Senior Cyber Supply Chain Risk Management Specialist
Gaithersburg, MD, United States
Applications have closed
ANALYGENCE, Inc.
Company Description
ANALYGENCE, derived from a combination of Analysis & Intelligence, is a service-disabled veteran-owned professional services small business established in 2010. We were built on the principle of providing our customers with results driven professionals that understand the dynamic customer environment and can be relied upon to help them achieve their objectives. ANALYGENCE works with customers to develop and execute innovative strategies to improve processes and achieve customer goals. Our people are service-oriented professionals with varying military, government, and industry backgrounds, who understand the level of commitment and flexibility it takes to progress customers forward in a dynamic work environment. Our vision is to support, nurture, and inspire people to achieve the missions of our customers and our organization.
Job Description
ANALYGENCE intends to provide cybersecurity and privacy technical expertise for the development of standards, guidelines, and research documents, as well as, providing support services to NIST to engage stakeholders. ANALYGENCE seeks to gain technical expertise and consultation in multiple specified areas of cyber and information security and privacy to ensure that the NIST mission can be met to "provide standards, technology, tools, and practices to protect our nation's information and information systems.”
NIST expects the requirements of its mission to expand and anticipates the need for support in meeting these requirements. The support needed to ensure a successful mission ranges from internal programmatic support to technical expertise and research consulting in a wide range of cyber and information security areas. It is also anticipated that ITL will need support with outreach efforts of various kinds.
The intended outcome is for NIST to have the ability to ensure that support is available when needed for specific tasks, as they are identified through internal requirements and resource evaluation, so NIST can accomplish its mission, meet higher organizational expectations, and provide cyber and information security mechanisms to reduce the risks to organizations, individuals, and the Nation.
Duties may include but are not limited to:
- Applying subject matter knowledge to high level analysis, collection, assessment, design, development, modeling, simulation, integration, installation, documentation, and implementation.
- Resolving problems, which require an intimate knowledge of the related technical subject matter.
- Applying principles and methods of the subject matter to specialized solutions.
- Includes but not limited to; identity management, biometrics, industrial controls, electronic voting, cloud computing, cyber security, cryptography, virtualization, PKI, XML, applied IT policy and compliance, networking, business processes, security automation, and logistical support activities.
Qualifications
- Must have at least 10 years intensive and progressive experience in the area of cyber supply chain risk management or third-party risk management in an electronics or IT industry. Familiarity with the NIST Cybersecurity Framework (CSF), NIST SP 800-161, and NIST SP 800-171.
- Requires a minimum 10 years of cybersecurity related experience in one or more of the critical infrastructure sectors, and familiarity with the legal and regulatory cybersecurity frameworks associated with respective critical infrastructure sectors, especially as related to executive-level risk management, common cybersecurity practices, and cybersecurity tools and metrics. To be clear, this LCAT is not designed for operational cybersecurity services.
Minimum Education:
- A Bachelor's degree with a curriculum or major field of study which is closely related to the work to be accomplished, and/or in a computer science, information system, cybersecurity, privacy, engineering, or a mathematics intensive discipline.
- A Master's Degree in a field related to the work may be substituted for 2 years’ experience.
- A PhD degree in a field related to the work may be substituted for 5 years of experience.
- OR no college degree and 15 years of general IT-related experience of which at least 8 years must be specialized experience in cybersecurity and/or privacy work.
Additional Information
ANALYGENCE is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation Cloud Compliance Computer Science Cryptography Industrial Mathematics NIST PhD PKI Privacy Risk management XML
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Staff Security Engineer jobs
- Open Information Security Specialist jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Analyst jobs
- Open IT Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Chief Information Security Officer jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open ISO 27001-related jobs
- Open Network security-related jobs
- Open Application security-related jobs
- Open Windows-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open DevOps-related jobs
- Open Security assessment-related jobs
- Open Kubernetes-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open CI/CD-related jobs
- Open IDS-related jobs
- Open DevSecOps-related jobs
- Open CEH-related jobs