Cybersecurity Subject Matter Expert w/Secret Clearance

About The Position

Requirements

• 15 years IT experience HIPAA/Medical Systems expertise
• Senior DoD cybersecurity experience
• RMF subject matter expertise
• A&A authorization experience
• IV&V cybersecurity validation experience
• Enterprise cybersecurity architecture experience
• Risk management expertise
• DoD policy knowledge
• IAM Level III Certification preferred (e.g., CISSP, CISM, CASP)
• Bachelor’s degree in Cybersecurity, IT, Engineering, or related field Equivalent experience acceptable
• Secret clearance (ability to obtain TS preferred)

Nice To Haves

• IAM Level III Certification preferred (e.g., CISSP, CISM, CASP)
• Secret clearance (ability to obtain TS preferred)

Responsibilities

• Serve as senior cybersecurity advisor for RMF and A&A execution
• Provide subject matter expertise on DoD cybersecurity policy and guidance
• Provide oversight of RMF lifecycle implementation across systems
• Review and approve Security Assessment Plans and test strategies
• Provide technical review of Security Assessment Reports
• Provide expert analysis of residual risk and authorization recommendations
• Provide oversight of IV&V cybersecurity validation activities
• Provide expert guidance on STIG compliance and implementation
• Support development of RMF strategies for enterprise systems
• Provide guidance on cybersecurity architecture and control selection
• Review system boundary definitions and enclave architectures
• Provide oversight of vulnerability remediation strategies
• Review POA&M development and risk mitigation approaches
• Provide expert support for eMASS package development
• Review authorization packages for completeness and accuracy
• Provide consultation to system owners and program managers
• Support validation readiness review decision-making
• Provide guidance for continuous monitoring strategy implementation
• Support development of cybersecurity SOPs and policies
• Provide guidance on NIST, FISMA, and DoD RMF requirements
• Participate in technical review boards and governance forums
• Provide expert analysis of cybersecurity test results
• Support development of enterprise cybersecurity dashboards
• Provide subject matter expertise for DHA cybersecurity initiatives
• Support toolset enhancement and automation planning
• Provide guidance on risk scoring and vulnerability prioritization
• Support enterprise-wide cybersecurity compliance activities
• Provide executive-level cybersecurity recommendations
• Support CONUS and OCONUS cybersecurity assessment activities
• Provide technical mentoring to engineering and analyst teams
• Support Government briefings and technical presentations
• Provide advisory support for authorization decisions

Benefits

• health
• dental
• vision
• 401K
• life insurance
• short-term and long-term disability plans
• vacation time
• holidays