Position Title: Task Leader – Cyber Supply Chain Risk Management (CSCRM)
Location: Washington, DC (Hybrid / Onsite as required)
Clearance Required: Top Secret/Sensitive Compartmented Information (TS/SCI)
Position Type: Full Time
Position Summary
The Task Leader – CSCRM is a senior-level contractor serving as a Subject Matter Expert (SME) within the Cyber Threat Intelligence Analysis, Production, and Collaboration workstream. This role focuses on Cyber Supply Chain Risk Management (C-SCRM) by leading the analysis of cyber supply chain threat data across multiple verticals and threat sources relevant to the Healthcare and Public Health (HPH) sector, including proprietary data collection tools developed by HHS.
The Task Leader will oversee personnel assigned to CSCRM tasks, ensuring successful and timely completion of deliverables, while providing technical guidance on contract execution. This role requires deep expertise in C-SCRM, threat intelligence, and risk analysis to support HHS’s mission objectives.

Key Responsibilities

• Provide SME advisory services across the CSCRM domain, guiding HHS leadership and stakeholders.
• Lead and oversee analysis of cyber supply chain threat data using government and proprietary sources.
• Ensure personnel complete assigned CSCRM tasks on time and to standard.
• Deliver technical guidance to support contract execution and achievement of CSCRM objectives.
• Apply advanced knowledge of state-of-the-art technology to conduct studies, analyses, and functional modeling.
• Develop and implement supply chain risk assessment procedures, methodologies, and best practices.
• Analyze client requirements and provide recommendations for systems improvements, operational optimization, and acquisition strategies.
• Support development of strategic CSCRM plans, concepts, and implementation roadmaps.
• Communicate effectively through written reports, briefings, and oral presentations to senior leadership.

Experience Requirements

• 7–10 years of relevant work experience in cybersecurity, with at least 5 years in threat intelligence, risk management, supply chain analysis, or a related field.

Required Skills & Competencies

ANALYTICAL SKILLS

• Proven experience supporting implementation of C-SCRM at the strategic, operational, and tactical levels.
• Experience implementing Section 899 of the FY 2019 NDAA requirements.
• SME-level proficiency providing advice on execution of Federal Acquisition Security Council (FASC) removal and exclusion orders within procurement and acquisition processes.
• Demonstrated expert-level leadership in integrating C-SCRM into acquisition processes.
• Advanced analytical skills with ability to synthesize large volumes of threat data into actionable intelligence.
• Strong research capabilities for monitoring threat environments and delivering detailed assessments.

TECHNICAL SKILLS

• Proficiency in understanding threat actor TTPs, IOCs, and common frameworks such as MITRE ATT&CK.
• Skilled in data analysis and visualization tools (e.g., Power BI) to generate actionable insights.

• Provide SME advisory services across the CSCRM domain, guiding HHS leadership and stakeholders.
• Lead and oversee analysis of cyber supply chain threat data using government and proprietary sources.
• Ensure personnel complete assigned CSCRM tasks on time and to standard.
• Deliver technical guidance to support contract execution and achievement of CSCRM objectives.
• Apply advanced knowledge of state-of-the-art technology to conduct studies, analyses, and functional modeling.
• Develop and implement supply chain risk assessment procedures, methodologies, and best practices.
• Analyze client requirements and provide recommendations for systems improvements, operational optimization, and acquisition strategies.
• Support development of strategic CSCRM plans, concepts, and implementation roadmaps.
• Communicate effectively through written reports, briefings, and oral presentations to senior leadership