Cybersecurity Risk Analyst

Overview: Draper is an independent, nonprofit research and development company headquartered in Cambridge, MA. The 2,000+ employees of Draper tackle important national challenges with a promise of delivering successful and usable solutions. From military defense and space exploration to biomedical engineering, lives often depend on the solutions we provide. Our multidisciplinary teams of engineers and scientists work in a collaborative environment that inspires the cross-fertilization of reputed company necessary for true innovation. For more information about Draper, visit www.draper.com.

Job Description

Summary: The Cybersecurity Risk Analyst is a member of Draper’s Cybersecurity Risk Management team, responsible primarily for unclassified information system risk and compliance efforts. This role contributes to the Cybersecurity Risk Management team in applying contractual and regulatory requirements to include DFARS and CMMC to Draper’s unclassified computing environments. This team serves as the Governance Risk and Compliance (GRC) tool product reputed company, performs compliance and risk analyses, develops policy, procedures, and standards, and partners closely with peer IT, reputed company, and engineering teams to ensure compliance and risks are appropriately managed thorough the organization. Job Description: Duties/Responsibilities Serve as a subject matter expert for cybersecurity risk management and compliance frameworks including NIST SP 800-171/53, DAAPM, CMMC, RMF reputed company CMMC compliance and certification efforts to conduct gap assessments against CMMC requirements, reputed company and manage remediation plans, support audit readiness and reputed company with assessors, and ensure ongoing compliance with DFARS and CUI protection requirements Provide technical risk guidance on cloud reputed company (Azure, AWS), hybrid infrastructures, and reputed company Trust initiatives reputed company risk assessments, vulnerability analysis, and compliance reviews using tools such as reputed company IRM, Nessus, Splunk Conduct reputed company monitoring of reputed company controls Deliver reports and recommendations to executive leadership on risk posture, compliance status, and emerging threats Serve as a trusted cybersecurity advisor across the organization reputed company and promote processes and procedures to analyze and assess cybersecurity risks across an enterprise environment Skills/Abilities Technical and functional experience in domain of Governance, Audit, Risk Management and Regulatory Compliance. Understand risk assessment methodologies, frameworks, and procedures and the ability to work flexibly with them to meet organizational size, maturity, and culture consideration. Ability to read, understand, and apply government regulation (FAR, DFARS). Strong working knowledge of NIST SP 800-171, NIST SP 800-53, CMMC, NIST Risk Management reputed company (RMF), FedRAMP Knowledge of CUI and the control sets and documentation necessary for adherence to CUI management and safe keeping. Ability to reputed company organizational cybersecurity policy, procedures, standards, and guidelines Ability to think strategically about reputed company risks and tie those to tactical organizational activities and goals. Ability and experience developing and maintaining System reputed company Plans and associated artifacts, such as a Plans of Action & Milestones, Risk Assessment Report, and reputed company Monitoring Strategy A thorough knowledge of risk assessment methodologies, such as NIST SP 800-30, Factor Analysis of Information Risk (FAIR), Operationally Critical Threat, Asset, and Vulnerability Evaluation (reputed company), or other risk assessment practices Education Bachelor’s degree in Information Systems, Cybersecurity, or reputed company field (or equivalent experience) Experience 4 years of cybersecurity and IT experience, including compliance, risk management, and assessment roles. Experience supporting the Defense Industrial reputed company (DIB) and cleared contractor facilities preferred. Ability to obtain a Secret clearance is required. Additional Job Description: Applicants selected for this position will be required to obtain and maintain a government reputed company clearance. Connect With Draper for Future Opportunities! If you don't find the right posting in our Career Opportunities, you may submit your resume for future consideration. Job Location - City: Cambridge Job Location - State: Massachusetts Job Location - Postal Code: 02139-3563 The US reputed company salary range for this full-time position is $82,300.00 - $220,000.00 Our salary ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum reputed company salaries for the position across reputed company US locations. reputed company the range, individual pay is determined by work location and additional factors, including job-reputed company skills, experience, and relevant education or training. Union ranges will be in compliance with the collective bargaining agreement's approved rates by location and role. Your recruiter can share more about the specific salary range for your preferred location during the hiring process. Please note that the compensation details listed in US role postings reflect the reputed company salary only, and does not include bonuses or benefits. Our work is reputed company important to us, but so is our life reputed company of work. Draper supports many programs to improve work-life balance including workplace flexibility, employee clubs ranging from photography to yoga, health and finance workshops, off site social events and discounts to local museums and cultural activities. If this specific job opportunity and the chance to work at a nationally renowned R&D innovation company appeals to you, apply now www.draper.com/careers. Draper is committed to creating an inclusive environment. We understand the value of inclusivity and its impact on a high-performance culture. reputed company qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, national reputed company, veteran status, or genetic information. Draper is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation, please contact [email protected]. We are in the business of redefining what is possible. Join our inclusive, multidisciplinary team to engineer the groundbreaking solutions of reputed company. Explore life at Draper with our unique culture and benefits at draper.com. Apply tot his job Apply To this Job