Cleared On Site Information Systems Security Engineer - SME (5100)
About The Position
SMX is hiring a number of Information Systems Security Engineer Subject Matter Experts to support a Law Enforcement OCIO's organization to provide Information Security as a Service support across all their major IT Systems These positions will be on site in Clarksburg, WV and require an active Top-Secret clearance. Essential Duties & Responsibilities: - Lead, mentor, and supervise a team of security professionals responsible for the end-to-end implementation of the RMF lifecycle for FBI IT systems. - Oversee and coordinate activities within the Prepare step, ensuring roles, responsibilities, and risk management strategies are clearly defined and maintained. - Guide system categorization efforts to ensure all information systems are appropriately classified based on mission/business impact and regulatory requirements. - Direct the selection, tailoring, and documentation of security controls aligned with system categorizations, Bureau risk appetite, and compliance requirements. - Oversee the implementation of technical, operational, and management controls throughout system and application lifecycles, with a particular focus on quality and completeness of all deliverables. - Ensure comprehensive security control assessments are planned, executed, and documented to validate the effectiveness of implemented safeguards. - Prepare risk management documentation for system authorization and executive decision-making. - Direct ongoing monitoring and continuous assessment activities, collecting metrics to adjust security strategies and ensure sustained compliance. - Serve as a principal technical advisor on cybersecurity, bringing subject-matter expertise to risk analysis, incident response, system remediation, and audit support efforts. - Foster a culture of security awareness, providing technical guidance and training to both team members and stakeholders. - Track, report, and communicate status, risks, and improvement opportunities related to security engineering activities to leadership and stakeholders. - Maintain up-to-date knowledge of RMF, NIST guidance, and industry best practices in support of continuous process improvement.
Requirements
- Minimum 15 years' experience
- Experience working with Federal Law Enforcement customers
- Top Secret clearance with SCI eligibility
- Mastery of RMF lifecycle
- IT System Security controls
- Hold at least one of the following certifications: Certified Information Systems Security Professional (CISSP) (or Associate), CompTIA Advanced Security Practitioner (CASP) CASP CE, Certified Secure Software Lifecycle Professional (CSSLP), CISSP- Information System Security Engineering Professional (ISSEP), or CISSP- Information System Security Architecture Professional (ISSAP)
Responsibilities
- Lead, mentor, and supervise a team of security professionals responsible for the end-to-end implementation of the RMF lifecycle for FBI IT systems.
- Oversee and coordinate activities within the Prepare step, ensuring roles, responsibilities, and risk management strategies are clearly defined and maintained.
- Guide system categorization efforts to ensure all information systems are appropriately classified based on mission/business impact and regulatory requirements.
- Direct the selection, tailoring, and documentation of security controls aligned with system categorizations, Bureau risk appetite, and compliance requirements.
- Oversee the implementation of technical, operational, and management controls throughout system and application lifecycles, with a particular focus on quality and completeness of all deliverables.
- Ensure comprehensive security control assessments are planned, executed, and documented to validate the effectiveness of implemented safeguards.
- Prepare risk management documentation for system authorization and executive decision-making.
- Direct ongoing monitoring and continuous assessment activities, collecting metrics to adjust security strategies and ensure sustained compliance.
- Serve as a principal technical advisor on cybersecurity, bringing subject-matter expertise to risk analysis, incident response, system remediation, and audit support efforts.
- Foster a culture of security awareness, providing technical guidance and training to both team members and stakeholders.
- Track, report, and communicate status, risks, and improvement opportunities related to security engineering activities to leadership and stakeholders.
- Maintain up-to-date knowledge of RMF, NIST guidance, and industry best practices in support of continuous process improvement.
Benefits
- health insurance
- paid leave
- retirement
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Mid Level
Education Level
No Education Listed
