This is a 100% remote role for candidates based in the Washington D.C. Metro Area (D.C., Maryland, Virginia). Candidates can be located within a 2-hour commute from Alexandria, Virginia.Note: This position may require an active security clearance at the time of application.
Viderity is seeking a
Lead Cybersecurity Subject Matter Expert to providesupport, research and analysis of exceptionally complex problems, and processes relating to them. Expertise is in cybersecurity and evaluations. Serves as a Subject Matter Excerpt (SME) in cybersecurity for the Assessment and Authorization of information systems across the DLA enterprise.
Key Responsibilities: - Analyze business processes, systems, and challenges to identify appropriate technological or operational solutions.
- Serves as technical expert to the Cybersecurity Assessment Program providing technical direction, interpretation, and alternatives to complex problems.
- Thinks independently and demonstrates exceptional written and oral communications skills.
- Applies advanced technical principles, theories, and concepts.
- Contributes to the development of new principles, concepts, and methodologies. Works on unusually complex technical problems and provides highly innovative and ingenious solutions.
- Recommends cybersecurity software tools and assists in the development of software tool requirements and selection criteria to include the development of product specific STIGs from applicable DISA SRGs.
- Works under consultative direction toward predetermined long-range goals and objectives. Assignments are often self-initiated.
- Determines and pursues courses of action necessary to obtain desired results. Develops advanced technological ideas and guides their development into a final product.
Required Skills: - Bachelor's degree in Business Administration, Computer Science, or a related field.
- Seven (7) years of IT experience
- Five (5) years IA experience
- Three (3) years of experience with DOD Vulnerability Management System
- Experience supporting Federal Government or large-scale enterprise IT projects.
- Familiarity with Agile and/or Waterfall project management methodologies.
- Knowledge of software development lifecycle (SDLC) and system integration concepts.
- Certification(s) in business analysis (e.g., CBAP, CCBA) or project management (e.g., PMP) is a plus.
- Experience using business analysis tools such as JIRA, Confluence, Visio, or similar platforms.
- Proven proficiency performing CCRI/ vulnerability assessment/ penetration testing on networks, databases, computer applications and IT frameworks.
- Strong analytical and problem-solving skills for resolving security issues.
- Strong skills implementing and configuring networks and networks components.
- Command Cyber Readiness Inspection certification in at least one of the following areas:
o Retina scan analysis
o Operating Systems (Windows, Unix)
o Boundary defense (network policy, router, firewall) o Internal defense (L2 switch, L3 switch)o DNS (policy, BIND/Windows)
o HBSS (remote console, AV, ABM, PA, HIPS, ePO)
o Traditional security (Common, Basic, NCV, SCV)
o Wireless communications (BES, handhelds)
Preferred Skills: - Tenable Certified NESSUS Auditor, IAM level III and IAT level II certifications
- Knowledge and understanding of DOD security regulations, DISA STIGs.
- Strong knowledge of SCAP
• Strong knowledge of RMF - Excellent knowledge of and proficiency with:
o VULNERATOR o USCYBERCOM CTO Compliance Program
o Wireless vulnerability assessment
o Web Services (IIS, Apache, Proxy)
o Database (SQL Server, Oracle) o Email Services (Exchange)
o Vulnerability Scans (NESSUS, SCCM) o Knowledge of Phishing exercises
o USB Detect
o Physical Security
Required Security Clearance: o Access Level: IT-2
o Sensitivity Level: Non-critical Sensitive
o Type of Investigation: Current Tier 3 (T3) or National Agency Check with Local Agency Check and Credit Check (NACLC) at time of proposal submission.
DoD 8570.01-M Certification: DFARS Information Assurance Contractor Training and Certification is required for this position.
o IA Technical (IAT)/IA Management (IAM) Level: IAT Level II o IA Baseline Certification: Attachment 3 DOD 8570 Approved Baseline Certifications Full
o CE/OS Certificate: Attachment 4 DLA Approved CS CE List v28 . Certification must be applicable to the Oracle based DAI Application Environment
o Relevant certification from a nationally recognized technical authority
Salary range: $140,000 - $164,000 annually (depending on experience and qualifications)
Benefits: - 401(k) Plan with Company Matching
- Health Insurance (Medical, Dental, Vision)
- Paid Time Off (PTO) and Holidays
- Retirement Planning Support
- Professional Development Opportunities
- Life and Disability Insurance