Home › Companies › Careers Wiscenterprises Icims Com › Sr. Cyber Supply Chain Risk Management Analyst
Sr. Cyber Supply Chain Risk Management Analyst
Careers Wiscenterprises Icims Com · Springfield, VA, US · Active · iCIMS
Job facts
| Field | Value |
|---|---|
| Company | Careers Wiscenterprises Icims Com |
| Title | Sr. Cyber Supply Chain Risk Management Analyst |
| Normalized title | - |
| Department / team | Lifecycle Acquisition |
| Location | Springfield, VA, United States |
| Work model | - |
| Employment type | Full Time |
| Salary | - |
| Status | active |
| ATS provider | iCIMS |
| Posted / first seen | 2024-06-06 / 2026-05-31 |
| Changed / last seen | 2026-06-06 / 2026-06-06 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from Careers Wiscenterprises Icims Com. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through iCIMS. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| City jobs | Active postings in Springfield. | Open |
| Department jobs | Active postings in Lifecycle Acquisition. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | Careers Wiscenterprises Icims Com |
| Source | f9a668b2-08ab-43c8-9c6e-f8b0445cc180 |
| ATS provider | iCIMS |
Description
Overview
We are seeking a technically proficient Cyber Supply Chain Risk Management (C-SCRM) professional to support U.S. Government stakeholders. The C-SCRM Analyst is responsible for identifying, assessing, and mitigating risks associated with the distributed and interconnected nature of Information and Communications Technology and Operational Technology (ICT/OT) product and service supply chains throughout their entire lifecycle. This includes protecting against malicious functionality, counterfeit components, foreign influence, and vulnerabilities derived from poor manufacturing.
Responsibilities
Risk Assessments: Evaluate vendor and supplier security postures (third-party/fourth-party) using frameworks such as NIST SP 800-161.
Threat Analysis: Monitor, analyze, and report on supply chain threats (counterfeit, malicious insertion, Tampering).
Policy Governance & Compliance : Lead the development, formal documentation, and maintenance of organizational C-SCRM policies , Standard Operating Procedures (SOPs), and implementation plans; concurrently monitor and enforce policy compliance across the enterprise by conducting systematic audits and risk assessments to ensure alignment with federal mandates such as NIST SP 800-161, DFARS , FAR, and Executive Order requirements.
Acquisition Support: Integrate C-SCRM controls into procurement documents, RFPs, and contracts, working alongside acquisition teams.
Technical Evaluation: Perform Software Bill of Materials (SBOM) and Hardware Bill of Materials (HBOM) analysis to identify components and vulnerabilities.
Operationalization: Develop and maintain C-SCRM policies, procedures, and Standard Operating Procedures (SOPs).
Incident Response: Support incident response teams when compromised products are identified.
Reporting: Create and present risk briefing materials, dashboards, and metrics to senior leadership.
Required Qualifications
Education & Experience: Bachelor’s degree in Computer Science, Information Systems, Cyber Security, or Supply Chain Management, plus 2-8+ years of experience in cyber risk or supply chain management.
Frameworks: In-depth knowledge of NIST SP 800-161r1-upd1, NIST Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations, and Risk Management Framework (RMF).
Technical Skills: Experience implementing NIST and/or DoD C-SCRM policies. Familiarity with C-SCRM/Third-Party Risk Management tools such as Exiger and eMAS
Security clearance: TS/SCI with Poly
Desired Qualifications
Certifications: CISSP, CISM, CRISC, or C-SCRM certification.
Task Management: Experience with DoD/IC/NGA task management system (e.g. CATMS, NCERTS)
Domain Expertise: DoW Cybersecurity Supply Chain Risk Management.
Communications: Strong written and verbal communication skills
Professional Standard: Ability to execute complex workflows under general direction. Comfortable in an independent work environment. Self-directed.
Full job record
| Job ID | 3cc867600ce1f19c5a68b55740ed4142c759245e |
| Org ID | 1703e4c6-e822-49f2-aac1-57212b4efbc5 |
| Source ID | f9a668b2-08ab-43c8-9c6e-f8b0445cc180 |
| Board ID | f9a668b2-08ab-43c8-9c6e-f8b0445cc180 |
| Provider | icims |
| Provider Job Key | 1649 |
| Title | Sr. Cyber Supply Chain Risk Management Analyst |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | Springfield, VA, US |
| Department | Lifecycle Acquisition |
| Team | — |
| Employment Type | full_time |
| Workplace Type | — |
| Remote Policy | — |
| Country | United States |
| Region | VA |
| City | Springfield |
| Salary Raw | Overview We are seeking a technically proficient Cyber Supply Chain Risk Management (C-SCRM) professional to support U.S. Government stakeholders. The C-SCRM Analyst is responsible for identifying, assessing, and mitigating risks associated with the distributed and interconnected nature of Information and Communications Technology and Operational Technology (ICT/OT) product and service supply chains throughout their entire lifecycle. This includes protecting against malicious functionality, counterfeit components, foreign influence, and vulnerabilities derived from poor manufacturing. Responsibilities Risk Assessments: Evaluate vendor and supplier security postures (third-party/fourth-party) using frameworks such as NIST SP 800-161. Threat Analysis: Monitor, analyze, and report on supply chain threats (counterfeit, malicious insertion, Tampering). Policy Governance & Compliance : Lead the development, formal documentation, and maintenance of organizational C-SCRM policies , Standard Operating Procedures (SOPs), and implementation plans; concurrently monitor and enforce policy compliance across the enterprise by conducting systematic audits and risk assessments to ensure alignment with federal mandates such as NIST SP 800-161, DFARS , FAR, and Executive Order requirements. Acquisition Support: Integrate C-SCRM controls into procurement documents, RFPs, and contracts, working alongside acquisition teams. Technical Evaluation: Perform Software Bill of Materials (SBOM) and Hardware Bill of Materials (HBOM) analysis to identify components and vulnerabilities. Operationalization: Develop and maintain C-SCRM policies, procedures, and Standard Operating Procedures (SOPs). Incident Response: Support incident response teams when compromised products are identified. Reporting: Create and present risk briefing materials, dashboards, and metrics to senior leadership. Required Qualifications Education & Experience: Bachelor’s degree in Computer Science, Information Systems, Cyber Security, or Supply Chain Management, plus 2-8+ years of experience in cyber risk or supply chain management. Frameworks: In-depth knowledge of NIST SP 800-161r1-upd1, NIST Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations, and Risk Management Framework (RMF). Technical Skills: Experience implementing NIST and/or DoD C-SCRM policies. Familiarity with C-SCRM/Third-Party Risk Management tools such as Exiger and eMAS Security clearance: TS/SCI with Poly Desired Qualifications Certifications: CISSP, CISM, CRISC, or C-SCRM certification. Task Management: Experience with DoD/IC/NGA task management system (e.g. CATMS, NCERTS) Domain Expertise: DoW Cybersecurity Supply Chain Risk Management. Communications: Strong written and verbal communication skills Professional Standard: Ability to execute complex workflows under general direction. Comfortable in an independent work environment. Self-directed. |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | — |
| Source URL | https://careers-wiscenterprises.icims.com/jobs/1649/sr.-cyber-supply-chain-risk-management-analyst/job |
| Apply URL | https://careers-wiscenterprises.icims.com/jobs/1649/sr.-cyber-supply-chain-risk-management-analyst/job |
| First Seen At | 2026-05-31 18:49:39Z |
| Last Seen At | 2026-06-06 08:40:43Z |
| Last Checked At | 2026-06-06 08:40:43Z |
| Last Changed At | 2026-06-06 08:40:43Z |
| Inactive At | — |
| Source Posted At | 2024-06-06 08:40:42Z |
| Source Updated At | 2026-05-06 19:03:20Z |
| Raw Payload Uri | s3://job-postings-prod-raw-590183727216/raw/provider=icims/board=careers-wiscenterprises.icims.com/date=2026-06-06/2026-06-06T08-40-42-437Z-0ed21a456e30bcbb295cb73ae24c0836ddde83a4dd898f18108cc5cfc4d990ef.json |
Event Fields
{
"content_hash": "cb0be9dbe9594dcebd40305c097f2d20168f13094c9a5320783f016559e28b11",
"source_hash": "f0a1f2d832b7869ce7fd740d1bd9dcc43f17f96f7f79a3a98422523f7584e40e",
"last_changed_at": "2026-06-06T08:40:43.070Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "Springfield, VA, US",
"city": "Springfield",
"region": "VA",
"country": "United States",
"is_remote": false,
"confidence": 0.8
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-06T08:40:43.066Z",
"launch_scope": {
"reason": "english_us_canada",
"included": true,
"language": "en",
"location": {
"raw": "Springfield, VA, US",
"city": "Springfield",
"region": "VA",
"country": "United States",
"is_remote": false,
"confidence": 0.8
},
"countries": [
"United States"
]
},
"remote_policy": null,
"salary_period": null,
"workplace_type": null,
"salary_currency": null
}Extensions
{}Native Structured
{
"json_ld": {
"url": "https://careers-wiscenterprises.icims.com/jobs/1649/sr.-cyber-supply-chain-risk-management-analyst/job",
"@type": "JobPosting",
"title": "Sr. Cyber Supply Chain Risk Management Analyst",
"@context": "http://schema.org",
"datePosted": "2024-06-06T08:40:42.946Z",
"description": "<h2>Overview</h2>\n<p>We are seeking a technically proficient Cyber Supply Chain Risk Management (C-SCRM) professional to support U.S. Government stakeholders. The C-SCRM Analyst is responsible for identifying, assessing, and mitigating risks associated with the distributed and interconnected nature of Information and Communications Technology and Operational Technology (ICT/OT) product and service supply chains throughout their entire lifecycle. This includes protecting against malicious functionality, counterfeit components, foreign influence, and vulnerabilities derived from poor manufacturing.</p>\n<h2>Responsibilities</h2>\n<ul>\n <li><strong>Risk Assessments:</strong> Evaluate vendor and supplier security postures (third-party/fourth-party) using frameworks such as NIST SP 800-161.</li>\n <li><strong>Threat Analysis:</strong> Monitor, analyze, and report on supply chain threats (counterfeit, malicious insertion, Tampering).</li>\n <li><strong>Policy Governance & Compliance</strong>: Lead the development, formal documentation, and maintenance of organizational <strong>C-SCRM policies</strong>, Standard Operating Procedures (SOPs), and implementation plans; concurrently monitor and enforce <strong>policy compliance</strong> across the enterprise by conducting systematic audits and risk assessments to ensure alignment with federal mandates such as NIST SP 800-161, DFARS , FAR, and Executive Order requirements.</li>\n <li><strong>Acquisition Support:</strong> Integrate C-SCRM controls into procurement documents, RFPs, and contracts, working alongside acquisition teams.</li>\n <li><strong>Technical Evaluation:</strong> Perform Software Bill of Materials (SBOM) and Hardware Bill of Materials (HBOM) analysis to identify components and vulnerabilities.</li>\n <li><strong>Operationalization:</strong> Develop and maintain C-SCRM policies, procedures, and Standard Operating Procedures (SOPs).</li>\n <li><strong>Incident Response:</strong> Support incident response teams when compromised products are identified.</li>\n <li><strong>Reporting:</strong> Create and present risk briefing materials, dashboards, and metrics to senior leadership. </li>\n <li> </li>\n</ul>\n<h2>Required Qualifications</h2>\n<ul>\n <li><strong>Education & Experience:</strong> Bachelor’s degree in Computer Science, Information Systems, Cyber Security, or Supply Chain Management, plus 2-8+ years of experience in cyber risk or supply chain management.</li>\n <li><strong>Frameworks:</strong> In-depth knowledge of NIST SP 800-161r1-upd1, NIST Cybersecurity Supply Chain Risk Management Practices for Systems and Organizations, and Risk Management Framework (RMF).</li>\n <li><strong>Technical Skills:</strong> Experience implementing NIST and/or DoD C-SCRM policies. Familiarity with C-SCRM/Third-Party Risk Management tools such as Exiger and eMAS</li>\n <li><strong>Security clearance: </strong>TS/SCI with Poly </li>\n</ul>\n<h2>Desired Qualifications</h2>\n<ul>\n <li><strong>Certifications:</strong> CISSP, CISM, CRISC, or C-SCRM certification.</li>\n <li><strong>Task Management:</strong> Experience with DoD/IC/NGA task management system (e.g. CATMS, NCERTS)</li>\n <li><strong>Domain Expertise:</strong> DoW Cybersecurity Supply Chain Risk Management.</li>\n <li><strong>Communications:</strong> Strong written and verbal communication skills</li>\n <li><strong>Professional Standard:</strong> Ability to execute complex workflows under general direction. Comfortable in an independent work environment. Self-directed.</li>\n</ul>",
"directApply": true,
"jobLocation": [
{
"@type": "Place",
"address": {
"@type": "PostalAddress",
"postalCode": "UNAVAILABLE",
"addressRegion": "VA",
"streetAddress": "UNAVAILABLE",
"addressCountry": "US",
"addressLocality": "Springfield",
"postOfficeBoxNumber": "UNAVAILABLE"
}
}
],
"validThrough": "2027-06-06T08:40:42.946Z",
"employmentType": "FULL_TIME",
"hiringOrganization": {
"name": "WiSC Enterprises, LLC",
"@type": "Organization",
"sameAs": "https://wiscenterprises.com/"
},
"occupationalCategory": "Lifecycle Acquisition"
},
"detail_meta": {
"url": "https://careers-wiscenterprises.icims.com/jobs/1649/sr.-cyber-supply-chain-risk-management-analyst/job?in_iframe=1",
"http_status": 200,
"content_type": "text/html;charset=UTF-8",
"response_bytes": 33840,
"compact_response_bytes": 4749,
"original_response_bytes": 33840
},
"sitemap_job": {
"id": "1649",
"url": "https://careers-wiscenterprises.icims.com/jobs/1649/sr.-cyber-supply-chain-risk-management-analyst/job",
"slug": "sr.-cyber-supply-chain-risk-management-analyst",
"lastmod": "2026-05-06T15:03:20-04:00"
},
"detail_errors": []
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/3cc867600ce1f19c5a68b55740ed4142c759245e?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/1703e4c6-e822-49f2-aac1-57212b4efbc5JSONGET https://api.bluedoor.sh/job-postings/v1/sources/f9a668b2-08ab-43c8-9c6e-f8b0445cc180JSONGET https://api.bluedoor.sh/job-postings/v1/jobs/3cc867600ce1f19c5a68b55740ed4142c759245e/eventsJSON