Principal Risk Manager

We are seeking a Principal Risk Manager to support the C3C/Kessel Run Division, which is within the Command, Control, Communications and Battle Management (C3BM). The successful candidate will have a comprehensive knowledge of principles, policies and practices of systems acquisition and program risk management.

Requirements

• Comprehensive knowledge of principles, policies and practices of systems acquisition and program risk management
• Qualitative and quantitative techniques for gathering, analyzing, and measuring the effectiveness, efficiency and productivity of acquisition risk management
• Knowledge of risk management activities that assist the program manager in assessing program risk and be able to recommend viable solutions to problems and the pursuit of alternative courses of action
• Effective communication orally and in writing, providing quality acquisition and program documentation (briefings, documents, plans, etc.)
• Plan, research, analyze and assess system risks in terms of development, production and deployment of weapons systems and associated equipment
• Formulate plans and recommend effective strategies in managing risks
• Supports risk management boards, program management reviews, senior level meeting/reviews and IMP/IMS reviews
• Develop and implement risk management strategies, policies, and processes (primarily, but not exclusively, technology related)
• Conduct inspections/audits to ensure design and operational effectiveness of controls
• Develop & implement Kessel Run’s Risk & control Self-Assessment (RCSA) program and framework
• Create and oversee execution of realistic plans to mitigate risks beyond acceptable risk tolerance
• Generate regular reports on a company’s risks and risk management initiatives
• Govern Technology Architecture Reference Documentation
• Create a comprehensive list/framework of Standards, Guidelines, Policies, & Best Practices that should exist at Kessel Run
• Setup a well-indexed and organized repository in ServiceNow for these documents along with automated workflows/alerts to ensure they are circulated periodically for reviews/updates
• Ensure linkage between policies, standards and controls so updates are made comprehensively
• Manage 3rd Party/Vendor Risk Assessment Program
• Setup a Vendor Risk Assessment program and process, including developing a Vendor Risk Assessment Questionnaire
• Finalize and produce KR’s monthly and quarterly metrics

Benefits

• competitive salary and benefits package
• opportunities for growth and development
• collaborative and dynamic work environment