Senior Advisor – Cybersecurity Supply Chain Risk Management Advisor

REI Systems delivers reliable, innovative technology solutions that advance federal missions and improve the lives of millions. We take a Mindful Modernization® approach in delivering services across application modernization, case management, grants management, government data analytics, AI/ML, and digital services. This approach ensures mission impact by aligning strategic objectives with measurable outcomes through people, processes, and technology.

As part of our commitment to innovation, REI is rapidly expanding its use of Artificial Intelligence (AI), automation, and machine learning to improve the way federal agencies operate and deliver services. We are looking for Appian professionals who can not only design and build exceptional low-code solutions, but who also understand how to leverage AI to enhance workflows, improve user experience, and accelerate mission outcomes.

Employees voted REI Systems a Washington Post Top Workplace in 2015, 2016, 2018, 2020, 2021, 2022, 2023, 2024 and 2025!

REI Systems is looking for a senior advisor to guide federal agencies in interpreting and implementing Cybersecurity Supply Chain Risk Management (C-SCRM) policies, mandates, and best practices across acquisition, security, and program lifecycles. This 90-day position, with the potential to transition into a full-time role, will translate evolving cybersecurity and supply chain requirements—including secure software development, SBOM transparency, Zero Trust, vendor assurance, and emerging threat intelligence—into clear, actionable guidance for federal practitioners. The advisor will lead and support the development of governmentwide playbooks, templates, implementation guides, maturity models, and strategic communications, while also designing and delivering structured stakeholder outreach and education programs such as workshops, training sessions, webinars, and learning content. Responsibilities include facilitating cross-agency working groups and communities of practice, engaging with industry partners, standards organizations, and mission stakeholders, and providing expert input into federal procurement practices to strengthen C-SCRM throughout market research, requirements development, solicitation language, source selection, and vendor oversight. The role will analyze trends, risks, and implementation gaps and synthesize findings into executive-level briefings and recommendations for senior leadership, while supporting continuous improvement through feedback mechanisms, adoption and maturity metrics, and future capability planning. Above all, the advisor will promote consistency, clarity, and measurable risk reduction across the federal ecosystem while minimizing unnecessary burden on agencies and vendors.

Required Qualifications

• Advanced knowledge of federal cybersecurity and supply chain risk management requirements, including NIST frameworks, FAR/DFARS provisions, and emerging government-wide C-SCRM mandates.
• Demonstrated ability to translate complex policy and technical concepts into clear, accessible guidance suitable for acquisition professionals, program managers, and industry partners.
• Proven experience designing and delivering structured outreach, training, and education programs, including the development of curricula, communication materials, and stakeholder engagement strategies.
• Capability to support the launch and maturation of new C-SCRM initiatives, assisting in the rollout of program frameworks, guidance documents, awareness campaigns, and continuous improvement activities.
• Strong analytical, communication, and facilitation skills to ensure consistent understanding, adoption, and compliance across agencies and contractors.
• Minimum 8–10 years of experience in federal cybersecurity, ICT risk management, supply chain assurance, or related enterprise-level program implementation.
• Familiarity with federal acquisition and vendor lifecycle processes, including market research, requirements development, solicitation evaluation, contractor oversight, and performance monitoring.
• Experience working with senior federal leadership, councils, or interagency working groups, with a proven ability to develop consensus and build coalitions across diverse stakeholder groups.

Preferred Qualifications

(Not required, but highly advantageous.)

• 10–15 years of experience supporting enterprise or governmentwide cybersecurity or supply chain risk initiatives.
• Experience applying or supporting federal C-SCRM-relevant policies and strategies (e.g., EO 14028, National Cyber Strategy, OMB guidance, FASC, TIC 3.0, Zero Trust strategies, SBOM/secure-by-design initiatives).
• Experience developing maturity models, dashboards, risk scoring methods, or performance frameworks.
• Prior work with federal shared services, category management organizations, centers of excellence, or communities of practice.
• Demonstrated success bridging policy and technical domains across CIO, CISO, CAO, program, and mission offices.
• Industry, standards-body, or critical infrastructure engagement experience.
• Professional certifications (preferred, not required): CISSP, CISM, CCSP, CEH, PMP, CIPP/US, or other relevant credentials.

This is a 90-day position, with the potential to transition into a full-time role

EEO Statement: REI Systems is an Equal Opportunity Employer. In our workplace, we seek, we welcome, and respect diversity in all of its forms. 
 

#LI-HYBRID

#LI-KS1