Cybersecurity Subject Matter Expert (Cyber SME)

Omniscius ConsultingBethesda, MD
Hybrid

About The Position

Our client is seeking a Cybersecurity Subject Matter Expert (SME) to provide technical leadership supporting NIH's enterprise Information Security Program. This position serves as the senior cybersecurity advisor responsible for governance, risk management, security engineering, vulnerability management, Zero Trust, incident response, RMF, and enterprise security strategy across NIH's hybrid environment.

Requirements

  • Bachelor's degree in Cybersecurity, Computer Science, Information Assurance, or related discipline (experience may substitute).
  • 12+ years of progressive cybersecurity experience.
  • Extensive knowledge of NIST SP 800-53
  • Extensive knowledge of NIST RMF
  • Extensive knowledge of FISMA
  • Extensive knowledge of FedRAMP
  • Extensive knowledge of Zero Trust
  • Extensive knowledge of CDM
  • Extensive knowledge of Vulnerability Management
  • Extensive knowledge of Incident Response
  • Extensive knowledge of Security Architecture
  • Extensive knowledge of Enterprise Risk Management
  • Experience supporting Federal cybersecurity programs.
  • Experience briefing senior executives and technical stakeholders.
  • Strong understanding of cloud security and hybrid enterprise environments.

Nice To Haves

  • CISSP (strongly preferred)
  • CGRC (formerly CAP)
  • CISM
  • CCSP
  • Security+
  • CEH
  • GCIH
  • PMP (preferred but not required)
  • NIH or HHS cybersecurity experience.
  • Microsoft Defender, Sentinel, Splunk, Tenable, ServiceNow, Azure Security Center.
  • Security engineering and enterprise architecture.
  • ISSO, ISSM, or CISO support experience.

Responsibilities

  • Provide senior technical leadership for NIH's Information Security Program.
  • Advise Government leadership on cybersecurity strategy, risk, and compliance.
  • Lead implementation of NIST RMF and FISMA requirements.
  • Support Assessment & Authorization (A&A), SSPs, POA&Ms, and security documentation.
  • Guide Zero Trust Architecture initiatives and enterprise modernization efforts.
  • Lead vulnerability management, penetration testing, and remediation strategies.
  • Support enterprise Continuous Diagnostics & Mitigation (CDM) activities.
  • Provide technical oversight for incident response, digital forensics, and threat mitigation.
  • Evaluate enterprise security architecture supporting cloud, on-premises, and hybrid environments.
  • Develop cybersecurity policies, standards, procedures, and best practices.
  • Support audits, inspections, FISMA reporting, and compliance assessments.
  • Mentor cybersecurity engineers, ISSOs, and technical teams.
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service