Cyber Supply Chain Risk Management Specialist (C-SCRM)

Who We Are:

Exiger transforms supply chains into a strategic advantage—advancing our mission to make the world a safer and more transparent place to succeed. Our AI platform, 1Exiger, delivers instant visibility into complex supplier ecosystems, leveraging proprietary data and advanced AI to surface risk, automate compliance, and unlock efficiencies and cost savings to strengthen long-term resilience. Trusted by 550+ global customers—including Fortune 500 companies and U.S. government agencies—Exiger is a recognized, award-winning leader in supply chain AI and a FedRAMP® authorized provider to the federal government.

Cyber SCRM Analyst

Location: Richmond, VA

Work Environment: Hybrid

U.S. Citizenship Required | Clearance Sponsorship Available | Limited Travel (Up to 10%)

Who We Are

Exiger transforms supply chains into a strategic advantage—advancing our mission to make the world a safer and more transparent place to succeed. Our AI platform, 1Exiger, delivers instant visibility into complex supplier ecosystems, leveraging proprietary data and advanced AI to surface risk, automate compliance, and unlock efficiencies and cost savings to strengthen long-term resilience. Trusted by 550+ global customers—including Fortune 500 companies and U.S. government agencies—Exiger is a recognized, award-winning leader in supply chain AI and a FedRAMP® authorized provider to the federal government.

Role Summary

We’re seeking a Cyber SCRM Analyst to support Exiger Government Solutions (EGS) in delivering high-impact cyber supply chain risk management outcomes across federal and mission-driven programs. This is a hands-on individual contributor role ideal for a practitioner who brings strong cyber and supply chain risk fundamentals, can leverage data and AI-enabled workflows, and communicates complex findings with clarity and precision. This role reports into the Government Delivery organization and plays a key part in executing customer engagements and strengthening analytic delivery.

What You’ll Do

• Conduct vendor cyber risk assessments, software supply chain reviews, and broader cyber SCRM analysis across customer engagements
• Leverage Exiger’s solution set, including the 1Exiger platform and internal data tools, to support research, analysis, and delivery
• Query and analyze structured data using SQL and Snowflake to identify risk patterns, validate findings, and strengthen analytical outputs
• Develop clear, customer-ready written deliverables, quantitative analyses, visualizations, and presentation materials
• Present findings and recommendations to a range of audiences, including practitioners, senior stakeholders, CISOs, and government executives
• Translate complex cyber and software supply chain risks into concise, decision-ready insights for both technical and non-technical audiences
• Coordinate across project workstreams and support quality assurance of team outputs
• Partner with product and customer-facing teams to improve delivery workflows and support demos, proposals, and briefings as needed
• Apply AI tools to accelerate research, synthesis, and analysis, and identify opportunities to enhance delivery through automation
• Stay current on cyber SCRM trends, SBOM analysis, vendor risk practices, and relevant regulatory and framework developments

What You Need

• U.S. citizenship
• Bachelor’s degree in cybersecurity, information systems, data analytics, supply chain, national security, or a related field
• 2+ years of experience in cyber risk, cyber supply chain risk management, third-party/vendor risk, or software supply chain security
• Proficiency in SQL, with the ability to independently write and troubleshoot queries
• Hands-on experience working with Snowflake in an analytical environment
• Experience using data visualization or BI tools to communicate insights effectively (Sisense preferred)
• Strong experience producing high-quality written analytical deliverables
• Ability to clearly and confidently brief findings to diverse audiences
• Familiarity with frameworks such as NIST CSF, NIST SSDF, and SBOM-related guidance
• Comfort leveraging AI tools to improve analytical workflows and outcomes
• Strong communication, organization, and cross-functional collaboration skills
• Ability to quickly learn new tools, datasets, and problem domains

Nice to Have:

• Experience using Python for analysis or workflow automation
• Exposure to data engineering or automation initiatives
• Experience enhancing AI-enabled analytic workflows in a professional setting
• Familiarity with supply chain, software, or vendor risk platforms
• Relevant certifications (e.g., Security+, SSCP, CCSK, CSSLP)
• Active security clearance or prior experience in cleared environments

Why Exiger:

Support nationally significant programs at the intersection of cyber, supply chain, and national security

• Work directly on high-impact Federal and mission-driven engagements
• Apply advanced data, AI, and analytics to solve complex real-world problems
• Contribute to building scalable, modern delivery capabilities within a fast-growing organization

Why You’ll Love Working at Exiger:

• High-performance culture rooted in accountability, collaboration, and excellence
• Discretionary Time Off with no maximum limits
• Industry-leading health, vision, and dental benefits
• Competitive compensation package
• 16 weeks of fully paid parental leave
• Flexible hybrid work environment
• Wellness stipends and dedicated employee wellness programming
• Career development support, including reimbursement for certifications

#Li-Hybrid

Exiger is named a Leader in the Gartner^® Magic Quadrant™ for Supplier Risk Management, twice selected as one of Fast Company's 'Brands That Matter,' and recipient of the Third Party Risk Association's Innovator Award, Exiger's technology has been recognized by leading analyst evaluations and 50+ awards. Learn more at Exiger.com and follow Exiger on LinkedIn.

At Exiger, our values define how we work and why we lead. We are mission-inspired, imagination-driven, trust-anchored, and compassion-focused—committed to building technology that makes the world safer, more transparent, and more resilient.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or protected veteran status, or any other legally protected basis, in accordance with applicable law.

Exiger’s hybrid work policy is periodically reviewed and adjusted to align with evolving business needs.