Risk Lead - Nrmc (Onsite)

Risk Lead - NRMC (Onsite)

Location: Ballston, VA

BluePath Labs is a fast-growing research and consulting company committed to solving complex problems for federal, state, and local government clients. We offer a range of professional, scientific, and technology services. Our specific areas of expertise include business consulting, research and data science, and technology integration.

We are seeking a Risk Team Lead for a significant initiative supporting the Cybersecurity and Infrastructure Security Agency (CISA) National Risk Management Center (NRMC) in Critical Infrastructure Risk Analysis. The NRMC supports CISA's cybersecurity and infrastructure security mission by identifying, assessing, and prioritizing strategic risks to national critical functions and collaborating on the development of strategies and approaches to manage risks to critical functions.

Work Description:

The major activities for this contract include:

• Conducting data analytics, including enterprise and technical architecture, systems engineering, and technical assistance.

• Performing risk analysis, including cyber and infrastructure analysis, and incident response.

• Aligning requirements, capabilities, and data to understand and mitigate risks to critical infrastructure.

• Reviewing and analyzing systems and assets to identify risks with potential cascading impacts.

• Providing planning support, including strategic planning and program management.

• Conducting analytical writing and data visualization.

• Supporting potential work surges due to evolving risk management initiatives within the CISA and NRMC mission space.

There are seventeen (17) critical infrastructure sectors/sub-sectors in the United States whose assets, systems, and networks, whether physical or virtual, are vital to national security, economic security, public health, or safety. These sectors include:

• Chemical Sector

• Commercial Facilities Sector

• Communications Sector

• Critical Manufacturing Sector

• Dams Sector

• Defense Industrial Base Sector

• Emergency Services Sector

• Energy Sector

• Financial Services Sector

• Food and Agriculture Sector

• Government Facilities Sector

• Healthcare and Public Health Sector

• Information Technology Sector

• Nuclear Reactors, Materials, and Waste Sector

• Transportation Systems Sector

• Water and Wastewater Systems Sector

• Election Systems

Responsibilities:

• Apply ERM best practices and frameworks to produce, inform, and validate the design, execution, governance, and maintenance of a cross-sector, interagency coordinated Risk Register and subsequent versions of the Critical Infrastructure Risk Register through subject matter expertise in ERM at the Fortune 100 national-level/C-Suite.

• Develop updates and enhancements of the Critical Infrastructure Risk Register, which is a living ledger that can be used across the Agency and interagency as a tool for identifying, assessing, and taking mitigation action against national level cross-sector risks to critical infrastructure. (See Appendix A)

Minimum Requirements:

10 years of experience:

• Applying Enterprise Risk Management (ERM) concepts and frameworks (e.g., COSO, ISO) to address operational risk in public and/or private sectors.

• Developing, maturing, and implementing Risk Registers and building Risk Register governance in public and/or private sectors.

• Communicating and documenting methodologies used to prioritize risk.

• Working cross-sector in Critical Infrastructure and in an interagency environment where coordination was critical to success.

• Experience in a Critical Infrastructure and/or engineering field (systems, nuclear, biochemical, civil, or chemical), operations research, and/or advanced computing (including AI).

• Demonstrated knowledge of the engineered systems central to the 16 Critical Infrastructure (CI) sectors.

• Advanced degree in engineering

• TS/SCI clearance.

Preferred Qualifications:

• Prior experience supporting National Security missions.

• Familiarity with NRMC (National Risk Management Center) and/or critical infrastructure protection initiatives.

Benefits:

BluePath Labs offers a comprehensive benefits package. Benefits include, but are not limited to: healthcare reimbursement, lifestyle & wellness reimbursement, Flexible Spending Account (FSA), tuition assistance, 401(k) with company match, and paid time off for vacation / sick leave, in addition to 12 holidays per calendar year.

About BluePath

BluePath Labs combines mission and business insights with advanced technologies to deliver measurable performance improvements for our clients. BluePath is dedicated to surpassing client expectations by always living by our core values of integrity, professionalism, and resilience. BluePath's extensive experience in Government, Military, Commercial, and Academic environments is unique among small businesses and a core differentiator of our solutions. Our multidisciplinary background allows us to solve diverse and complex problems. Most importantly, we work closely with our clients to frame problems correctly, optimize processes, leverage technologies, and implement enduring solutions. Labs are where ideas are born, experiments occur, and breakthroughs happen. It is the hallmark of BluePath's culture.

https://www.bluepathlabs.com/

BluePath Labs is an equal opportunity employer.