Skip to content

Lead Cybersecurity Subject Matter Expert (SME)

  • Remote
    • Alexandra, Virginia, United States
  • $105 - $125 per year
  • Government Consulting

Viderity is seeking a Lead Cybersecurity Subject Matter Expert to provide support, research and analysis of complex problems, and processes relating to them.

Job description

This is a 100% remote role for candidates based in the Washington D.C. Metro Area (D.C., Maryland, Virginia). Candidates can be located within a 2-hour commute from Alexandria, Virginia.

Note:
This position may require an active security clearance at the time of application.

Viderity is seeking a Lead Cybersecurity Subject Matter Expert to provide support, research and analysis of exceptionally complex problems, and processes relating to them. Expertise is in cybersecurity and evaluations. Serves as a Subject Matter Excerpt (SME) in cybersecurity for the Assessment and Authorization of information systems across the DLA enterprise.

Key Responsibilities:

  • Analyze business processes, systems, and challenges to identify appropriate technological or operational solutions.

  • Serves as technical expert to the Cybersecurity Assessment Program providing technical direction, interpretation, and alternatives to complex problems.

  • Thinks independently and demonstrates exceptional written and oral communications skills.

  • Applies advanced technical principles, theories, and concepts.

  • Contributes to the development of new principles, concepts, and methodologies. Works on unusually complex technical problems and provides highly innovative and ingenious solutions.

  • Recommends cybersecurity software tools and assists in the development of software tool requirements and selection criteria to include the development of product specific STIGs from applicable DISA SRGs.

  • Works under consultative direction toward predetermined long-range goals and objectives. Assignments are often self-initiated.

  • Determines and pursues courses of action necessary to obtain desired results. Develops advanced technological ideas and guides their development into a final product.

Job requirements

Required Skills:

  • Bachelor’s degree in Business Administration, Computer Science, or a related field.

  • Seven (7) years of IT experience

  • Five (5) years IA experience

  • Three (3) years of experience with DOD Vulnerability Management System

  • Experience supporting Federal Government or large-scale enterprise IT projects.

  • Familiarity with Agile and/or Waterfall project management methodologies.

  • Knowledge of software development lifecycle (SDLC) and system integration concepts.

  • Certification(s) in business analysis (e.g., CBAP, CCBA) or project management (e.g., PMP) is a plus.

  • Experience using business analysis tools such as JIRA, Confluence, Visio, or similar platforms.

  • Proven proficiency performing CCRI/ vulnerability assessment/ penetration testing on networks, databases, computer applications and IT frameworks.

  • Strong analytical and problem-solving skills for resolving security issues.

  • Strong skills implementing and configuring networks and networks components.

  • Command Cyber Readiness Inspection certification in at least one of the following areas:

    o Retina scan analysis

    o Operating Systems (Windows, Unix)

    o Boundary defense (network policy, router, firewall) o Internal defense (L2 switch, L3 switch)o DNS (policy, BIND/Windows)

    o HBSS (remote console, AV, ABM, PA, HIPS, ePO)

    o Traditional security (Common, Basic, NCV, SCV)

    o Wireless communications (BES, handhelds)

Preferred Skills:

  • Tenable Certified NESSUS Auditor, IAM level III and IAT level II certifications

  • Knowledge and understanding of DOD security regulations, DISA STIGs.

  • Strong knowledge of SCAP • Strong knowledge of RMF

  • Excellent knowledge of and proficiency with:

    o VULNERATOR o USCYBERCOM CTO Compliance Program

    o Wireless vulnerability assessment

    o Web Services (IIS, Apache, Proxy)

    o Database (SQL Server, Oracle) o Email Services (Exchange)

    o Vulnerability Scans (NESSUS, SCCM) o Knowledge of Phishing exercises

    o USB Detect

    o Physical Security

Required Security Clearance:

o Access Level: IT-2

o Sensitivity Level: Non-critical Sensitive

o Type of Investigation: Current Tier 3 (T3) or National Agency Check with Local Agency Check and Credit Check (NACLC) at time of proposal submission.

 

DoD 8570.01-M Certification: DFARS 252.239-7001 Information Assurance Contractor Training and Certification is required for this position.

o IA Technical (IAT)/IA Management (IAM) Level: IAT Level II o IA Baseline Certification: Attachment_3_DOD 8570 Approved Baseline Certifications_Full_20210526

o CE/OS Certificate: Attachment_4_DLA Approved CS CE List_v28_20230221. Certification must be applicable to the Oracle based DAI Application Environment

o Relevant certification from a nationally recognized technical authority

Salary range:

$140,000 – $164,000 annually (depending on experience and qualifications)

Benefits:

    • 401(k) Plan with Company Matching

    • Health Insurance (Medical, Dental, Vision)

    • Paid Time Off (PTO) and Holidays

    • Retirement Planning Support

    • Professional Development Opportunities

    • Life and Disability Insurance

or