div class="content">Founded in early 2021, Ibility is a Service-Disabled Veteran-Owned Small Business and a Woman-Owned Small Business, headquartered in Gaithersburg, MD. This role coordinates with program team members to gather and validate risk data, identifies areas of exposure, and produces narrative, graphic, and oral status reports that inform decision-making by program leadership and government clients.
Responsibility for coordinating and processing all operating expenditures related to the Corporate Risk Management department including office supplies purchased professional services courier services catering expenses travel and education dues and subscriptions licenses mileage reimbursement etc. Supports the claims managers to ensure compliance with the Claims Management Program Billing and Defense Counsel Guidelines; establishes and maintains a working relationship with the billing departments of the multiple law firms retained by MedStar in connection with its professional liability claims management program.
Washington DC, District of Columbia7 days ago
div>Under the general supervision of an information security risk manager, the Security Analyst/Senior Security Analyst (Technical cyber risk management) will provide expertise with security risk management and assessment of:
Azure cloud services (including but not limited to capabilities for IAM, Network Security, Policy Management, Key Management, etc.) .
Delivery of information security risk assessments for large-scale IT implementation projects including consulting with security architecture function for threat modeling, appropriate tiering of N tier products/platforms, design of infrastructure security controls to protect system components.
Baltimore, Maryland30+ days ago
div>Non-Financial Risk Organization Overview: The second- line Non-Financial Risk NFR organization includes the Compliance, Global Financial Crimes, and Operational Risk departments and provides a single, comprehensive, and consistent second-line view of these non-financial risks. Non-Financial Risk encompasses risks which are not financial in nature, and could have a potential economic, reputational, regulatory, financial reporting, or client impact from (i) failed or inadequate processes, data, or controls; ii) infrastructure or environmental factors; or iii) intentional or inadvertent actions of employees or external parties.
p>This role is ideal for a mid-career risk professional who is fluent in frameworks such as NIST RMF and CMMC, is developing practical experience with risk quantification methodologies like FAIR and OCTAVE, and is eager to grow within a fast-paced aerospace and defense SaaS environment. To conform to U.S. Government space technology export regulations, including the International Traffic in Arms Regulations (ITAR), you must be a U.S. citizen, lawful permanent resident of the U.S., protected individual as defined by 8 U.S.C. 1324b(a)(3), or eligible to obtain the required authorizations from the U.S. Department of State.
Exact salary will ultimately depend on multiple factors, which may include the successful candidate's geographical location, skills, work experience, market conditions, internal equity, responsibility factor and span of control, education/ training and other qualifications. More information can be found here: https://www.umfpi.org/jobs/summary-employee-benefits.