Cyber Risk Management Analyst @ phia, LLC | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
External
0
Cyber Risk Management Analyst jobs in Merrifield, VA
72 applicants
company-logo

phia, LLC · 1 day ago

Cyber Risk Management Analyst

ftfMaximize your interview chances
Cyber SecurityInformation Technology
badNo H1BnoteU.S. Citizen OnlynoteSecurity Clearance Requirednote

Insider Connection @phia, LLC

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Drive the design, development, implementation, and continuous improvement of third-party cyber risk management strategies and practices across public and private sectors.
Implement and adapt industry-standard cybersecurity frameworks (e.g., ISO 27001, NIST CSF, NIST 800-53, NIST 800-171, CIS 18, Zero Trust Principles, FedRAMP).
Conduct supply chain risk assessments using recognized audit reports (e.g., SOC 2 Type II) and questionnaire responses.
Collaborate with cross-functional leadership and stakeholders, particularly in supply chain management, to communicate third-party risk management strategies, activities, and identified risks.
Utilize third-party risk assessment platforms (e.g., Process Unity GRX) and risk management platforms (e.g., Diligent RSAM).
Review and make recommendations for policy and process updates, insuring alignment with organizational risk requirements.
Lead and mentor diverse teams with varying levels of subject matter expertise.
Prioritize and manage multiple concurrent projects to ensure timely completion.
Produce high-quality technical documentation and reports.
Engage in continuous learning to expand personal knowledge and upskill team members.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Cyber Risk ManagementISO 27001NIST CSFNIST 800-53NIST 800-171CIS 18Zero Trust PrinciplesFedRAMPProcess Unity GRXDiligent RSAMSOC 2 Type IICRISCCISSPCCSKCISACISMTechnical WritingTeam Management

Required

3+ years of experience in the security aspects of multiple platforms, operating systems, software, communications, and network protocols.
Familiarity with third-party risk assessment platforms (e.g., Process Unity GRX) and risk management platforms (e.g., Diligent RSAM).
Familiarity with cyber risk assessment and management frameworks, methodologies, and reporting. (e.g., SOC 2 Type II) and questionnaire responses.
Strong understanding and practical experience in adapting and implementing industry-standard cybersecurity frameworks and standards (e.g., ISO 27001, NIST CSF, NIST 800-53, NIST 800-171, CIS 18, Zero Trust Principles, FedRAMP).
Excellent communication skills to effectively engage with cross-functional leadership and stakeholders, particularly in supply chain management regarding third-party risk management strategies and activities.
Experience in managing and instructing diverse teams with varying levels of subject matter expertise.
Strong organizational skills to manage competing priorities and ensure timely completion of projects.
Technical Writing Skills: Proficient in producing high-quality technical documentation and reports.
U.S. Citizenship required
Ability to obtain Public Trust (or higher) government clearance

Preferred

Bachelor’s degree in Computer Science, Information Technology or Information Security or other relevant disciplines.
Public and Private Sector Experience
Familiarity with CyberGRX (now Process Unity GRX) and Diligent RSAM
Proximity to customer locations in the DMV (DC, MD, or VA) Metro area or Raleigh/Durham, NC is ideal.
CRISC - Certified in Risk and Information Systems Control
CISSP- Certified Information Systems Security Professional
CCSK- Certificate of Cloud Security Knowledge or CCSP
CISA-Certified Information Systems Auditor certifications
CISM- Certified Information Security Manager

Benefits

Comprehensive medical insurance to include dental and vision
Short Term & Long-Term Disability
401k Retirement Savings Plan with Company Match
Tuition and Professional Development Assistance
Flex Spending Accounts (FSA)

Company

phia, LLC

twittertwittertwitter
company-logo
phia LLC is a Northern Virginia based, 8a certified small business that was established in 2011.

Funding

Current Stage
Early Stage

Leadership Team

T
Truong Dang
CEO
linkedin
Company data provided by crunchbase
logo

Orion

Your AI Copilot