Cybersecurity Consultant strengthening the Incident Response Team at Conscia. Responsibilities include onboarding, incident management, and reporting for critical security incidents.
About the role
- Traveling Security Control Assessor at Leidos performing RMF assessments, vulnerability testing, and eMASS reporting for DoD systems
Responsibilities
- Conduct cybersecurity assessments, audits, and inspections for DoD organizations and partners handling DoD information or connecting to the DoDIN
- Evaluate systems and Defensive Cyberspace Operations using cyber threat emulation and performance-based testing
- Adhere to policies and processes for each assessment type
- Support assessment development and execution to ensure security expertise is properly applied
- Coordinate logistics, test plans, and scope with the SCA Team Lead
- Perform vulnerability assessments, capture results using STIG Viewer or designated tools, and document findings in eMASS
- Analyze security gaps and provide mitigation recommendations
- Validate cybersecurity controls, TTPs, STIGs, RMF controls, and compliance with DoD policies and guidelines
- Provide risk analysis and assessment results for authorization recommendations
- Participate in daily assessment reviews, in-briefs, and out-briefs, sharing findings with the SCA-R
- Mentor and guide personnel if senior staff, providing technical expertise and professional development support
- Travel domestically or internationally up to ~85% and work from home when not on assignment; initial 4-8 weeks of virtual training
Requirements
- Active DoD Top Secret clearance with SCI eligibility required
- Current DoD 8570 IAM II or IAT II certification
- Ability and willingness to travel for assessments as required, up to 85% of the time
- Bachelor's degree (IT-related field preferred) and five (5) years cybersecurity or network security experience for Level II (including three (3) years in a Certification and Accreditation/A&A role)
- Bachelor's degree (IT-related field preferred) and eight (8) years cybersecurity or network security experience for Level III (including five (5) years in a Certification and Accreditation/A&A role)
- Additional relevant experience may be considered in lieu of degree
- Demonstrated experience with STIGs, SRGs, POA&Ms
- Experience with tools such as eMASS, STIG Viewer, Nessus, ACAS, SCAP, or HBSS
- Strong understanding of the RMF process, NIST SP 800-37, NIST SP 800-53, CNSSI 1253
- Experience across Network, Mobility, Windows, UNIX, Cloud Environments and Cloud Native Tools/Services, HBSS/Endpoint Security Solutions, Databases, Applications
- Strong written and verbal communication skills
- Must be local to Alexandria, VA, Fort Meade, MD, or Chambersburg, PA for training and occasional customer meetings
Benefits
- competitive compensation
- Health and Wellness programs
- Income Protection
- Paid Leave
- Retirement
- Per diem provided to cover expenses during travel
- Ability to work from home when not on assignment
- Training (first 4-8 weeks in virtual classroom)
Job title
Job type
Experience level
Salary
Degree requirement
Tech skills
Location requirements
Join Cloudflare as a Security Third Party Risk Management Specialist. Execute vendor reviews and improve Cloudflare’s Third Party Risk Program in a rapidly scaling security organization.
Cyber Security Advisor safeguarding client digital environments by addressing cyber risks at Centorrino Technologies in Melbourne and Perth. Ensuring compliance with regulations and effective incident response.
Manage revenue growth across the UK National Security community for AI solutions at Mind Foundry. Lead sales lifecycle from opportunity qualification through contract negotiation and account expansion.
Lead technical design and delivery of Early Warning’s cross - border consumer money movement platform leveraging blockchain and stablecoins. Collaborate across teams to define strategy and architecture for secure and scalable solutions.
Lead the development and execution of a robust Cybersecurity Program for Field, an Energy Storage Provider. Responsible for compliance standards and effective controls across IT & OT environments.
Cyber Security Engineer at Interact safeguarding assets against cyber threats. Proactively identifying vulnerabilities, mitigating risks, and collaborating with cross - functional teams.
Cloud Security Engineer ensuring secure solutions in the cloud for UMB's technology. Collaborating with teams to define security controls and integrate best practices.
AVP, Cloud Security Engineer responsible for designing and managing cloud security solutions at Synchrony. Collaborating with teams to ensure compliance and mitigate security risks.
Werkstudent Homologation Passive Sicherheit supporting international vehicle type approval at BMW. Collaborating on documentation, project management, and engaging with global markets.