Analysis Skills, CISM - Certified Information Security Manager, CISSP - Certified Information Systems Security Professional, CompTIA Security+, Computer Security, Leadership, Risk, Risk Analysis, Risk Management, U.S. National Institute of Standards and Technology (NIST), United States Citizen
Risk Assessment / Residual Risk Lead
Location: Remote
Work authorization: US Citizen
Job Summary
Leads risk assessment methodology and residual risk analysis supporting federal authorization decisions.
Responsibilities
• Develop NIST SP 800-30 Risk Assessments
• Analyze vulnerabilities, likelihood, and impact
• Maintain risk register and mitigation tracking
• Develop residual risk reports
• Support risk acceptance decisions
Required Qualifications
• Experience with NIST 800-30 risk methodology
• POA&M and residual risk management experience
• Ability to translate technical risks for leadership
Preferred Certifications
• CISSP
• CGRC / CAP
• CISM
• Security+
This is a remote position.