Supply Chain Risk Management Analyst with Security Clearance

---

Job description

Supply Chain Risk Management Analyst
Fulltime
Hybrid -:- Virginia We are seeking a highly skilled Supply Chain Risk Management Analyst to join our team. The selected candidate will provide technical analyses, assessments, recommendations, and implementation strategies for improving Supply Chain transparency, with a focus on 'Deliver Uncompromised' concepts, throughout the Department of Defense (DoD). This role involves developing metrics, executable project plans, and conducting studies and analyses to inform policies and best practices for mitigating supply chain risks for weapon systems, missions, and the Defense Industrial Base. Key Responsibilities:- Technical Analyses and Assessments: Provide technical analyses, assessments, recommendations, and implementation strategies for improving Supply Chain transparency, with a focus on 'Deliver Uncompromised' concepts, throughout the DoD. Metrics Development: In coordination with the Deputy Director for Information Management, develop metrics to assess the cost efficiency, effectiveness, and ease of implementation of supply chain risk mitigation techniques. Ensure metrics are incorporated or aligned with data in the Cyber Risk Mitigation Tool (CRMT). Project Planning: Develop executable project plans for implementing a comprehensive, whole of Government approach to address foreign ownership, control, or influence over key components of National Security Systems (NSS) and systems, components, and services used by the defense industrial base. Ensure initiatives are executed in a coordinated and comprehensive manner. Legislative Support: Support the legislative process by compiling data for use in drafting testimony, appeals, responses to congressional inquiries, and General Accountability Office investigation documentation. Cost Analysis and Risk Mitigation: Provide project cost analysis data and risk mitigation recommendations. Conduct specialized technical studies and analyses supporting development of tools and policy for integration of supply chain risk management techniques and assessments into DoD programs and sustainment efforts. Supply Chain Risk Identification: Perform studies and analyses to identify supply chain risks beyond DoD's prime contractor (e.g., sub-contractors, embedded components, resellers). Identify methods for increasing resiliency of systems when supply chain risks are realized. Policy Development: Conduct studies and analyses to inform policies and best practices for implementation of technical standards to mitigate supply chain risk for weapon systems, missions, and the Defense Industrial Base, including NIST standards. Collaboration and Interoperability: Support efforts to enhance collaboration and interoperability between the DoD and the Defense Industrial Base, including designing and executing Tabletop Exercises with USG stakeholders and industry partners. Required Skills:- Knowledge of cybersecurity capabilities, trends in cyberattack techniques, and tools or techniques for identifying and mitigating cyber vulnerabilities in software products and information systems
Ability to comprehend DoD IT networks and infrastructure and develop supply chain risk mitigation strategies and associated implementation guidance
Basic knowledge of relationships and interdependencies between IT, cyberspace operations, and cybersecurity, and understanding of the DoD's Risk Management Framework
Basic knowledge of the DoD contracting and acquisition processes (e.g., Adaptive Acquisition Framework), including source selection procedures and the DoD's interface with the Defense Industrial Base
Knowledge of statutory authorities pertaining to Supply Chain Risk Management, including sections 889 and 1655 of the FY 2019 NDAA, and10 USC 2339a (and associated DFARS subpart 239.73)

<!– job description page –>