Applied Memetics LLC (AM LLC) is seeking a Risk Manager, Senior to provide on-site technical support to the Veterans Affairs (VA) administration. The successful candidate will support the Office of Information Technology (OI&T) to identify and remediate existing and future vulnerabilities.
A Senior Risk Manager must have extensive experience in the review of program risk data, create overall view of program risk based on individual discrete risk elements; coordinate with program team to identify new creative and strategic approaches for managing risks. Must have experience in briefing senior staff on risk status using routine, ad hoc, written and oral reports. Must have experience in risk treatment by selecting and implementing measures to control and mitigate risks including activities to avoid risks, transfer risks and financerisks; and be able to monitor and review processes to ensure risk and compliance arrangements are in place. They must also have experience in conducting audits of policy and compliance to standards, including liaison with internal and external auditors.
Background:The Department of Veterans Affairs (VA) is the Federal Government's second largest cabinet agency with 320,000 employees. When viewed from aninformation technology (IT) perspective, OI&T is one of the nation's largest consolidated IT organizations with:
-$3.1 billion budget (FY12)
-Nearly 7,500 employees
-More than 300,000 desktop computers
-Approximately 30,000 laptop computers
-Nearly 450,000 email accounts
The Continuous Readiness in Information Security Protection (CRISP) program began as a VA-wide initiative launched in March 2012 to address MWs by concentrating on:
-Managing appropriate access control for users and reducing out-dated personnel clearances
-Testing contingency plans for data breaches
-Providing information security training for users, contractors, volunteers
-Developing initial baseline configurations
-Improving data-center web application security