Cybersecurity SME
Employment Information
Report this job
Job expired or something wrong with this job?
Job Description
Cybersecurity Subject Matter Expert ensuring compliance and security for DTMO systems. Collaborating with teams to manage risk and maintain system security posture in a remote role.
Responsibilities:
- Coordinate with DMDC to administer all aspects of the Risk Management Framework (RMF) to ensure DTMO systems maintain their Authority to Operate (ATO)
- Collaborate with the DTMO Information System Security Manager (ISSM) to maintain and update system security authorization packages
- Support the Authorizing Official (AO) and Security Control Assessor (SCA) to ensure compliance with DoD cybersecurity policies and security control requirements
- Manage and track Plans of Action and Milestones (POA&Ms), ensuring remediation actions are documented, monitored, and closed in coordination with the ISSM
- Participate in security audits, assessments, and authorization activities, providing documentation and technical support
- Coordinate with DMDC to monitor and report the security posture of DTMO systems using automated and manual reporting tools
- Monitor and analyze security event logs, generate reports, and identify potential risks or anomalous activity
- Review vulnerability scan results, recommend remediation strategies, and coordinate implementation of security patches and fixes
- Validate implementation of security controls and access control mechanisms to ensure proper protection of DTMO systems
- Develop and submit Deviation Requests for authorized exceptions to DoD Security Technical Implementation Guide (STIG) requirements when necessary
- Develop and maintain cybersecurity documentation including System Security Plans (SSPs), Security Assessment Reports (SARs), and Risk Assessment Reports (RARs)
- Support incident response activities, coordinating with DMDC and DTMO stakeholders to investigate and resolve cybersecurity incidents
- Provide cybersecurity guidance and recommendations to DTMO leadership and technical teams
- Support cloud security compliance and ensure adherence to DoD cloud security and computing policies
- Coordinate security assessments and penetration testing efforts to evaluate system security posture
- Support continuous monitoring activities and ensure compliance with DoD Information Assurance Vulnerability Management (IAVM) requirements
- Stay informed on emerging cybersecurity threats and vulnerabilities, recommending mitigation strategies and security improvements
Requirements:
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Engineering, or a related field or Certified Information Systems Security Professional (CISSP) certification
- Microsoft Certified Solutions Expert (MCSE) Cloud Platform and Infrastructure, AWS Certified Solutions Architect, Red Hat Certified System Administrator in Red Hat OpenStack, or equivalent
- Experience implementing and supporting the Risk Management Framework (RMF) and NIST SP 800-37 processes
- Knowledge of DoD cybersecurity policies, NIST security controls, and STIG compliance requirements
- Experience managing Plans of Action and Milestones (POA&Ms) and supporting security authorization packages
- Experience conducting security assessments, vulnerability management, and remediation coordination
- Familiarity with security event logging, monitoring tools, and incident response processes
- Experience developing and maintaining security documentation, including SSPs, SARs, and RARs
- Understanding of continuous monitoring programs and Information Assurance Vulnerability Management (IAVM) requirements
- Experience supporting cloud security environments and compliance with DoD cloud security policies
- Strong analytical, risk assessment, and problem-solving skills
- Ability to collaborate effectively with security teams, system administrators, and federal stakeholders
- Strong written and verbal communication skills, including security reporting and technical documentation.
Benefits:
- Medical, dental, vision, disability, and life insurance
- Flexible Spending Accounts
- 401(k)
- PTO
- Paid Parental Leave
- Tuition reimbursement
- Paid federal holidays
Similar Jobs
Lead Technical Consultant, Cybersecurity Defense
Lead Technical Consultant managing Cyber Defense projects across Germany, Austria, and Switzerland. Responsible for technical implementation and innovation in Cyber Defense architectures.
Staff Security Product Engineer
Security Engineer building AI-driven security products for application security and operations. Collaborating with product teams to design systems that act on security signals and workflows.
Cybersecurity Risk Engineer
Designing and maintaining secure cloud infrastructures as a Cybersecurity Engineer at Ensemble Health Partners. Focused on enhancing security controls and analyzing potential vulnerabilities in cloud structures.
Engineer, Cybersecurity Risk
Engineer II, Cybersecurity designing and maintaining secure infrastructures for Ensemble Health Partners, while analyzing cloud structures for enhanced security methods.
Senior AI Cybersecurity Engineer
AI Cybersecurity Engineer designing and executing cybersecurity-focused AI governance programs. Collaborating with cross-functional teams on secure AI solutions and policies while ensuring compliance and risk management.
Technical Writer, Cybersecurity
Technical Writer ensuring clarity and consistency in federal cybersecurity documentation. Edit and format various technical documents while collaborating with analysts and SMEs.
Cybersecurity Program Manager
Cybersecurity Program Manager overseeing contract performance and managing cybersecurity teams for federal clients in a remote capacity. Ensuring quality, audit-ready security assessment services are delivered.
Information Security Engineer
Information Security Engineer assessing web technologies and coordinating remediation at G-P. Collaborating with teams to enhance application security and develop automation tools.
Cybersecurity Compliance Lead
Cybersecurity Compliance Lead at Fresche Solutions responsible for leading the cybersecurity compliance program and mentoring team members. Overseeing audits, developing strategies, and fostering a security culture.
Senior Security Architect
XAAS Consultant advising clients on IT Security, focusing on infrastructure, cloud, and application security. Involves hands-on security assessments and developing security architectures.
Security Specialist – Cryptography
Security Specialist focusing on Cryptography for remote projects at The Whiteam Consulting. Collaborating with technology consultants to optimize business profitability.
Protection and Security Specialist
Sicherheitskraft plant und setzt Maßnahmen zur Gefahrenabwehr für Veranstaltungen um. Zusammenarbeit mit Kunden und Behörden in einem der größten Messeunternehmen der Welt.
Information System Security Officer
Information System Security Officer managing security authorization for federal information systems. Overseeing RMF lifecycle activities and ensuring compliance with federal directives.
KMS Security Engineer – Security
KMS Security Engineer ensuring security in crypto wallets for a leading money app company. Responsible for mitigating security risks and collaborating with development teams to maintain security integrity.
Staff Security Engineer
Staff Security Engineer role at a Managed Service Provider overseeing security solutions across diverse clients. Focus on technical leadership, architecture, mentoring, and compliance.
Bug Bounty Security Researcher
Bug Bounty Security Researcher identifying and reporting vulnerabilities in software applications and systems for Inspectiv. Contributing to improving security and participating in bug bounty programs.
IT Security Compliance Assurance Manager – CAM
Information Security Compliance Assurance Manager at Gainwell, managing audits and compliance with HIPAA and NIST frameworks for the organization. Leading security controls and compliance efforts with executive stakeholders and IT.
Social Security Disability Case Manager
Social Security Disability Claims Case Manager at Mindset assisting clients with claims application processes. Responsible for gathering documentation and advocating for clients' claims.
Analyst – Cyber Security Compliance
Cyber Security Analyst conducting PCI Compliance assessments at global live entertainment company Live Nation. Assuring effective implementation of security controls aligned with organizational standards.
Cloud Security Engineer
Cloud Security Engineer ensuring cloud infrastructure security at Camping World. Bridging strategic security requirements with technical implementation in a fast-paced environment.