Cybersecurity SME

About The Position

Requirements

• Must possess an active Top Secret clearance with eligibility for SCI and SAP access.
• Requires a minimum of twelve (12) years of demonstrated experience in IT, cybersecurity engineering, and/or Assessment & Authorization (A&A).
• Must hold a current certification compliant with DoD 8140.01 for IAT Level III or IAM Level III (e.g., CISSP, CISM, GSLC, CASP+ CE).
• Must have proven hands-on experience with systems integration, enterprise networks, cloud computing systems, or Platform IT architectures.

Nice To Haves

• Ample experience with Special Access Program (SAP) and Sensitive Compartmentalized Information (SCI) Systems preferred.

Responsibilities

• Provides strategic cybersecurity guidance and participates in technical reviews (e.g., SRR, PDR, CDR) to ensure security is integrated from the initial design phase and throughout the system development lifecycle.
• Executes the Risk Management Framework (RMF) process, providing risk determinations and recommendations to the Authorizing Official (AO).
• As a Security Control Assessor (SCA), executes the Risk Management Framework (RMF) process across Federal, DoD, and IC policies. Provides continuous risk determinations and actionable recommendations directly to the Authorizing Official (AO).
• Conducts deep technical validation of security controls by reviewing vulnerability scans (e.g., ACAS/Nessus), STIG checklists, and penetration test reports to correlate findings with operational mission risk.
• Evaluates the security performance, integrity, and residual risk of diverse and complex architectures, including Platform Information Technology (PIT), cloud environments, communication networks, and satellite control systems.
• Guides the adoption and implementation of DoD Zero Trust principles and provides specialized expertise in the design and evaluation of Cross Domain Solutions (CDS).
• Functions as a technical liaison between engineering teams, program leadership, and external government and industry partners.