Supply Chain Risk Management; SCRM Audit Analyst; Logistics Management Analyst

Overview

This Intermediate-level Supply Chain Risk Management (SCRM) Audit Analyst role supports the DoD/DoW Advana War Data Platform designed to aggregate operational, intelligence, logistics, and sensor data across domains, enabling Joint All-Domain Command and Control (JADC2) and supporting AI/ML applications. Position is contingent on contract award.

• Perform detailed supply chain security review activities supporting Department of Defense information systems across unclassified and classified environments.
• Conduct structured analysis of third‑party vendor security documentation, evaluating cybersecurity controls, governance practices, and risk management approaches against DoD and federal requirements.
• Review independent audit artifacts including SOC reports, ISO certifications, penetration test summaries, and vendor attestations to assess adequacy of security safeguards and control implementation.
• Validate vendor responses to security questionnaires, due diligence requests, and contractual security clauses, identifying gaps, inconsistencies, and residual risk conditions.
• Coordinate with Supply Chain Risk Management leadership, contracting personnel, system owners, and cybersecurity teams to document findings and support remediation planning.
• Track vendor security deficiencies, corrective actions, and closure status within risk registers, assessment repositories, and continuous monitoring dashboards.
• Prepare assessment summaries, deficiency reports, and supporting documentation for Risk Management Framework activities, authorization decisions, and leadership briefings.
• Maintain organized evidence packages within SharePoint and approved document management systems to support audits and inspections.
• Monitor emerging supply chain threats, government advisories, and policy updates to inform assessment criteria and review focus areas.
• Contribute to improved third‑party risk visibility, stronger vendor accountability, and sustained mission assurance while reinforcing program values of diligence, transparency, consistency, and disciplined risk oversight.

• 3 years relevant experience with a Bachelor's in a related field; 1 year relevant experience with a Master's in a related field; or a High School Diploma or equivalent and 7 years relevant experience.
• IAM I (CompTIA Security+ CE, ISC² CAP, ISC² SSCP, or GIAC GSLC) certified.
• Must have an active Secret security clearance.
• U.S. Citizenship.

• Familiarity with Advana architecture, Palantir Foundry, or similar data integration platforms.
• Experience with data governance frameworks and metadata management.
• Agile/SAFe delivery experience in secure environments.

May require working in an office, industrial, shipboard, or laboratory environment. Capable of climbing ladders and tolerating confined spaces and extreme temperature variations.

Competitive benefits including best‑in‑class medical, dental and vision plan choices, wellness resources, employee assistance program, 401(k) Savings Plan, financial planning tools, life insurance, employee discounts, paid holidays and paid time off, tuition reimbursement, early childhood and post‑secondary education scholarships. Bonus/other non‑recurrent compensation may be offered for qualified positions.

All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, gender identity or expression, sexual orientation, national origin, physical or mental disability, age, veteran status or any other basis protected by federal, state or local law.

If you need a reasonable accommodation for any part of the employment process, please send an e‑mail to  or call (press #3 for HII Mission Technologies). Only inquiries regarding a request for reasonable accommodation will be responded to from this email address, and reasonable accommodations are considered on a case‑by‑case basis.