This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more.

Role Description

Join our Risk & Compliance team to help assess and incorporate Artificial Intelligence (AI) into our risk management processes which include documenting and mitigating cyber risks across enterprise and cloud environments. You’ll contribute to risk assessments (Cloud and On-Prem), maintain the enterprise risk register, support audit readiness, and assist with security control documentation that underpins our CMMC and privacy obligations. You’ll collaborate with governance and IT stakeholders under CIO-led programs, gaining hands-on experience with our risk management processes and artifacts.

Qualifications

• Computer Science, Data Science, or Information Security focus
• Understanding of artificial intelligence (AI) and how it can be used as a tool to improve efficiency for operational improvements
• Foundational understanding of cybersecurity and risk concepts (e.g., likelihood/impact, controls, mitigations) and familiarity with frameworks like NIST RMF/CMMC
• Clear written/verbal communication for summarizing findings and drafting control/assessment documentation (SSP, risk entries)
• Comfort with data analysis (Excel/Sheets) and basic scripting (e.g., Python) to analyze findings or automate report formatting (helpful for risk/RA tasks)
• High attention to detail, curiosity, and the ability to learn and follow policy-driven workflows

Requirements

• Assist with risk assessments for cloud and on-prem applications and services, due diligence, draft concise risk summaries, and proposed treatments for review
• Help manage an AI driven Risk Assistant as a human in the loop or human on the loop (HITL/HOTL)
• Assist with AI Integration projects into GRC processes as well as look for other areas to apply AI
• Update and track entries in the enterprise Risk Register in coordination with risk owners and IT Governance
• Support audit readiness and evidence collection (internal/external), including control documentation for CMMC and privacy controls in enterprise SSPs
• Contribute to continuous monitoring and vulnerability oversight alongside engineers using tools such as Tenable and endpoint/cloud security services
• Help with enclave and cloud security posture (Azure/AWS), including hardening checks, configuration reviews, and SSP updates
• Document processes and variances to ensure consistency with the IT Cyber Security policy and related guidance

Preferred Skills

• Exposure to cloud security tooling and services: Azure Defender, AWS Security Hub, M365/Intune posture checks
• Exposure with vulnerability and endpoint tooling (e.g., Tenable, CrowdStrike), secure web gateways (Zscaler), and container security basics
• Aware of privacy risk and data handling practices tied to enterprise SSP controls

Salary Note

This estimate represents the typical salary range for this position based on experience and other factors (geographic location, etc.). Actual pay may vary. This job posting will remain open until the position is filled.

Combined Salary Range

USD $22.50 - USD $24.50 /Yr.

Company Description

General Dynamics Mission Systems (GDMS) engineers a diverse portfolio of high technology solutions, products and services that enable customers to successfully execute missions across all domains of operation. With a global team of 12,000+ top professionals, we partner with the best in industry to expand the bounds of innovation in the defense and scientific arenas. Given the nature of our work and who we are, we value trust, honesty, alignment and transparency. We offer highly competitive benefits and pride ourselves in being a great place to work with a shared sense of purpose. You will also enjoy a flexible work environment where contributions are recognized and rewarded. If who we are and what we do resonates with you, we invite you to join our high-performance team!