Cybersecurity Subject Matter Expert (SME)
About The Position
RIVA Solutions is seeking experienced Cybersecurity Subject Matter Experts (SMEs) to provide technical expertise and analysis in support of Federal cybersecurity programs. The ideal candidate will possess strong knowledge of cybersecurity frameworks, Federal security compliance requirements, and risk management practices. This role requires collaboration with technical, administrative, and executive stakeholders to support system assessments, documentation, testing, and security control implementation. The Cybersecurity Subject Matter Expert (SME) will support Department of Commerce (DOC) and Bureau of Industry and Security (BIS) cybersecurity initiatives focused on supply chain risk management, system security compliance, and risk mitigation. This role supports the development and execution of cybersecurity strategies and compliance activities aligned with Federal cybersecurity standards and mandates.
Requirements
- Demonstrated experience supporting Federal cybersecurity programs and risk management initiatives.
- Strong understanding of FISMA, NIST, OMB, and Federal cybersecurity compliance requirements.
- Experience developing cybersecurity documentation, assessments, and security control mappings.
- Knowledge of supply chain risk management principles and cybersecurity best practices.
- Experience conducting vulnerability assessments, risk assessments, and security testing activities.
- Strong analytical and problem-solving skills with the ability to communicate technical findings to diverse audiences.
- Ability to work collaboratively with technical, administrative, and executive stakeholders.
- Excellent written and verbal communication skills.
- Ability to manage multiple priorities in fast-paced Federal environments.
- Active Secret Clearance required
Nice To Haves
- Relevant cybersecurity certifications such as CISSP, CISM, Security+, or equivalent.
- Experience supporting Department of Commerce (DOC) or Bureau of Industry and Security (BIS) programs.
- Familiarity with CATTS labor categories and Federal contract proposal environments.
- Experience with supply chain cybersecurity assessments and Federal compliance audits.
Responsibilities
- Provide subject matter expertise and technical analysis in support of supply chain risk management and cybersecurity initiatives.
- Apply cybersecurity principles, methods, and knowledge to support complex technical requirements and deliverables.
- Plan, develop, finalize, and review key cybersecurity program deliverables for DOC and BIS environments.
- Support compliance efforts aligned with FISMA, NIST, OMB, and other Federal cybersecurity standards and guidance.
- Identify unique system characteristics and conduct interviews with technical, administrative, and executive personnel.
- Collaborate with OCIO teams to develop and maintain required cybersecurity documentation, including security categorizations, risk assessments, contingency plans, security test and evaluation reports, and vulnerability assessment reports.
- Map technical requirements, system functionality, and operational capabilities to prescribed security controls, policies, and practices.
- Analyze data collected from open-source, high-side, data calls, and other intelligence sources.
- Present cybersecurity findings and recommendations in both detailed and executive-level formats for internal and external stakeholders.
Benefits
- Paid Time Off / Sick Leave
- Health, Dental, and Vision Coverage
- Life Insurance
- 401(k) Retirement Plan with Company Match
- HSA/FSA Spending Accounts
- Long- and Short-Term Disability
- Pet Insurance
- Wellness Program Initiatives
- RIVA Flex (Flexible Hours and Hybrid Support, where applicable)
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
