Cyber Supply Chain Risk Management Specialist (C-SCRM)

Who We Are:Exiger transforms supply chains into a strategic advantage—advancing our mission to make the world a safer and more transparent place to succeed. Our AI platform, 1Exiger, delivers instant visibility into complex supplier ecosystems, leveraging proprietary data and advanced AI to surface risk, automate compliance, and unlock efficiencies and cost savings to strengthen long-term resilience. Trusted by 550+ global customers—including Fortune 500 companies and U.S. government agencies—Exiger is a recognized, award-winning leader in supply chain AI and a FedRAMP® authorized provider to the federal government.Cyber SCRM AnalystLocation: Richmond, VAWork Environment: HybridU.S. Citizenship Required | Clearance Sponsorship Available | Limited Travel (Up to 10%)Who We AreExiger transforms supply chains into a strategic advantage—advancing our mission to make the world a safer and more transparent place to succeed. Our AI platform, 1Exiger, delivers instant visibility into complex supplier ecosystems, leveraging proprietary data and advanced AI to surface risk, automate compliance, and unlock efficiencies and cost savings to strengthen long-term resilience. Trusted by 550+ global customers—including Fortune 500 companies and U.S. government agencies—Exiger is a recognized, award-winning leader in supply chain AI and a FedRAMP® authorized provider to the federal government.Role SummaryWe’re seeking a Cyber SCRM Analyst to support Exiger Government Solutions (EGS) in delivering high-impact cyber supply chain risk management outcomes across federal and mission-driven programs. This is a hands-on individual contributor role ideal for a practitioner who brings strong cyber and supply chain risk fundamentals, can leverage data and AI-enabled workflows, and communicates complex findings with clarity and precision. This role reports into the Government Delivery organization and plays a key part in executing customer engagements and strengthening analytic delivery.What You’ll DoConduct vendor cyber risk assessments, software supply chain reviews, and broader cyber SCRM analysis across customer engagementsLeverage Exiger’s solution set, including the 1Exiger platform and internal data tools, to support research, analysis, and deliveryQuery and analyze structured data using SQL and Snowflake to identify risk patterns, validate findings, and strengthen analytical outputsDevelop clear, customer-ready written deliverables, quantitative analyses, visualizations, and presentation materialsPresent findings and recommendations to a range of audiences, including practitioners, senior stakeholders, CISOs, and government executivesTranslate complex cyber and software supply chain risks into concise, decision-ready insights for both technical and non-technical audiencesCoordinate across project workstreams and support quality assurance of team outputsPartner with product and customer-facing teams to improve delivery workflows and support demos, proposals, and briefings as neededApply AI tools to accelerate research, synthesis, and analysis, and identify opportunities to enhance delivery through automationStay current on cyber SCRM trends, SBOM analysis, vendor risk practices, and relevant regulatory and framework developmentsWhat You NeedU.S. citizenshipBachelor’s degree in cybersecurity, information systems, data analytics, supply chain, national security, or a related field2+ years of experience in cyber risk, cyber supply chain risk management, third-party/vendor risk, or software supply chain securityProficiency in SQL, with the ability to independently write and troubleshoot queriesHands-on experience working with Snowflake in an analytical environmentExperience using data visualization or BI tools to communicate insights effectively (Sisense preferred)Strong experience producing high-quality written analytical deliverablesAbility to clearly and confidently brief findings to diverse audiencesFamiliarity with frameworks such as NIST CSF, NIST SSDF, and SBOM-related guidanceComfort leveraging AI tools to improve analytical workflows and outcomesStrong communication, organization, and cross-functional collaboration skillsAbility to quickly learn new tools, datasets, and problem domainsNice to Have:Experience using Python for analysis or workflow automationExposure to data engineering or automation initiativesExperience enhancing AI-enabled analytic workflows in a professional settingFamiliarity with supply chain, software, or vendor risk platformsRelevant certifications (e.g., Security+, SSCP, CCSK, CSSLP)Active security clearance or prior experience in cleared environmentsWhy Exiger:Support nationally significant programs at the intersection of cyber, supply chain, and national securityWork directly on high-impact Federal and mission-driven engagementsApply advanced data, AI, and analytics to solve complex real-world problemsContribute to building scalable, modern delivery capabilities within a fast-growing organizationWhy You’ll Love Working at Exiger:High-performance culture rooted in accountability, collaboration, and excellenceDiscretionary Time Off with no maximum limitsIndustry-leading health, vision, and dental benefitsCompetitive compensation package16 weeks of fully paid parental leaveFlexible hybrid work environmentWellness stipends and dedicated employee wellness programmingCareer development support, including reimbursement for certificationsExiger is named a Leader in the Gartner® Magic Quadrant™ for Supplier Risk Management, twice selected as one of Fast Company's 'Brands That Matter,' and recipient of the Third Party Risk Association's Innovator Award, Exiger's technology has been recognized by leading analyst evaluations and 50+ awards. Learn more at Exiger.com and follow Exiger on LinkedIn.At Exiger, our values define how we work and why we lead. We are mission-inspired, imagination-driven, trust-anchored, and compassion-focused—committed to building technology that makes the world safer, more transparent, and more resilient.All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.Exiger’s hybrid work policy is periodically reviewed and adjusted to align with evolving business needs.