Sign up to access all features of our service.
  • Job search
  • Favorites
  • Create a CV
    New
  • Salaries
  • Subscriptions

Cybersecurity SME (Junior)

$120k

Chenega Corporation

Req ID: 41153

Summary

Cybersecurity SME JR

Alexandria, VA

Are you ready to enhance your skills and build your career in a rapidly evolving business climate? Are you looking for a career where professional development is embedded in your employers core culture? If so, Chenega Military, Intelligence & Operations Support (MIOS) could be the place for you! Join our team of professionals who support large-scale government operations by leveraging cutting-edge technology and take your career to the next level!

The Cybersecurity SME is a key contract personnel who provides expert guidance and technical leadership, leading the contractor cybersecurity personnel, supporting, and representing the AGC Information System Security Manager (ISSM) in customer and management/leadership meetings for the area of cybersecurity.

Responsibilities

  • Report on and perform Continuous Monitoring on all AGC-supported systems and networks; identify, mitigate, and resolve cybersecurity incident issues and concerns

  • Develop guidelines/plans, analyses, reviews, and mitigations in the areas of security incident response and mitigation strategies, vulnerability scanning, writing security assessments, and other cybersecurity-related activities and mandates

  • Respond to all cybersecurity notices as directed by the Cyber Security Service Provider (CSSP) and pertinent service providers, take action to comply with security notices, and record compliance

  • Provide technical support, including documentation, to enable required AGC systems to meet the requirements of receiving an Authority to Operate (ATO) accreditation decision via the Department of Defense (DoD) Risk Management Framework (RMF)

  • Support operational cybersecurity activities, including vulnerability scanning, IAVM compliance, STIG and SRG application, assessment, and remediation, and POA&Ms

  • Support cybersecurity governance, risk, and compliance by providing plans, policies, and procedures relevant to AGCs systems, applications, and networks, including AGC GovCloud (L2/L4), and other accredited systems/applications.

  • Manage accreditation and continuously monitor activities, as well as the vulnerability management and incident response functions for all supported systems and networks.

  • Support operational cybersecurity activities, including vulnerability scanning, IAVM compliance, STIG and SRG application, assessment, and remediation, and POA&M.

  • Support cybersecurity governance, risk, and compliance by providing plans, policies, and procedures relevant to AGCs systems, applications, and networks, including AGGC-R Cloud and/or AGC Army AWS Cloud, C2IE, OHASIS.

  • Maintains AGCs Tenant Security Plans (TSP) for SIPR and NIPR, Authority to Operate (ATO) for JWICS and Interim Authority to Test (IATT), Approval to Connect (ATC), and any other documentation necessary to support AGCs network connections and mission systems.

  • Manage the eMASS records for AGCs mission systems and enclaves, create and track POA&Ms, track IAVM and STIG compliance, and manage eMASS artifacts necessary to support evidence for applicable security controls.

  • Support RMF activities, including categorization of systems IAW NIST SP 800-60, selection of security controls IAW CNSSI 1253 and NIST SP 800-53, assessment of security controls IAW NIST SP 800-53A, development and implementation of Continuous Monitoring Plans IAW NIST SP800-137, STIG Traceability Matrix, hardware/software/firmware list, and System Security Plan (SSP).

  • Participate in the configuration process (CM) through representation on the Technical Review Board (TRB) and Configuration Control Board (CCB) and provide a security impact assessment for changes submitted through Request for Change (RFCs).

  • Responsible for the continuous monitoring of AGCs systems, applications, and networks

  • Configure vulnerability scanning, analyze results, and close or mitigate findings.

  • Organize the assessment of AGC GISO IT assets using applicable STIGs, SRGs, and/or vendor supply hardening guidelines.

  • Responsible for configuring AGC GISO IT assets for vulnerability scanning and ensuring 100% coverage using credentialed scans.

  • Coordinate with RNEC-NCR, C5ISR, GISA, and other Army enterprise service providers, as necessary, to ensure vulnerability assessment tools are in place and working properly.

  • Analyze vulnerability scan results and resolve open findings for findings that cannot be closed, create a POA&M, and recommend mitigation(s) to lessen the impact of the vulnerability; submit Operational Impact Statements (OIS) for Critical and High IAVAs.

  • Create a POA&M and recommend mitigation(s) to lessen the impact of the vulnerability IAW with ARCYBER OPORD 2016-129, submit Operational Impact Statements (OIS) for Critical and High IAVAs.

  • Support response procedures for cybersecurity incidents, like breaches, spills, and insider threat actions.

  • In coordination with the ISSM and IA Officer, all cybersecurity documentation required for accreditation for AGCs GISO assets, including but not limited to: architecture diagrams, boundary diagrams, data flow diagrams, ports, protocols, service exception requests, PKI certifications, IA metrics, and Privacy Impact Assessments (PIA) in the requisite cybersecurity document repository.

  • Identify, mitigate, and resolve cybersecurity incident issues and concerns

  • Develop guidelines/plans, analyses, reviews, and mitigations in the areas of security incident response and mitigation strategies, vulnerability scanning, writing security assessments, and other cybersecurity-related activities and mandates.

  • Provide technical support, including documentation, to enable AGC systems to meet the requirements of receiving an Authority to Operate (ATO) accreditation decision via the Department of Defense (DoD) Risk Management Framework (RMF).

  • Provide input to the weekly and monthly status report covering technical activities for this functional area, including priorities, tasks, accreditation due dates and schedules, POA&M status, metrics, continuous monitoring tasks, etc.

  • Other duties as assigned

Qualifications

  • BA/BS degree preferred

  • 5+ years of relevant experience with DoD in an IA/Cybersecurity role preferred

  • DoD 8570.01-M IAM II required

  • IASE III certifications preferred

  • Active TS/SCI clearance required

Knowledge, Skills, and Abilities:

  • Trained and experienced with DoD vulnerability scanning tools, including Assured Compliance Assessment Solution (ACAS), Security Content Automation Protocol Compliance Checker (SCAP), Security Technical Implementation Guide (STIG) Viewer, Endpoint Security Solution (ESS), and AWS GovCloud security tools, including AWS Security Hub, Amazon Inspector, AWS Config, Amazon GuardDuty, Amazon Detective, and Amazon Macie.

  • Must be proficient with related automated tools, including but not limited to the Enterprise Mission Assurance Support Service (eMASS), Host-Based Security System (HBSS), and Assured Compliance Assessment Solution (ACAS).

  • Shall possess expert knowledge and in-depth experience with:

  • Application and system assessment, determination of accreditation requirements (Assess Only, ATO, IATT, etc.).

  • Categorization of information systems and/or data types IAW NIST SP 800-60 Vol II.

  • Establishment of Security Requirements Traceability Matrix, which identifies applicable DISA STIGs and SRGs.

  • Selection of security controls per NIST SP 800-53 and CNSSI 1253.

  • Writing System Security Plan (SSP), associated security controls assessment artifacts, and PO&AMs.

  • Application of DISA STIGs and SRGs.

  • Management of security controls assessment artifacts in eMASS in preparation of packages for RMF (DoDI 8510.01, NIST SP 800-37) processes.

  • Evaluation of security controls per NIST SP 800- 53A.

  • Implementation of continuous monitoring solutions per NIST SP 800-13

  • Knowledge and experience with current DoD and Army IA policies and procedures, RMF certification and accreditation procedures and requirements, APMS reporting procedures, and an understanding of the unique acquisition community IA issues.

  • Familiarity with Army and DoD regulations concerning IA implementation

  • Able to lead/oversee Program Protection Planning (PPP) and Security Classification Guide development and production for developmental and production systems.

  • Knowledge and experience in the security sub-disciplines supporting Army IA, certification and accreditation, IA security testing, and security management for both developmental and production systems, including but not limited to Communications Security, Physical Security, OPSEC, Risk Assessments, Personnel Security, Tempest, Network Security, Security Inspections, and User Training.

  • Must have advanced working knowledge of a variety of computer software applications in word processing, spreadsheets, database (MSWord, Excel, Access, PowerPoint), and Outlook.

How youll grow

At Chenega MIOS, our professional development plan focuses on helping our team members at every level of their careers to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe theres always room to learn.

We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their careers.

Benefits

At Chenega MIOS, we know that great people make a great organization. We value our team members and offer them a broad range of benefits.

Learn more about what working at Chenega MIOS can mean for you.

Chenega MIOSs culture

Our positive and supportive culture encourages our team members to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them be healthy, centered, confident, and aware. We offer well-being programs and continuously look for new ways to maintain a culture where we excel and lead healthy, happy lives.

Corporate citizenship

Chenega MIOS is led by a purpose to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our team members, and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities.

Learn more about Chenegas impact on the world.

Chenega MIOS News-

Tips from your Talent Acquisition Team

We want job seekers exploring opportunities at Chenega MIOS to feel prepared and confident. To help you with your research, we suggest you review the following links:

Chenega MIOS web site -

Glassdoor -

LinkedIn -

Facebook -

#Chenega IT Enterprise Services, LLC

Estimated Salary/Wage

USD $120,000.00/Yr. Up to USD $145,000.00/Yr.

Chenega Corporation and family of companies is an EOE.

Equal Opportunity Employer/Veterans/Disabled

Native preference under PL 93-638.

We participate in the E-Verify Employment Verification Program

Vacancy posted 3 days ago
Similar jobs that could be interesting for youBased on the Cybersecurity SME (Junior) in Alexandria, VA vacancy
  •  ...Overview Cybersecurity SME JR Alexandria, VA Are you ready to enhance your skills and build your career in a rapidly evolving business climate? Are you looking for a career where professional development is embedded in your employer’s core culture? If so, Chenega Military... 
    Junior
    Contract work
    For contractors
    Interim role

    Chenega Corporation

    Alexandria, VA
    3 days ago
  •  ...Leidos Digital Modernization sector is seeking an experienced SME Cyber Incident Response Analyst to support the delivery, enhancement...  ...including those lacking clear technical indicators. Work with cybersecurity, network, and operations teams to ensure timely containment,... 
    Suggested

    Koitecc Solutions

    Alexandria, VA
    3 days ago
  •  ...A technology firm in Virginia is seeking an experienced SME Cyber Incident Response Analyst to join its team. This role involves...  ...Ideal candidates should have at least 5 years of experience in cybersecurity and a strong knowledge of relevant frameworks and tools. The position... 
    Suggested

    Via Logic LLC

    Alexandria, VA
    4 days ago
  • *This is a contingent opportunity K2 Group is seeking a Nuclear Cybersecurity Subject Matter Expert (SME) supporting Headquarters Air Force. This role providesspecializedtechnical,analytical,andprogrammaticsupport for theNuclear Command, Control and Communication (NC3)... 
    Suggested
    Temporary work

    K2 Group

    Arlington, VA
    3 days ago
  •  ...restoration of services. Nightwing is seeking an Enterprise Architect SME to support this critical customer mission  Responsibilities:...  ...databases.  - Experience with and technical understanding of cybersecurity attack-mitigation techniques and cybersecurity architectures... 
    Suggested
    Contract work
    Immediate start

    Nightwing

    Arlington, VA
    13 days ago
  •  ...Arlington, VA. Description We are seeking a Junior Cyber Risk Data Engineer/Analyst . This...  ...‑oriented and eager to grow in the cybersecurity field. You will help organize and manage...  ...skills to document findings and support SME deliverables. Preferred Qualifications Experience... 
    Junior
    Internship
    Shift work

    Technomics

    Arlington, VA
    4 days ago
  •  ...Cybersecurity Cloud Subject Matter Expert (SME) Serves as the primary cloud security architect responsible for ensuring that cloud-hosted IT systems, particularly the Electronic Contract Writing Module (ECWM) and related customer contracting systems, are architected... 
    Contract work

    Toomey Technologies LLC

    Alexandria, VA
    3 days ago
  • K2 Group, Inc. is seeking a Nuclear Cybersecurity Subject Matter Expert (SME) to support Headquarters Air Force. This role involves extensive technical and analytical support for Nuclear Command, Control, and Communication, ensuring robust security standards. The ideal... 

    K2 Group

    Arlington, VA
    3 days ago
  • Makoa is seeking a skilled IT professional to patch and maintain servers, ensuring compliance with security standards in Arlington, Virginia. The ideal candidate will have strong Linux expertise and the ability to administer security measures using tools like Microsoft ...
    Junior

    Makoa

    Arlington, VA
    1 day ago
  • Via Logic LLC in Arlington, VA is seeking a Junior Exercise Planner to support the HSEEP exercise planning process for CISA’s National Cybersecurity Exercise Program. You will play a key role in exercise design, administration, and documentation while supporting a variety... 
    Junior

    Via Logic LLC

    Arlington, VA
    5 days ago
  • Koitecc Solutions in Arlington, Virginia, is seeking a Junior Exercise Planner to support HSEEP exercise planning for CISA's National Cybersecurity Exercise Program. This role involves planning, conducting, and evaluating exercises, while also providing administrative... 
    Junior

    Koitecc Solutions

    Arlington, VA
    2 days ago
  • A cybersecurity solutions provider is seeking an Endpoint Security SME to oversee security management for thousands of endpoints. This full-time position requires extensive experience in endpoint security, expertise in HBSS and EDR platforms, and strong analytical skills... 
    Full time

    ZTI Solutions LLC

    Falls Church, VA
    1 day ago
  • A cybersecurity solutions provider is seeking a Jr Industrial Control System Cyber Threat Intelligence Analyst in Arlington, VA. The ideal candidate should hold a Bachelor's degree with at least 2 years of relevant experience and have hands-on capabilities in cyber incident... 
    Junior

    Peraton

    Arlington, VA
    3 days ago
  •  ...Specialist monitoring and reviewing multiple data sources, including intelligence, media, and law enforcement reporting, to identify cybersecurity incidents, threats, and vulnerabilities on behalf of CISA. Provide classified and unclassified cyber risk briefings and... 
    Junior

    Peraton

    Arlington, VA
    3 days ago
  • Data Warehouse Subject Matter Expert (SME) Position Summary The Data Warehouse Subject Matter Expert (SME) provides senior-level technical...  ...customers. We offer the opportunity to work on high-impact cybersecurity missions alongside experienced professionals in a collaborative... 
    For contractors
    Work at office

    Nationwide IT Services

    Arlington, VA
    4 days ago
  •  ...monitoring, and automation across Windows and Linux environments, with an emphasis on security, patching, and collaboration with cybersecurity teams. You will work with AWS services, IaC tools, and CI/CD pipelines to deploy and maintain cloud resources, while ensuring... 
    Junior

    CinTel Corp

    Arlington, VA
    2 days ago
  • A growing decision analytics firm is seeking a Junior Cyber Risk Data Engineer/Analyst in Arlington, VA. This role emphasizes data-...  ...The ideal candidate should possess 1-3 years of experience in cybersecurity and data analysis, along with expertise in tools like Excel and... 
    Junior

    Technomics, Inc.

    Arlington, VA
    3 days ago
  • $500 per month

     ...Contingent Upon Contract Award Enterprise Horizon Consulting Group is seeking a highly skilled Cybersecurity Assessment and Authorization (A&A) Subject Matter Expert (SME) to support the full lifecycle of cybersecurity authorization activities for complex information... 
    Full time
    Contract work
    Temporary work
    Local area

    Enterprise Horizon Consulting Group

    Alexandria, VA
    4 days ago
  • $210k - $250k

    IT Project Lead, SME Location: Washington, DC Clearance: TS with the ability to obtain SCI Required Certification: CISSP The IT...  ...required call order, programmatic, and financial reports. Assess cybersecurity risks, identify threats, and evaluate system and network... 
    Temporary work
    For subcontractor

    Agile Defense, LLC

    Washington DC
    1 day ago
  • $83.5k - $87.5k

     ...Cayuse Holdings is seeking a Cyber Incident Response Analyst in Washington, DC to enhance the cybersecurity framework. This role involves case management and coordination of cybersecurity incidents while ensuring exceptional customer service. The ideal candidate will hold... 
    Junior

    Cayuse Holdings

    Washington DC
    5 days ago
  •  ...JUNIOR SPLUNK DEVELOPER MILITARY FRIENDLY & PREFERRED - HOH SPONSOR Zermount Inc. is looking for a Junior Splunk Developer to assist...  ...project managers, product owners, other application teams, cybersecurity personnel, and executives to inform business decisions, work collaboratively... 
    Junior
    Work at office
    Remote work

    Zermount, Inc.

    Arlington, VA
    4 days ago
  •  ...hunt incident response/ hunt deployment tools, cloud technologies, and databases. Experience with and technical understanding of cybersecurity attack-mitigation techniques and cybersecurity architectures Experience with Systems Engineering Lifecycle (SELC) processes and... 

    Base One Technologies

    Arlington, VA
    3 days ago
  •  ...Job Title: Senior Network Engineer / Security SME Location: Bolling AFB, Washington, DC Type: Direct Hire Contractor Work...  ...Work directly with government stakeholders to evaluate emerging cybersecurity and networking technologies that modernize and strengthen... 
    Full time
    For contractors
    Local area
    Remote work

    System One

    Alexandria, VA
    2 days ago
  •  ...Position Overview GES is seeking a Senior Network Engineer (SME) to lead the design, implementation, and sustainment of secure...  ...network tasks using scripting Maintain DoD STIG compliance and cybersecurity posture Utilize ACAS and support RMF processes Provide... 
    Full time

    Global Enterprise Services, LLC

    Washington DC
    a month ago
  •  ...Everforth ECS is seeking a Data Governance & Quality Analyst SME to work in the National Capital Region covering the Pentagon,...  ...data forums to synchronize governance actions with engineering, cybersecurity, and AI modernization teams. Establishes data-sharing agreement... 
    Contract work

    ECS Limited

    Falls Church, VA
    5 days ago
  • Systems Analyst - TS required to apply; Washington DC; Junior to SME Washington, DC, USA 75000-155000 per year Competitive salary based on experience and qualifications Responsibilities Analyze science, engineering, business, and other data processing problems to implement... 
    Junior

    Bow-Wave-LLC

    Washington DC
    4 days ago
  • $150k - $180k

    Executive Officer (SME) (China Expert) About Bridge Defense Bridge Defense is redefining how modern defense technology is delivered...  ...and the design and implementation of advanced IT and cybersecurity capabilities ranging from secure cloud architectures and enterprise... 
    Relocation
    Flexible hours

    Federated IT

    Arlington, VA
    1 day ago
  •  ...certifications. Responsibilities include analyzing network artifacts for cyber threats, initial incident triage, and collaborating on cybersecurity efforts to safeguard DTRA's network operations. The ideal candidate should have experience with Splunk and network security... 
    Junior

    TekSynap

    Fort Belvoir, VA
    4 days ago
  • Ariel Partners is seeking a Cybersecurity Assessment & Authorization SME in Fairfax, VA. This role involves guiding A&A processes, performing RMF assessments, and ensuring compliance with DoD cybersecurity policies. Candidates must have an Active Secret Clearance and a... 

    Ariel Partners

    Fairfax, VA
    1 day ago
  • $53k - $270k

    A veteran-owned IT firm is looking for an SME in Cybersecurity to enhance technical and operational effectiveness in cybersecurity operations. Candidates should have a TS/SCI w/ Poly and relevant experience in incident response and process improvement. The role offers... 

    International Executive Service Corps

    Mc Lean, VA
    2 days ago

Do you want to receive more vacancies?

Subscribe and receive similar vacancies to Cybersecurity SME (Junior). Be the first to apply!