Search suggestions:

hiring immediately
part time
full time
remote work from home
warehouse
receptionist
data entry remote
server
customer service representative
manufacturing
customer service
remote
work from home
Wichita
United States
Houston
Dallas
Oklahoma City
Chicago
Brooklyn
Kansas City
San Antonio
Overland Park
Seattle
Lubbock
Richmond
California
Tulsa
Apply

Cybersecurity SME

KeenLogic
$115,042 - $145,669 a year
Fairfax County, Virginia
Full time
6 days ago

KeenLogic is seeking to hire a Cybersecurity Assessment and Authorization SME to support the Defense Logistics Agency (DLA). This role leads and supports the full lifecycle of the Risk Management Framework (RMF) process for large, complex information systems, ensuring compliance with NIST 800-53 controls and DoD cybersecurity policies. Key duties include conducting security control assessments, managing POA&Ms, performing vulnerability and risk analysis, supporting FISMA reporting, advising on emerging technologies (Cloud, ICS, OT), contributing to Zero Trust architecture assessments, and participating in Command Cyber Readiness Inspections (CCRI) and CERT activities. The SME will also develop and review key A&A documentation and brief senior leadership on cybersecurity posture. This is a hybrid role.

Required Qualifications:

  • Active Top Secret clearance
  • CSSP-Analyst certification
  • DoD Approved 8570 Baseline Certification: Category IAM Level III
  • DOD cybersecurity experience
  • 5+ years of relevant Risk Management Framework (RMF) and NIST A&A experience
  • Experience in assessing security controls and conducting authorization reviews for large, complex organizations
  • Experienced in the general tenets supporting the overall DOD implementation of its authorization process, to include supporting cybersecurity policy, procedures, and processes
  • Knowledgeable in the cybersecurity of emerging technology areas such as Cloud and Industrial Control Systems (ICSs), warehouse execution systems and Operational Technology (OT) infrastructures

Job Duties:

  • Serve as a cybersecurity Subject Matter Expert (SME) with regards to Assessment and Authorization (A&A) of information systems and all associated cybersecurity policies and procedures.
  • Perform a DOD cybersecurity process while either authorizing an information system or serving as a SME for an information system undergoing authorization.
  • Help apply the security controls identified in the NIST 800-53 to the process of assessing and authorizing a DLA’s IT infrastructure. Appropriately tailor these controls to DLA’s compilation of large and small enclaves, AIS applications and outsourced IT processes.
  • Perform technical reviews of security certification results, assess the adequacy of protective measures, evaluate residual risk, and determine the applicable severity value for identified vulnerabilities and their potential impact on system authorization (e.g., non-compliant security control), including future authorization.
  • Support all steps of the RMF process as defined in DoDI 8510.01, using NIST 800-53 controls and tools like eMASS.
  • Briefs senior management on the progress or results of an information system undergoing the Risk Management Framework (RMF) process.
  • Support developing and validating Plan of Action and Milestones (POA&Ms) for items not in compliance to ensure they adequately address A&A requirements.
  • Ensure adherence to cybersecurity policies, procedures, and processes. This includes supporting "Federal Information Security Management Act (FISMA) Tracking and Reporting" requirements and ensuring all necessary documentation and artifacts are updated and stored correctly for A&A purposes.
  • Advise on the A&A implications of emerging technology areas such as Cloud, Industrial Control Systems (ICS), and Operational Technology (OT) infrastructures, and contribute to assessing the DoD Zero Trust Reference Architecture and any gap analysis impacting hosting.
  • Analyze findings from "Command Cyber Readiness Inspections (CCRI)" and "Penetration Testing Support", assessing their impact on the system's authorization posture.
  • Assist in developing and reviewing critical A&A documentation, such as System Security Plans (SSPs) for "Controlled Unclassified Information (CUI)" protection, security plans, and test results for RMF controls. Also contribute to broader "Compliance Documentation".
  • Perform duties as a Computer Emergency Response Team (CERT) Analyst.

UYfDyjzoGu

Save Apply
Report job
Other Job Recommendations:

Additive Manufacturing SME / Material Engineer

ManTech
$87,400 - $145,300
  • Develop training for fleet operators and Naval Air Systems...
  • Provide Additive Manufacturing (AM) SME Support to the AM...
5 days ago

Subject Matter Expert (SME) - Controls

T5 Data Centers
Denton County, Texas
$100,429 - $139,204 a year
  • The SME – BMS is a quality assurance role focused on...
  • Supporting in-house quality procedures, standards, and...
1 week ago

Resource Programming and Integration SME

Premier Enterprise Solutions
Washington, District of Columbia
$85,804 - $110,558 a year
Premier Enterprise Solutions is looking for a Resource Programming and Integration SME responsible for establishing and...
1 week ago

Cybersecurity Analyst II - Certified CMMC Professional - CCP

Alluvionic
Melbourne, Florida
$99,942 - $116,044 a year
Secure the future of compliance—lead CMMC readiness with your CCP expertise and make an impact where cybersecurity meets strategy....
2 days ago

Risk/Mission Assurance Control Systems Cybersecurity Consultant

Astrion
Arlington County, Virginia
$142,187 - $166,197 a year
  • Operational Technology/ICS Cybersecurity – 5+ years...
  • Mission-Based Vulnerability Prioritization – 5+ years...
4 days ago