Cybersecurity SCRM SME II @ Cherokee Federal | Jobright.ai
JOBSarrow
RecommendedLiked
0
Applied
0
External
0
Cybersecurity SCRM SME II jobs in United States
174 applicants
company-logo

Cherokee Federal · 2 days ago

Cybersecurity SCRM SME II

positionUnited States
timeFull-time
remoteRemote
senioritySenior Level
money$165K/yr - $170K/yr
date5+ years exp
ftfMaximize your interview chances
GovernmentNon Profit
check
Actively Hiring

Insider Connection @Cherokee Federal

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Provide high-level analysis, design, and integration advice on complex cybersecurity challenges, particularly within the realm of supply chain risk management (SCRM).
Assist the SCRM Task Lead with managing and governing the organization’s cybersecurity SCRM program, ensuring that procedures are up-to-date and aligned with federal regulations.
Identify and categorize supply chain vendors into risk levels based on services and products provided and conduct thorough security risk assessments to identify gaps against security controls and requirements.
Develop and maintain a framework for proactively managing cybersecurity supply chain risks, addressing issues such as counterfeit insertion, tampering, unauthorized production, theft, and insertion of malicious code throughout the Software Development Life Cycle (SDLC).
Integrate SCRM concepts into the organization’s Information Security Continuous Monitoring (ISCM) program, as part of the transition to NIST SP 800-53 Rev. 5.
Support the implementation of OMB M-22-18 and assist in integrating the Secure Software Development Framework (SSDF) into the SDLC and ISCM processes.
Establish and contribute to a Cyber Workforce Training, Education, and Awareness Program, including the creation of certificate pathways for key cybersecurity roles, with a focus on setting training requirements and ensuring accountability.
Assist the customer in developing and maintaining a well-trained cybersecurity workforce that can achieve and maintain necessary industry certifications and academic credentials.
Support the Information System Security Officer (ISSO) function by assisting in the development of Authority to Operate (ATO) packages and strategizing ways to centralize the ISSO support function.
Prepare and deliver senior management presentations, reports, and briefings on the progress of cybersecurity initiatives, SCRM efforts, and workforce development.
Performs other job-related duties as assigned.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

Cybersecurity expertiseSupply Chain Risk Management (SCRM)NIST SP 800-53 Rev. 5IAT Level II certificationSecurity risk assessmentsInformation Security Continuous Monitoring (ISCM)Secure Software Development Framework (SSDF)Compliance assessmentThreat intelligenceVulnerability assessmentIncident managementProject management

Required

Ability to obtain a Public Trust.
Bachelor’s degree in Cybersecurity, Information Technology, or a related field.
Minimum 5 years of experience in cybersecurity, with a focus on supply chain risk management (SCRM) and cybersecurity program management.
Possesses IAT Level II certification (e.g., CompTIA Security+, GIAC, or equivalent).
Strong understanding of NIST SP 800-53 Rev. 5, federal cybersecurity regulations, and supply chain risk management frameworks.
Experience conducting security risk assessments for third-party vendors and identifying compliance gaps.
Familiarity with the Information Security Continuous Monitoring (ISCM) process and the integration of SCRM concepts into cybersecurity frameworks.
Ability to manage complex projects and collaborate with cross-functional teams to achieve cybersecurity goals.
Experience supporting the ISSO function and developing ATO packages.
Strong written and verbal communication skills, with the ability to present complex technical information to both technical and non-technical audiences.
Must pass pre-employment qualifications of Cherokee Federal.

Preferred

Experience with Secure Software Development Framework (SSDF) and its integration into organizational processes preferred.
Familiarity with the implementation of OMB M-22-18 and other federal cybersecurity regulations preferred.
Proven track record of managing and maintaining cybersecurity workforce training programs, including certification tracking and development preferred.

Benefits

Medical
Dental
Vision
401K
Other possible benefits as provided

Company

Cherokee Federal

twittertwittertwitter
company-logo
Cherokee Federal, a division of Cherokee Nation Businesses, is a trusted team of government contracting professionals who can rapidly build innovative solutions.
dateFounded in 1975
location
Tulsa, Oklahoma, USA
people-size5,001-10,000 employees
web-link
https://cherokee-federal.com

Funding

Current Stage
Late Stage

Leadership Team

leader-logo
Clint Bickett
Chief Operating Officer
linkedin
leader-logo
Charity Mackenzie
Executive Staff Coordinator to VP of HR and CIO
linkedin
Company data provided by crunchbase
logo

Orion

Your AI Copilot