Design and govern the Cyber Supply Chain Risk Management continuous monitoring program
Develop and maintain the Continuous Monitoring Program Plan
Define monitoring strategies and escalation paths
Identify Tier 1 vendors for monitoring
Define cyber risk categories and monitoring frequency
Establish remediation requirements for vendors
Oversee analyst execution of monitoring and reporting
Coordinate with various teams including Strategic Sourcing and CSCRM teams
Lead escalation efforts when risks are identified
Develop and maintain the Continuous Improvement Plan

Requirements

Bachelor’s degree and 10 years of experience
Experience leading cybersecurity, third-party risk, or supply chain risk programs
Strong background in cybersecurity governance, process development, and stakeholder engagement
Proven ability to develop program plans, workflows, and performance metrics
Deep familiarity with NIST SP 800-161 and federal CSCRM practices (preferred)
Experience supporting federal agencies or large enterprise cybersecurity programs (preferred)
Experience briefing leadership and government stakeholders (preferred)
Must be able to obtain and maintain Public Trust Clearance
Must be a US Citizen

Benefits

Competitive benefits package including paid time off
Healthcare benefits
Supplemental benefits
401k with employer match
Education reimbursement for certifications, degrees, or professional development
Activities fund for virtual and in-person events

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

cybersecurity governanceprocess developmentprogram plansworkflowsperformance metricscontinuous monitoringrisk managementvendor managementremediation requirementsNIST SP 800-161

Soft Skills

leadershipstakeholder engagementcommunicationcoordinationescalation managementanalytical skillsstrategic thinkingproblem-solvingteam collaborationcontinuous improvement

Certifications

Public Trust Clearance