Enterprise Risk Analyst-Cybersecurity/NIST

Remote Full-time
About the role Core Hours: 9am-5pm EST The experienced Risk Analyst. The role executes the VA Enterprise Risk Analysis process using a custom ERA tool to identify key cyber security risk factors in network connected medical devices and Special Purpose Systems (e.g., building automation systems, physical security systems, operational technology). These risk factors are summarized, evaluated, and reported using quantitative and qualitative scores to provide a VA authorizing official with awareness of the residual cyber risk prior to connecting these devices to the VA network. What you'll do Risk Analyst must acquire, review and leverage system documentation and data gathered through questionnaires and interviews with customers in the field and vendor/manufacturer representatives to accurately document critical security posture elements in a common reporting format. These elements include hardware/software inventory, communications profile, system interconnections, data types and stores, and the presence or lack of security controls, settings and mechanisms for a given device type. The analyst works within the Specialized Device Cybersecurity Department Risk Management team and is expected to collaborate with Federal and contractor team mates to achieve best outcomes for the ERA process .Qualifications Experience with Cybersecurity, risk management, or risk assessment for complex systems Experience with NIST SP 800-53 and NIST SP 800-30 Experience with documenting and depicting network topology and network protocols Ability to engage directly with clients, and third parties to facilitate enterprise risk analysis Ability to obtain and maintain a Public Trust or Suitability/Fitness determination based on client requirements Bachelor's degree in computer science, Electronics Engineering, or technical equivalent and 10 years of professional experience or a total of 18 years in lieu of education Nice If You Have: Experience with cybersecurity analysis of medical technology or Internet of Things (IoT) Experience with Governance, Risk, and Compliance (GRC) Experience with Assessment and Authorization (A&A) and eMASS Experience with Excel and Visio CompTIA Security+ or Certified Risk Management Professional (CRISC) or Certified in Risk and Information Systems Control (CRISC) Public Trust clearance Salary range-$90k-$110k Apply tot his job
Apply Now →

Similar Jobs

Experienced Registered Behavior Technician for In-Home ABA Therapy - Atlanta, GA

Remote

Immediate Hiring: Experienced Registered Behavioral Technician (RBT) for Clinic-Based ABA Therapy Services

Remote

Experienced Registered Behavioral Technician (RBT) - ABA Therapy for Children with Autism Spectrum Disorder

Remote

Experienced Registered Nurse - Telehealth: Providing Remote Care Coordination and Patient Support

Remote

Experienced Substitute Teacher for Riverside County Schools - Join Scoot Education's Innovative Team

Remote

Experienced Substitute Teacher for San Bernardino County - Flexible Schedules & Competitive Pay

Remote

Experienced School Year Instructional Coach for High-Dosage Tutoring Programs in Edgewater Park, NJ

Remote

Experienced School Year Tutor for K-8 Students in Math and Literacy - Mickleton, NJ

Remote

Experienced Secondary Social Studies Teacher for Kansas - Flexible Hybrid Remote Arrangement

Remote

USPS Office Helper

Remote

**Experienced Customer Care Representative and Dispatcher – Remote Work Opportunity at blithequark**

Remote

**Customer Service Representative – Outdoor Living Solutions Expert**

Remote

HIM Technician

Remote

Part-Time Evaluator, Health Sciences

Remote

[Remote] Healthcare - HCM and Compensation Principal Consultant

Remote

**Experienced Tax Data Entry Specialist - Part-Time Remote Opportunity at arenaflex**

Remote

Microsoft Dynamics 365 CE (CRM) Consultant

Remote

Career with American Airlines:Flight Attendant | Hiring

Remote

Consulting Solution Architect

Remote

Sr. Manager, UCAN Ads Partnerships

Remote
← Back