Cyber Risk Analyst (Cyber Supply Chain)

SpaceX was founded under the belief that a future where humanity is out exploring the stars is fundamentally more exciting than one where we are not. Today SpaceX is actively developing the technologies to make this possible, with the ultimate goal of enabling human life on Mars.

CYBER RISK ANALYST (CYBER SUPPLY CHAIN)

Supply chains are complex beasts where actions by or to a trusted supplier can have outsized effects on an organization’s objective. As a cyber-supply chain risk program manager, you will be directly responsible for organizing our teams and taking focused actions to increase our trust proposition. Providing justifiable confidence and assurance in the integrity of our products and services while protecting our internal operations is the end goal; and in doing so strengthening the foundations in which our relationships rest. At SpaceX we value initiative, dependability, and perseverance; where you have the latitude to rally people to the cause and deliver your vision.   

This teammate will operate within the Information Assurance team and will be assisting with the maturation and implementation of our cyber-supply chain risk management program in collaboration with our supply chain, engineering, and other stakeholders. This position will also involve hands-on execution of the tactical efforts such as supplier incident analysis, due diligence assessments, and program supplier risk analysis. The ideal candidate will be driven to create program efficiencies and are firm when it matters but also flexible enough to move the ball forward. They will excel at multi-tasking and flourish in an environment where learning never ceases, where the breadth of operations ranges from rockets to routing tables, and where teams are laser focused on mission accomplishment – excitement guaranteed!

RESPONSIBILITIES:

• Refine and improve the cyber-supply chain risk management program in collaboration with supply chain partners. 
• Facilitate the definition of cyber-supply chain risk management objectives and integration into broader teams’ strategic and tactical plans.
• Integrate cyber-supply chain risk management activities with the broader supply chain risk management program.
• Refine and adapt program operations and performance metrics informing key stakeholders and enable their decision-making process.
• Prioritize risk management activities and projects, arming our SpaceX teammates with knowledge and skills to scale operations.
• Define, adapt, and monitor proactive and reactive risk identification, analysis, and mitigation processes including: third-party due diligence and risk analysis, cyber-incident response augmentation, and development/engagement activities.

BASIC QUALIFICATIONS:

• Bachelor’s degree in STEM or a quantitative field.
• Experience implementing sustainable improvements within a supply chain across all phases of project delivery.
• Knowledge of cyber-supply chain risk management frameworks.

PREFERRED SKILLS AND EXPERIENCE:

• Demonstrable ability to improvise, adapt, and overcome.
• Ability to assimilate new knowledge quickly and deploy it in support of strategic plans.
• Proven ability to build, strengthen, and maintain business relationship and partnerships.
• Experience leveraging data and business intelligence and integrate it into decision making processes.
• Strong program, project, and operations management skills with proven ability to perform continuous process improvement.
• Experience in project and program management, tooling integration, and delivery in highly fluid environments.
• Ability to communicate program and project-related concepts to a broad range of technical and non-technical staff, security vendors, consultants and senior management.

ADDITIONAL REQUIREMENTS:

• Willingness to work extended hours and weekends as needed.

ITAR REQUIREMENTS:

• To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR) you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State. Learn more about the ITAR here.

SpaceX is an Equal Opportunity Employer; employment with SpaceX is governed on the basis of merit, competence and qualifications and will not be influenced in any manner by race, color, religion, gender, national origin/ethnicity, veteran status, disability status, age, sexual orientation, gender identity, marital status, mental or physical disability or any other legally protected status.

Applicants wishing to view a copy of SpaceX’s Affirmative Action Plan for veterans and individuals with disabilities, or applicants requiring reasonable accommodation to the application/interview process should notify the Human Resources Department at (310) 363-6000.