Enterprise Risk Analyst

Experience with Cybersecurity, risk management, or risk assessment for complex systems Experience with NIST SP 800-53 and NIST SP 800-30 Experience with documenting and depicting network topology and network protocols Ability to engage directly with clients, and third parties to facilitate enterprise risk analysis Ability to obtain and maintain a Public Trust or Suitability/Fitness determination Bachelor's degree in computer science, Electronics Engineering, or technical equivalent and 10 years of professional experience or a total of 18 years in lieu of education

Execute the VA Enterprise Risk Analysis process Identify key cyber security risk factors in network connected medical devices and Special Purpose Systems Summarize, evaluate, and report risk factors using quantitative and qualitative scores Acquire, review and leverage system documentation and data gathered through questionnaires and interviews Accurately document critical security posture elements Collaborate with Federal and contractor team mates