Cybersecurity SME (Junior)
Chenega Corporation
Req ID: 41153
Summary
Cybersecurity SME JR
Alexandria, VA
Are you ready to enhance your skills and build your career in a rapidly evolving business climate? Are you looking for a career where professional development is embedded in your employers core culture? If so, Chenega Military, Intelligence & Operations Support (MIOS) could be the place for you! Join our team of professionals who support large-scale government operations by leveraging cutting-edge technology and take your career to the next level!
The Cybersecurity SME is a key contract personnel who provides expert guidance and technical leadership, leading the contractor cybersecurity personnel, supporting, and representing the AGC Information System Security Manager (ISSM) in customer and management/leadership meetings for the area of cybersecurity.
Responsibilities
Report on and perform Continuous Monitoring on all AGC-supported systems and networks; identify, mitigate, and resolve cybersecurity incident issues and concerns
Develop guidelines/plans, analyses, reviews, and mitigations in the areas of security incident response and mitigation strategies, vulnerability scanning, writing security assessments, and other cybersecurity-related activities and mandates
Respond to all cybersecurity notices as directed by the Cyber Security Service Provider (CSSP) and pertinent service providers, take action to comply with security notices, and record compliance
Provide technical support, including documentation, to enable required AGC systems to meet the requirements of receiving an Authority to Operate (ATO) accreditation decision via the Department of Defense (DoD) Risk Management Framework (RMF)
Support operational cybersecurity activities, including vulnerability scanning, IAVM compliance, STIG and SRG application, assessment, and remediation, and POA&Ms
Support cybersecurity governance, risk, and compliance by providing plans, policies, and procedures relevant to AGCs systems, applications, and networks, including AGC GovCloud (L2/L4), and other accredited systems/applications.
Manage accreditation and continuously monitor activities, as well as the vulnerability management and incident response functions for all supported systems and networks.
Support operational cybersecurity activities, including vulnerability scanning, IAVM compliance, STIG and SRG application, assessment, and remediation, and POA&M.
Support cybersecurity governance, risk, and compliance by providing plans, policies, and procedures relevant to AGCs systems, applications, and networks, including AGGC-R Cloud and/or AGC Army AWS Cloud, C2IE, OHASIS.
Maintains AGCs Tenant Security Plans (TSP) for SIPR and NIPR, Authority to Operate (ATO) for JWICS and Interim Authority to Test (IATT), Approval to Connect (ATC), and any other documentation necessary to support AGCs network connections and mission systems.
Manage the eMASS records for AGCs mission systems and enclaves, create and track POA&Ms, track IAVM and STIG compliance, and manage eMASS artifacts necessary to support evidence for applicable security controls.
Support RMF activities, including categorization of systems IAW NIST SP 800-60, selection of security controls IAW CNSSI 1253 and NIST SP 800-53, assessment of security controls IAW NIST SP 800-53A, development and implementation of Continuous Monitoring Plans IAW NIST SP800-137, STIG Traceability Matrix, hardware/software/firmware list, and System Security Plan (SSP).
Participate in the configuration process (CM) through representation on the Technical Review Board (TRB) and Configuration Control Board (CCB) and provide a security impact assessment for changes submitted through Request for Change (RFCs).
Responsible for the continuous monitoring of AGCs systems, applications, and networks
Configure vulnerability scanning, analyze results, and close or mitigate findings.
Organize the assessment of AGC GISO IT assets using applicable STIGs, SRGs, and/or vendor supply hardening guidelines.
Responsible for configuring AGC GISO IT assets for vulnerability scanning and ensuring 100% coverage using credentialed scans.
Coordinate with RNEC-NCR, C5ISR, GISA, and other Army enterprise service providers, as necessary, to ensure vulnerability assessment tools are in place and working properly.
Analyze vulnerability scan results and resolve open findings for findings that cannot be closed, create a POA&M, and recommend mitigation(s) to lessen the impact of the vulnerability; submit Operational Impact Statements (OIS) for Critical and High IAVAs.
Create a POA&M and recommend mitigation(s) to lessen the impact of the vulnerability IAW with ARCYBER OPORD 2016-129, submit Operational Impact Statements (OIS) for Critical and High IAVAs.
Support response procedures for cybersecurity incidents, like breaches, spills, and insider threat actions.
In coordination with the ISSM and IA Officer, all cybersecurity documentation required for accreditation for AGCs GISO assets, including but not limited to: architecture diagrams, boundary diagrams, data flow diagrams, ports, protocols, service exception requests, PKI certifications, IA metrics, and Privacy Impact Assessments (PIA) in the requisite cybersecurity document repository.
Identify, mitigate, and resolve cybersecurity incident issues and concerns
Develop guidelines/plans, analyses, reviews, and mitigations in the areas of security incident response and mitigation strategies, vulnerability scanning, writing security assessments, and other cybersecurity-related activities and mandates.
Provide technical support, including documentation, to enable AGC systems to meet the requirements of receiving an Authority to Operate (ATO) accreditation decision via the Department of Defense (DoD) Risk Management Framework (RMF).
Provide input to the weekly and monthly status report covering technical activities for this functional area, including priorities, tasks, accreditation due dates and schedules, POA&M status, metrics, continuous monitoring tasks, etc.
Other duties as assigned
Qualifications
BA/BS degree preferred
5+ years of relevant experience with DoD in an IA/Cybersecurity role preferred
DoD 8570.01-M IAM II required
IASE III certifications preferred
Active TS/SCI clearance required
Knowledge, Skills, and Abilities:
Trained and experienced with DoD vulnerability scanning tools, including Assured Compliance Assessment Solution (ACAS), Security Content Automation Protocol Compliance Checker (SCAP), Security Technical Implementation Guide (STIG) Viewer, Endpoint Security Solution (ESS), and AWS GovCloud security tools, including AWS Security Hub, Amazon Inspector, AWS Config, Amazon GuardDuty, Amazon Detective, and Amazon Macie.
Must be proficient with related automated tools, including but not limited to the Enterprise Mission Assurance Support Service (eMASS), Host-Based Security System (HBSS), and Assured Compliance Assessment Solution (ACAS).
Shall possess expert knowledge and in-depth experience with:
Application and system assessment, determination of accreditation requirements (Assess Only, ATO, IATT, etc.).
Categorization of information systems and/or data types IAW NIST SP 800-60 Vol II.
Establishment of Security Requirements Traceability Matrix, which identifies applicable DISA STIGs and SRGs.
Selection of security controls per NIST SP 800-53 and CNSSI 1253.
Writing System Security Plan (SSP), associated security controls assessment artifacts, and PO&AMs.
Application of DISA STIGs and SRGs.
Management of security controls assessment artifacts in eMASS in preparation of packages for RMF (DoDI 8510.01, NIST SP 800-37) processes.
Evaluation of security controls per NIST SP 800- 53A.
Implementation of continuous monitoring solutions per NIST SP 800-13
Knowledge and experience with current DoD and Army IA policies and procedures, RMF certification and accreditation procedures and requirements, APMS reporting procedures, and an understanding of the unique acquisition community IA issues.
Familiarity with Army and DoD regulations concerning IA implementation
Able to lead/oversee Program Protection Planning (PPP) and Security Classification Guide development and production for developmental and production systems.
Knowledge and experience in the security sub-disciplines supporting Army IA, certification and accreditation, IA security testing, and security management for both developmental and production systems, including but not limited to Communications Security, Physical Security, OPSEC, Risk Assessments, Personnel Security, Tempest, Network Security, Security Inspections, and User Training.
Must have advanced working knowledge of a variety of computer software applications in word processing, spreadsheets, database (MSWord, Excel, Access, PowerPoint), and Outlook.
How youll grow
At Chenega MIOS, our professional development plan focuses on helping our team members at every level of their careers to identify and use their strengths to do their best work every day. From entry-level employees to senior leaders, we believe theres always room to learn.
We offer opportunities to help sharpen skills in addition to hands-on experience in the global, fast-changing business world. From on-the-job learning experiences to formal development programs, our professionals have a variety of opportunities to continue to grow throughout their careers.
Benefits
At Chenega MIOS, we know that great people make a great organization. We value our team members and offer them a broad range of benefits.
Learn more about what working at Chenega MIOS can mean for you.
Chenega MIOSs culture
Our positive and supportive culture encourages our team members to do their best work every day. We celebrate individuals by recognizing their uniqueness and offering them the flexibility to make daily choices that can help them be healthy, centered, confident, and aware. We offer well-being programs and continuously look for new ways to maintain a culture where we excel and lead healthy, happy lives.
Corporate citizenship
Chenega MIOS is led by a purpose to make an impact that matters. This purpose defines who we are and extends to relationships with our clients, our team members, and our communities. We believe that business has the power to inspire and transform. We focus on education, giving, skill-based volunteerism, and leadership to help drive positive social impact in our communities.
Learn more about Chenegas impact on the world.
Chenega MIOS News-
Tips from your Talent Acquisition Team
We want job seekers exploring opportunities at Chenega MIOS to feel prepared and confident. To help you with your research, we suggest you review the following links:
Chenega MIOS web site -
Glassdoor -
LinkedIn -
Facebook -
#Chenega IT Enterprise Services, LLC
Chenega Corporation and family of companies is an EOE.
Equal Opportunity Employer/Veterans/Disabled
Native preference under PL 93-638.
We participate in the E-Verify Employment Verification Program
- ...Overview Cybersecurity SME JR Alexandria, VA Are you ready to enhance your skills and build your career in a rapidly evolving business climate? Are you looking for a career where professional development is embedded in your employer’s core culture? If so, Chenega Military...JuniorContract workFor contractorsInterim role
- ...Leidos Digital Modernization sector is seeking an experienced SME Zero Trust Cyber Security Analyst to support the delivery, enhancement... ...Trust policies, controls, and security standards. Analyze cybersecurity data and system behavior to identify anomalies, risks, and...Suggested
- ...Leidos Digital Modernization sector is seeking an experienced SME Cyber Incident Response Analyst to support the delivery, enhancement... ...including those lacking clear technical indicators. Work with cybersecurity, network, and operations teams to ensure timely containment,...Suggested
- A technology firm in Virginia is seeking an experienced SME Cyber Incident Response Analyst to join its team. This role involves monitoring... ...Ideal candidates should have at least 5 years of experience in cybersecurity and a strong knowledge of relevant frameworks and tools. The...Suggested
$144.9k - $265.8k
...Digital Identity & Authentication SME (Microsoft Entra, Okta, Ping, Saviynt) Overview In today’s rapidly evolving IT landscape, organizations face increasingly complex cybersecurity risks and regulatory pressures. Identity—both human and non-human—is at the core of every...SuggestedWork experience placementSummer holidayFlexible hours- ...Cybersecurity Cloud Subject Matter Expert (SME) Serves as the primary cloud security architect responsible for ensuring that cloud-hosted IT systems, particularly the Electronic Contract Writing Module (ECWM) and related customer contracting systems, are architected...Contract work
- ...Arlington, VA. Description We are seeking a Junior Cyber Risk Data Engineer/Analyst . This... ...‑oriented and eager to grow in the cybersecurity field. You will help organize and manage... ...skills to document findings and support SME deliverables. Preferred Qualifications Experience...JuniorInternshipShift work
- *This is a contingent opportunity K2 Group is seeking a Nuclear Cybersecurity Subject Matter Expert (SME) supporting Headquarters Air Force. This role providesspecializedtechnical,analytical,andprogrammaticsupport for theNuclear Command, Control and Communication (NC3)...Temporary work
- ...project teams typically composed of a mix of junior and mid-level analysts who will look to... ...: We are seeking a Cyber Risk Analyst (SME-level). This role involves conducting on... ...impacts. You will work alongside cybersecurity, OT, and systems engineering SMEs, creating...For contractorsRemote workShift work
- K2 Group, Inc. is seeking a Nuclear Cybersecurity Subject Matter Expert (SME) to support Headquarters Air Force. This role involves extensive technical and analytical support for Nuclear Command, Control, and Communication, ensuring robust security standards. The ideal...
- Chenega Corporation, located in Alexandria, VA, is seeking a Cybersecurity SME JR to enhance skills in a rapidly evolving environment. This role provides expert guidance and leadership in cybersecurity, supporting government operations through advanced technology. Key responsibilities...
$131.3k - $237.35k
...Leidos Digital Modernization sector is seeking an experienced SME Solution Architect to support the delivery, enhancement, and adoption... ...applications, data platforms, cloud infrastructure, and cybersecurity controls. Lead development of technical solution strategies aligned...- ...exciting opportunity for Information Systems Security Engineer (ISSE) SME in our Intel Security Sector's Analysis Solutions Business Area... ..., and change control. Conducting or supporting technical cybersecurity assessments and security audits. Coordinating with...Immediate startFlexible hours
$160k - $230k
Financial Accounting and Data Engineering SME KAIROS, Inc is searching for an energetic, experienced, and highly motivated Senior... ...growing Woman Owned Small Business (WOSB) providing full life cycle Cybersecurity, Program Management, Engineering, Logistics, Additive...Temporary workWork at officeLocal area- Via Logic LLC in Arlington, VA is seeking a Junior Exercise Planner to support the HSEEP exercise planning process for CISA’s National Cybersecurity Exercise Program. You will play a key role in exercise design, administration, and documentation while supporting a variety...Junior
- Koitecc Solutions in Arlington, Virginia, is seeking a Junior Exercise Planner to support HSEEP exercise planning for CISA's National Cybersecurity Exercise Program. This role involves planning, conducting, and evaluating exercises, while also providing administrative...Junior
- A cybersecurity solutions provider is seeking a Jr Industrial Control System Cyber Threat Intelligence Analyst in Arlington, VA. The ideal candidate should hold a Bachelor's degree with at least 2 years of relevant experience and have hands-on capabilities in cyber incident...Junior
$131.3k - $237.35k
...faster, better‑informed decisions using trusted data at scale. Leidos Digital Modernization sector is seeking an experienced SME Cybersecurity Architect to support the delivery, enhancement, and adoption of enterprise data and analytics products used across multiple DoD...- A cybersecurity solutions provider is seeking an Endpoint Security SME to oversee security management for thousands of endpoints. This full-time position requires extensive experience in endpoint security, expertise in HBSS and EDR platforms, and strong analytical skills...Full time
- ...Specialist monitoring and reviewing multiple data sources, including intelligence, media, and law enforcement reporting, to identify cybersecurity incidents, threats, and vulnerabilities on behalf of CISA. Provide classified and unclassified cyber risk briefings and...Junior
- ZERO TRUST (ZT) PROCESS RE-ENGINEERING SME POSITION OVERVIEW The Zero Trust Process Re-Engineering SME exists to provide senior-level... ..., analyzing, and re-engineering the agency's enterprise IT and cybersecurity processes to advance its Zero Trust implementation. This role...Casual workRemote work
- Data Warehouse Subject Matter Expert (SME) Position Summary The Data Warehouse Subject Matter Expert (SME) provides senior-level technical... ...customers. We offer the opportunity to work on high-impact cybersecurity missions alongside experienced professionals in a collaborative...For contractorsWork at office
$154.05k - $278.48k
...Description Leidos has an exciting opportunity for Cybersecurity Engineer SME in our Intel Security Sector's Analysis Solutions Business Area. Job Summary The Cybersecurity Engineer SME is responsible for protecting the customer’s information systems, networks, and infrastructure...$131.3k - $237.35k
...faster, better‑informed decisions using trusted data at scale. Leidos Digital Modernization sector is seeking an experienced SME Cybersecurity Systems Engineer Lead to support the delivery, enhancement, and adoption of enterprise data and analytics products used across...Local areaImmediate start- A growing decision analytics firm is seeking a Junior Cyber Risk Data Engineer/Analyst in Arlington, VA. This role emphasizes data-... ...The ideal candidate should possess 1-3 years of experience in cybersecurity and data analysis, along with expertise in tools like Excel and...Junior
- ...Requisition #: 1411 Job Tittle: Information System Security Engineer - SME Location: Washington, DC Clearance: TS/SCI Required... ...Incident & Audit Support Provide subject‑matter expertise for cybersecurity risk analysis, incident response, vulnerability remediation, and...For contractors
$500 per month
...Contingent Upon Contract Award Enterprise Horizon Consulting Group is seeking a highly skilled Cybersecurity Assessment and Authorization (A&A) Subject Matter Expert (SME) to support the full lifecycle of cybersecurity authorization activities for complex information...Full timeContract workTemporary workLocal area- ...Lancesoft Cyber Security Specialist (Information Security Analyst - SME) Active Secret Clearance Required Preferred location... .... • Possession of Security+ or equivalent • NIST Cybersecurity Framework; • Incident Response Operations At Encode , we...Work at officeLocal areaRemote workFlexible hours
- A leading cybersecurity firm in Washington is seeking a CE/SI (Cybersecurity/Information Security) SME with over 10 years of federal acquisition experience. The ideal candidate will review and implement security system configurations, manage cyber risks, support incident...
$82.55k - $149.23k
Junior Exercise Planner - TS/SCI Leidos is seeking a Junior Exercise Planner to support HSEEP exercise planning and design, development, conduct, and evaluation for CISA’s National Cybersecurity Exercise Program (NCEP). The role supports day‑to‑day program operations and...Junior
Do you want to receive more vacancies?
Subscribe and receive similar vacancies to Cybersecurity SME (Junior). Be the first to apply!
- junior medical student Alexandria, VA
- junior developer no experience Alexandria, VA
- junior website developer Alexandria, VA
- junior legal associate Alexandria, VA
- junior network Alexandria, VA
- junior cloud administrator Alexandria, VA
- remote junior web developer Alexandria, VA
- junior data engineer remote Alexandria, VA
- junior sql analyst Alexandria, VA
- junior analyst Alexandria, VA

