be able to work with teams that build platform components securely. You can effectively apply risk mitigation strategies that align with the business and deliver large-scale security projects and improvements. Experience leading and coaching teams to success. Influencing best practice security concepts with Engineering … influence the business and teams into their adoption over time. Possess excellent verbal and written communication skills to be effective across global diverse teams Learn more about the LexisNexis Risk team and how we work here We are committed to providing a fair and accessible hiring process. If you have a disability or other need that requires accommodation or More ❯

array of industry-specific, combined property and casualty insurance solutions to customers. This includes SME solutions traded directly, Commercial Accounts traded via brokers, and Corporate Solutions to FTSE 350 Risk Managed companies. Are you a Senior Development Underwriter with strong technical underwriting knowledge of PI Cyber products? We are looking for a Senior Underwriter to join our Technology Underwriting … team, proactively seeking and managing new business submissions, quotes and bind renewal business. You will strategically partner with brokers to provide insurance solutions to customers, analysing and evaluating risk to achieve business goals. You are decisive, detail-oriented, and know how to build relationships internally and externally and negotiate terms to drive results. Your ability to independently assess complex … and retention of an assigned book of business primarily comprised of moderate to complex accounts across all our products. Underwrite and skillfully negotiate moderate to complex risks to minimise risk and maximise profitability, including Mid Term Adjustments (MTAs). Proactively manage your portfolio, ensuring key performance indicators are consistently achieved and you actively target new business and retention. Identify More ❯

internal teams, leadership, and external agencies to ensure full compliance with DoD and Air Force cybersecurity directives. Operating with a high degree of autonomy, the analyst advises leadership on risk mitigation strategies, drives security process improvements, and ensures operational readiness of systems at all classification levels. A constant focus on IT security vigilance, incident response, and COMSEC responsibilities is … certification and accreditation packages in accordance with DoD, AF, and intelligence community cybersecurity requirements, including RMF, NIST SP 800-53, ICD 503, and DoDI 8510.01. Analyze system vulnerabilities, interpret risk assessment results, and recommend remediation strategies to leadership. Oversee vulnerability scanning, patch management compliance, and configuration control processes across all AF TENCAP systems. Lead incident response efforts, coordinate More ❯

within a team environment consisting of program management, technical, production, financial and other supporting staff. This is a career building role that provides exposure to contract management, production operations, risk and opportunity management and program management practices. The ideal candidate will have strong teambuilding skills, exhibit strong in, and possess comprehensive verbal and written communication/presentation skills. Roles … Identifies performance variances to facilitate focus and intervention on critical areas with the technical (engineering and operations) leads. Works with the program team to develop courses of action and risk mitigation strategies to address performance issues. Perform thorough project analysis through metrics reviews and predictive analysis to enhance cost, schedule and technical performance. Perform Schedule risk analyses and … Science or related field 6+ years of program scheduling experience using Microsoft Project, Oracle P6, Deltek Open Plan or other related scheduling tool. Experience with Schedule Analytics and Schedule Risk Assessment tools. Working knowledge of EVMS guidelines and processes. What We Can Offer You Northrop Grumman provides a comprehensive benefits package and a work environment which encourages your More ❯

Environment Health & Safety Specialist - Davis, CA, Job ID 80411 University of California Agriculture and Natural Resources Job Description Environment Health and Safety (EH&S)/Risk Services (RSS) is a unit within ANR that provides occupational safety, environmental compliance, and risk management activities to ANR academics, staff, volunteers, and program participants. This requires consultation, communication, training, auditing, claims … management, risk assessment and mitigation support for all programs and units in ANR statewide. The Director of RSS reports to the Director of Facilities Planning and Management, reporting up to the ANR Associate Vice President for Administrative Services This position is a career appointment that is 100% fixed. The home department for this position is EH&S/… Risk Services. While this position normally is based in Davis, CA, this position is eligible for hybrid flexible work arrangements for applicants living in the State of California at this time. Please note that hybrid flexible work arrangements are subject to change by the University. Pay Scale: $26.82/hour to $36.49/hour Job Posting Close Date: This More ❯

Environment Health & Safety Specialist - Davis, CA, Job ID 80411 University of California Agriculture and Natural Resources Job Description Environment Health and Safety (EH&S)/Risk Services (RSS) is a unit within ANR that provides occupational safety, environmental compliance, and risk management activities to ANR academics, staff, volunteers, and program participants. This requires consultation, communication, training, auditing, claims … management, risk assessment and mitigation support for all programs and units in ANR statewide. The Director of RSS reports to the Director of Facilities Planning and Management, reporting up to the ANR Associate Vice President for Administrative Services This position is a career appointment that is 100% fixed. The home department for this position is EH&S/… Risk Services. While this position normally is based in Davis, CA, this position is eligible for hybrid flexible work arrangements for applicants living in the State of California at this time. Please note that hybrid flexible work arrangements are subject to change by the University. Pay Scale: $26.82/hour to $36.49/hour Job Posting Close Date: This More ❯

frameworks (Selenium, JUnit, or PyTest) is beneficial. Project & Stakeholder Management Skills: Excellent communication & coordination skills to collaborate with cross-functional teams, vendors, and business leaders. Strong problem-solving and risk assessment abilities to identify deployment risks and develop mitigation plans. Proficient in Microsoft Office applications (Word, Excel, PowerPoint). Familiarity with the ITIL 3 or 4 Framework. A More ❯

during all phases of the IS lifecycle • Ensure that system security documentation is developed, maintained, reviewed, and updated on a continuous basis • Conduct required IS vulnerability scans according to risk assessment parameters. • Develop Plan of Action and Milestones (POAMs) in response to reported security vulnerabilities • Manage the risks to ISs and other FBI assets by coordinating appropriate correction … system owner concurrence for correction or mitigation actions • Monitor security controls for FBI ISs to maintain security Authorized To Operate (ATO) • Upload all security control evidence to the Governance, Risk, and Compliance (GRC) application to support security control implementation during the monitoring phase • Ensure that changes to an FBI IS, its environment, and/or operational needs that may … with the system owner, ISSM, and ISSR JOB DESCRIPTION: ISSO Responsibilities: • Knowledgeable with Systems Development Lifecycle (SDLC) methodologies and continuous monitoring activities • Extensive experience analyzing information technology and system risk in complex environments and articulating results (verbal/reports) to all levels of management. • Demonstrated experience conducting information system security controls assessments (SCAs) and appling standard auditing techniques during More ❯

wide range of mission related cyberspace network activities to ensure mission success tailored to command, control, operational processes, and dependent space mission systems. • Identifies, assesses, and implements mitigations to risk within local cyberspace terrain deemed critical to mission accomplishment. • Develops mission thread data to support USSF mission owners, cyber security personnel, defensive cyber operators and program offices in assessing … acceptable risks to missions caused by cybersecurity deficiencies in systems and programs. • Utilizes all information collected to create and deliver an Operational Risk Assessment (ORA) and Asset Defense Plan (ADP) • Analyzes MRT-C results against mission system vulnerabilities and cyber threats to identify Key Terrain - Cyber for each USSF Mission. • Provides mission analysis support to USSF MRT-C … the effectiveness of defense-in-depth architecture against known vulnerabilities • Must have knowledge and experience to support analysis tasks • Must have extensive knowledge of Mission Assurance disciplines to include risk management, mission mapping, vulnerability assessments, and defensive cyber capabilities • Must have a detailed understanding of mission analysis techniques, FMA-C methodologies, and mission dependencies • Must have the ability to More ❯

Alexander Barnes is leading a confidential search for a Head of Financial Crime & Fraud Risk with a globally regulated FinTech. The role spans the entire AML organisation, with visibility at the board level - with a core focus on global AML, fraud, and risk management frameworks. The scope is both strategic and hands on, but ultimately responsible for shaping … and directing outcomes. Lead and expand the bank’s 1LoD financial crime and fraud risk functions Own global oversight of AML, KYC, sanctions, screening, fraud detection, and transaction monitoring (internal and vendor-delivered) Drive intelligence-led investigations and data-driven risk assessments across multiple jurisdictions Embed financial crime controls into product and market launches, balancing speed and safety … Partner with executives, investors, and regulators to provide clear risk insight and assurance Identify weaknesses across systems, vendors, and processes; deliver enhancements that stand up under scrutiny Who we're searching for: 10+ years in financial services with deep technical expertise across AML, fraud, and financial crime Proven track record scaling and optimising global financial crime operations in a More ❯

Alexander Barnes is leading a confidential search for a Head of Financial Crime & Fraud Risk with a globally regulated FinTech. The role spans the entire AML organisation, with visibility at the board level - with a core focus on global AML, fraud, and risk management frameworks. The scope is both strategic and hands on, but ultimately responsible for shaping … and directing outcomes. Lead and expand the bank’s 1LoD financial crime and fraud risk functions Own global oversight of AML, KYC, sanctions, screening, fraud detection, and transaction monitoring (internal and vendor-delivered) Drive intelligence-led investigations and data-driven risk assessments across multiple jurisdictions Embed financial crime controls into product and market launches, balancing speed and safety … Partner with executives, investors, and regulators to provide clear risk insight and assurance Identify weaknesses across systems, vendors, and processes; deliver enhancements that stand up under scrutiny Who we're searching for: 10+ years in financial services with deep technical expertise across AML, fraud, and financial crime Proven track record scaling and optimising global financial crime operations in a More ❯

Alexander Barnes is leading a confidential search for a Head of Financial Crime & Fraud Risk with a globally regulated FinTech. The role spans the entire AML organisation, with visibility at the board level - with a core focus on global AML, fraud, and risk management frameworks. The scope is both strategic and hands on, but ultimately responsible for shaping … and directing outcomes. Lead and expand the bank’s 1LoD financial crime and fraud risk functions Own global oversight of AML, KYC, sanctions, screening, fraud detection, and transaction monitoring (internal and vendor-delivered) Drive intelligence-led investigations and data-driven risk assessments across multiple jurisdictions Embed financial crime controls into product and market launches, balancing speed and safety … Partner with executives, investors, and regulators to provide clear risk insight and assurance Identify weaknesses across systems, vendors, and processes; deliver enhancements that stand up under scrutiny Who we're searching for: 10+ years in financial services with deep technical expertise across AML, fraud, and financial crime Proven track record scaling and optimising global financial crime operations in a More ❯