Cyber Supply Chain Risk Management Specialist (C-SCRM)

Exiger•Richmond, VA

7h•Hybrid

About The Position

Exiger transforms supply chains into a strategic advantage, advancing its mission to make the world a safer and more transparent place to succeed. Its AI platform, 1Exiger, delivers instant visibility into complex supplier ecosystems, leveraging proprietary data and advanced AI to surface risk, automate compliance, and unlock efficiencies and cost savings to strengthen long-term resilience. Exiger is trusted by 550+ global customers, including Fortune 500 companies and U.S. government agencies, and is a recognized, award-winning leader in supply chain AI and a FedRAMP® authorized provider to the federal government. The company is seeking a Cyber SCRM Analyst to support Exiger Government Solutions (EGS) in delivering high-impact cyber supply chain risk management outcomes across federal and mission-driven programs. This is a hands-on individual contributor role ideal for a practitioner who brings strong cyber and supply chain risk fundamentals, can leverage data and AI-enabled workflows, and communicates complex findings with clarity and precision. This role reports into the Government Delivery organization and plays a key part in executing customer engagements and strengthening analytic delivery.

Requirements

U.S. citizenship
Bachelor’s degree in cybersecurity, information systems, data analytics, supply chain, national security, or a related field
2+ years of experience in cyber risk, cyber supply chain risk management, third-party/vendor risk, or software supply chain security
Proficiency in SQL, with the ability to independently write and troubleshoot queries
Hands-on experience working with Snowflake in an analytical environment
Experience using data visualization or BI tools to communicate insights effectively (Sisense preferred)
Strong experience producing high-quality written analytical deliverables
Ability to clearly and confidently brief findings to diverse audiences
Familiarity with frameworks such as NIST CSF, NIST SSDF, and SBOM-related guidance
Comfort leveraging AI tools to improve analytical workflows and outcomes
Strong communication, organization, and cross-functional collaboration skills
Ability to quickly learn new tools, datasets, and problem domains

Nice To Haves

Experience using Python for analysis or workflow automation
Exposure to data engineering or automation initiatives
Experience enhancing AI-enabled analytic workflows in a professional setting
Familiarity with supply chain, software, or vendor risk platforms
Relevant certifications (e.g., Security+, SSCP, CCSK, CSSLP)
Active security clearance or prior experience in cleared environments

Responsibilities

Conduct vendor cyber risk assessments, software supply chain reviews, and broader cyber SCRM analysis across customer engagements
Leverage Exiger’s solution set, including the 1Exiger platform and internal data tools, to support research, analysis, and delivery
Query and analyze structured data using SQL and Snowflake to identify risk patterns, validate findings, and strengthen analytical outputs
Develop clear, customer-ready written deliverables, quantitative analyses, visualizations, and presentation materials
Present findings and recommendations to a range of audiences, including practitioners, senior stakeholders, CISOs, and government executives
Translate complex cyber and software supply chain risks into concise, decision-ready insights for both technical and non-technical audiences
Coordinate across project workstreams and support quality assurance of team outputs
Partner with product and customer-facing teams to improve delivery workflows and support demos, proposals, and briefings as needed
Apply AI tools to accelerate research, synthesis, and analysis, and identify opportunities to enhance delivery through automation
Stay current on cyber SCRM trends, SBOM analysis, vendor risk practices, and relevant regulatory and framework developments