Work in Washington Veterans Jobs

Cybersecurity SME - Security Control Assessor (SCA) (4158)at SMX(View all jobs) (https://www.smxtech.com/careers/)

United States

The Cybersecurity Subject Matter Expert (SME) / Security Control Assessor (SCA) will directly support the Secretary of the Air Force/Concept Development Management Office (SAF/CDM), Mission Architecture Innovation directorate (CDMM). The organization manages a portfolio of projects to develop and implement information systems to support a broad range of business and mission activities.

The Cybersecurity SME/SCA will be responsible for conducting system security assessment activities to include but not limited to the architecture and implementation of technical cybersecurity measures.

Essential Duties & Responsibilities

• Develop cybersecurity policies, procedures, standards, and guidance.

• Provide input to A&A process activities and related documentation such as systems concept of operations, system security design, implementation plans, operational procedures, and maintenance training materials.

• Provide engineering support and assistance to authorization/accreditation test and evaluation activities.

• Provide continuous monitoring support for information systems.

• Develop IT architecture deliverables, specific to information security countermeasure implementations, for operational systems and systems under development.

• Conducts independent comprehensive assessments of the management, operational, and technical security controls and control enhancements employed within or inherited by an information technology (IT) system to determine the overall effectiveness of the controls (as defined in NIST 800-37). Reports to Authorizing Official on all cyber activities.

Required Skills & Experience

• DoD Top Secret/SCI

• Certifications: 8140 / 8570 IAM/IAT III (CISSP preferred)

• BS in STEM / Computer Science/ Cybersecurity or related field

• Minimum 7-10 years’ experience

• Minimum 5 years’ experience as a security control assessor or representative

• Must be physically present (NCR)

• Occasional travel may be required.

• Experience with Integration and engineering of cybersecurity related tools such as vulnerability scanners (Nessus), anti-malware solutions (McAfee, Trellex, ClamAV, etc), Security Information Event Management (SIEM) tools (such as Splunk / ELK / OpenSearch), secure baseline implementation and hardening, basic system administration for Linux or Windows environments.

• Experience with translation of technical security control plans and objectives into actionable engineering milestones and creation of security control plans / assessment procedures.

• Experience within modern cloud environments

• Experience with Xacta or Emass

Desired Skills & Experience

• Ability to operate in a complex, dynamic and fast-paced environment

• Master’s Degree in related discipline

Application Deadline: March 10, 2025

#LI-POST

The SMX salary determination process takes into account a number of factors, including but not limited to, geographic location, Federal Government contract labor categories, relevant prior work experience, specific skills, education and certifications. At SMX, one of our Core Values is to Invest in Our People so we offer a competitive mix of compensation, learning & development opportunities, and benefits. Some key components of our robust benefits include health insurance, paid leave, and retirement.

The proposed salary for this position is:

$145,000—$240,000 USD

At SMX®, we are a team of technical and domain experts dedicated to enabling your mission. From priority national security initiatives for the DoD to highly assured and compliant solutions for healthcare, we understand that digital transformation is key to your future success.

We share your vision for the future and strive to accelerate your impact on the world. We bring both cutting edge technology and an expansive view of what’s possible to every engagement. Our delivery model and unique approaches harness our deep technical and domain knowledge, providing forward-looking insights and practical solutions to power secure mission acceleration.

All qualified candidates will receive consideration for employment without regard to disability status, protected veteran status, race, color, age, religion, national origin, citizenship, marital status, sex, sexual orientation, gender identity or expression, pregnancy or genetic information.

Selected applicant may be subject to a background investigation and/or education verification.