Description & Requirements
ManTech seeks a motivated, career and customer-oriented Senior Risk Analyst to join our team in Doral, FL.
Responsibilities include but are not limited to:
Manages TO- and project-level risks and opportunities, focusing on proactive identification and mitigation of potential threats for mission assurance.
Utilizes the Onspring risk management tool to document risks, define treatment strategies, and monitor activities.
Identifies, communicates, and reports on risks, ensuring transparency and effective stakeholder collaboration.
Develops and executes innovative solutions and mitigation strategies to address risk challenges.
Conducts comprehensive risk assessments on IT systems, applications, and business processes, recommending improvements to security controls.
Maintains detailed risk registers, analyzing threat intelligence and vulnerability data to identify emerging risks.
Contributes to continuous improvement of the Risk Management Framework, participates in incident response, and provides direction and mentorship to subordinate staff.
Minimum Qualifications:
BA/BS in field necessary to assume Senior Risk Analyst duties and a minimum or 4 years of additional experience in lieu of a degree.
9+ years of experience with 5+ years relevant Senior Risk Analyst experience
Strong understanding of cybersecurity frameworks and standards (e.g., NIST CSF, ISO 27001, SOC 2).
Experience conducting risk assessments, vulnerability assessments, and threat modeling.
Knowledge of common security technologies (e.g., firewalls, intrusion detection systems, endpoint security).
Experience in risk management, cybersecurity, or a related field, with a proven track record of identifying, assessing, and mitigating risks.
Deep understanding of risk management principles, methodologies, and frameworks (e.g., NIST SP 800-30, ISO 31000).
Expertise in conducting risk assessments and analyzing threats and vulnerabilities.
Knowledge of risk treatment strategies, including risk avoidance, mitigation, transfer, and acceptance.
Experience with developing and implementing Risk Management Plans. Proficiency in using risk management tools (e.g., Onspring or similar platforms).
Familiarity with IT systems, applications, and security controls. Ability to analyze threat intelligence and vulnerability data.
Preferred Qualifications:
Master’s degree in Information Technology, Cybersecurity, or a related field. Experience with specific risk management methodologies (e.g., FAIR, OCTAVE).
Knowledge of industry standards and regulations related to risk management (e.g., ISO 27001, NIST Cybersecurity Framework).
Experience with incident response and business continuity planning. Familiarity with data analysis and visualization tools.
Relevant certifications in risk management or cybersecurity (e.g., Certified Risk Management Professional (CRMP), Certified Information Systems Security Professional (CISSP)).
Experience at a DoD Combatant Command (e.g., SOUTHCOM, NORTHCOM, CENTCOM, CYBERCOM, INDOPACOM, EUCOM, AFRICOM, STRATCOM, TRANSCOM, SOCOM, SPACECOM) or a component is desired.
Clearance Requirements:
Must have an active Secret clearance
Physical Requirements:
Must be able to remain in a stationary position 50%
Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer
The person in this position frequently communicates with co-workers, management and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations.