International SOS Ltd

Risk Mitigation Specialist

International SOS Ltd$90K — $120K *
Education, Government & Non-Profit
5 - 7 years of experience
Job Overview by Ladders

Qualifications

  • Active TS/SCI security clearance required.
  • Bachelor's degree in a relevant field such as Business, Finance, or Risk Management.
  • 5+ years of experience in risk management or related compliance functions within the DoD or federal sector.
  • Proven experience with risk assessments and internal control testing.
  • Familiarity with DoD RMIC policy, including the relevant guidance and assessment processes.
  • Experience with FOCI-related programs or national security standards.
  • Strong analytical skills with the ability to communicate data-driven findings.

Responsibilities

  • Conduct risk assessments on business processes to develop FOCI management strategies.
  • Perform internal control testing per DoD RMIC policy and document results.
  • Develop and execute corrective action plans to address control weaknesses.
  • Maintain and analyze risk management data using ServiceNow IRM and SPM applications.
  • Coordinate the preparation of various risk and assurance reports for governance compliance.
  • Monitor compliance with FOCI policies and report on performance metrics.
  • Engage with stakeholders to promote FOCI awareness and best practices.

Benefits

  • Work within a pivotal role supporting national security efforts.
  • Opportunity to engage with high-level intelligence and defense stakeholders.
  • Professional growth within the dynamic field of risk management and security compliance.
  • Potential for diverse duties and collaboration across government sectors.
Full Job Description
Job Description

**This position is contingent upon award of contract**

SOSi is seeking a highly qualified Risk Mitigation Specialist to support an Intelligence government customer. The Risk Mitigation Specialist supports the planning, implementation, and oversight of risk management activities associated with Foreign Ownership, Control, or Influence (FOCI) across the customer's business processes and systems. This position conducts risk assessments, internal control testing, corrective action plan development and execution, and continuous risk monitoring in accordance with DoD Risk Management Internal Control (RMIC) policy. The specialist curates and maintains risk management data in support of Intel governance, leveraging ServiceNow Integrated Risk Management (IRM) and Strategic Portfolio Management (SPM) applications, and applies DoD and DCSA FOCI policies to ensure compliance with emplaced mitigation plans. The Risk Mitigation Specialist also prepares detailed correspondence on FOCI matters, supports audit and assurance reporting, and conducts stakeholder outreach and engagement.

Essential Job Duties
  • Perform risk assessments on business processes and systems supporting the integrated development and execution of FOCI management strategies.
  • Conduct internal control testing and document results in accordance with DoD RMIC policy, including DoD Instruction 5010.40, the annual DoD Statement of Assurance handbook, the Chairman's risk assessment process, and related audit requirements.
  • Develop, document, and execute corrective action plans to remediate identified control weaknesses, and track remediation status through closure.
  • Continuously curate, analyze, and maintain risk management-related data in support of Intel governance, leveraging ServiceNow Integrated Risk Management (IRM) and Strategic Portfolio Management (SPM) software applications.
  • Help coordinate multiple risk and assurance reports, including the annual Statement of Assurance and other DIA and DoD governance reporting requirements.
  • Apply broad DoD policy and DCSA direction for the FOCI program by monitoring performance reports, workload/utilization metrics, and other statistical documentation to ensure compliance with FOCI policies and emplaced mitigation plans.
  • Perform oversight and monitoring functions related to emplaced FOCI mitigation measures, including the collection, validation, and maintenance of legal business entities' security data.
  • Identify emerging FOCI risks, trends, and vulnerabilities, and recommend updates to mitigation plans, controls, or processes.
  • Prepare clear, detailed written correspondence, briefings, and reports on FOCI matters for senior leadership, oversight bodies, and external stakeholders.
  • Conduct outreach engagements, training, and coordination with internal and external stakeholders to reinforce FOCI awareness, compliance expectations, and risk mitigation best practices.
  • Support audit readiness and audit response activities by providing documentation, evidence, and subject matter input related to FOCI risk management and internal controls.


Qualifications
  • Active TS/SCI security clearance.
  • Bachelor's degree in Business, Finance, Accounting, Risk Management, Security Studies, International Relations, or a related field.
  • Minimum of 5 years of experience in risk management, internal controls, compliance, audit, security, or related functions within the DoD, Intelligence Community, or federal sector.
  • Demonstrated experience conducting risk assessments, internal control testing, and corrective action plan development and tracking.
  • Familiarity with DoD RMIC policy and guidance, including DoD Instruction 5010.40 and the DoD Statement of Assurance process.
  • Experience working with, or supporting, FOCI-related programs, national security, industrial security, or related regulatory frameworks.
  • Ability to analyze quantitative and qualitative data, prepare risk reports, and present findings and recommendations clearly to leadership.
  • Strong written and verbal communication skills, including the ability to draft detailed correspondence and formal documentation.
  • Proficiency with common office productivity tools (e.g., Microsoft Excel, Word, PowerPoint) and comfort working with enterprise systems or GRC/IRM tools.

Preferred Qualifications
  • Master's degree in Business Administration, Public Policy, Security Studies, Risk Management, or a related discipline.
  • Direct experience supporting the intel community, DCSA, or other Defense Intelligence Enterprise organizations.
  • Hands-on experience with ServiceNow Integrated Risk Management (IRM), Governance Risk and Compliance (GRC), or Strategic Portfolio Management (SPM) modules.
  • In-depth knowledge of FOCI concepts, NISPOM/industrial security requirements, and DCSA FOCI mitigation instruments (e.g., SSA, SCA, Proxy, Voting Trust).
  • Experience supporting or leading the preparation of the annual Statement of Assurance or similar enterprise assurance products.
  • Professional certifications in risk, audit, or security (e.g., CRISC, CISA, CIA, CGAP, CISSP, CPP, or similar).
  • Demonstrated experience supporting audit readiness, audit response, and remediation activities in a DoD or IC environment.
  • Experience developing and delivering outreach, training, or briefings on risk management, FOCI, or internal control topics to diverse stakeholder groups.


Additional Information

Working Conditions
  • Normal office conditions.
  • The primary performance location for this contract will be Washington, D.C.
  • The Government reserves the right to require contract performance at alternate locations, as dictated by mission requirements; these locations may be subject to change.
  • Occasional travel may be required to support global engagement activities and coordination efforts.

About International SOS Ltd

International SOS is a healthcare company that provides medical and security services to organizations and individuals. The company was founded in 1985 and is headquartered in Singapore. International SOS operates in over 90 countries and has over 11,000 employees. The company's services include medical and security assistance, medical and security consulting, and emergency medical and security services.
Learn more about International SOS Ltd
Size
11,000 employees
Industry
Founded
1989

Similar Jobs

More Jobs at International SOS Ltd

  • International SOS Ltd
    OSINT and Technical Targeter
    $90K — $120K *
    Reston, VA 20191 (Fairfax County)
    Education, Government & Non-Profit
    In-Person
  • International SOS Ltd
    Program Manager
    $90K — $130K *
    Tampa, FL 33647 (Hillsborough County)
    Education, Government & Non-Profit
    In-Person
  • International SOS Ltd
    Technical Manager
    $100K — $130K *
    Reston, VA 20191 (Fairfax County)
    Technical Services
    In-Person
  • International SOS Ltd
    Linguist Analyst (China)
    $75K — $95K *
    Honolulu, HI 96817 (Honolulu County)
    Education, Government & Non-Profit
    In-Person
  • International SOS Ltd
    Program Manager
    $90K — $130K *
    Washington, DC 20011 (District Of Columbia County)
    Aerospace & Defense
    In-Person

More Education, Government & Non-Profit Jobs

Find similar Risk Mitigation Specialist jobs: