Enterprise Risk Management Program (ERMP) SME
Kforce is seeking an SME ERMP to provide senior level support to the Government in developing, documenting, and deploying fundamental approach(s) to cyber security, and risk management for use within the DOE enterprise. The initial approach / deliverables will define a harmonized, three-tiered approach that agency-level or departmental organizations can employ to addresses risk at the: (i) organization level; (ii) mission/business process level; and (iii) information system level and provide common-practice processes for use at the Senior DOE Management (SDM) and site levels as outlined in DOE O 205.1B. Additional documents will provide Agency-level input/guidance to the processes. The approach and processes should leverage risk management experiences and practices among Departmental stakeholders, risk management guidelines and lessons learned within the Federal Government and/or best practices in the industry. Working closely with the assigned Federal lead, the contractor shall: Assist and promote collaboration in the development and documentation of the DOE ERMP to include, but not be limited to, the enterprise risk management approach; proof of concept; and standards, processes, and procedures Assist in developing SDM implementation guidance for the DOE Risk Management Approach and DOE 205.1B requirements for SDM Risk Management Implementation Plans Provide subject matter expertise to assist in developing, for the DOE enterprise, at a minimum (but not limited to and subject to change by the Federal Lead) Risk Management roles and responsibilities Statement of organizational risk tolerance Enterprise Statement of Executive Risk Enterprise Risk Assessment and Threat Statement In support of the DOE OCIO SDM requirement for a Risk Management Approach, provide support to appropriate groups within DOE OCIO in the required delivery of appropriate Risk Management Approach documentation and/or guidance Desired Experience and skills (at least three of the below): Ability to work in independent environments under aggressive timelines Proficient with MS Office, to include strong competency with Excel and Access Familiarity with reporting, collaboration, and content management tools (SharePoint, Microsoft Office) Proficient in developing and presenting, both verbally and in writing, technical information and presentations to non-technical audiences Familiarity with Plan of Action and Milestones (POA&M) from creation to closure Working knowledge of the NIST 800 series publications to include, but not limited to: 800-30, 800-37, 800-53, and 800-53a Qualifications DOE experience preferred Bachelor's degree in Engineering, Computer Science, or a mathematics-intensive discipline that provides substantial knowledge and skill in engineering large, complex projects with a minimum of 10 to 15 years of intensive, progressive and relevant experience
Related projectsSearch for freelance jobs
can’t wait for more clients
and advertising. Thank you."