Senior Cybersecurity Specialistat SMX(View all jobs)
Norfolk, VA
SMX is seeking a Senior Cybersecurity Specialist in Norfolk, VA to join our growing team.
Essential Duties & Responsibilities - Collaborate with existing ISSO/ISSEs in completing A&A activities through RMF Step 3
- Mitigate and/or remediate vulnerabilities or misconfigurations
- Provide documentation findings and severity levels of non-compliance in formalized reporting
- Create/manage POA&M items
- Collect system specific information in developing required artifacts
- Draft SAP, SAR and RAR
- Mitigating/eliminating vulnerabilities findings
- Conducting manual checklists on applicable Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs)
- Analyzing ACAS and Security Compliance Assessment Protocol (SCAP) vulnerability scan results
- Development of Security Assessment Plan (SAP) and Risk Assessment Report (RAR),
- Security Control and Control Correlation Identifiers (CCIs)/Assessment Procedures (APs) implementation
- Developing and supporting Plan of Actions and Milestones (POA&M) items for outstanding findings, including drafting of mitigation and impact statements
Required Skills and Experience - Clearance Required: TS/SCI
- At least Five (5) year experience in RMF A&A support, extensive knowledge and hands on experience in developing and documenting processes and procedures used in various IT operations and cybersecurity plans and required A&A artifacts, such as:
- Access Control Plan (ACP)
- Configuration Management Plan (CMP)
- Information System Contingency Plan (ISCP) that can effectively address RMF security control requirements
- At least three (3) years working experience in HBSS and ACAS management and vulnerability assessment
- Experience implementing applicable Computer Network Defense (CND) policies, regulations, and compliance guidance
- Knowledge of security plan management and validation
- CISSP Certification
- DISA HBSS Certification
- DoD Cybersecurity Workforce (CSWF) CSSP Analyst certification (ie, CEH, CCNA-Security)
- Navy Qualified Validator II
Desired Skills and Experience - Navy Qualified Validator III
Application Deadline: May 5, 2025
The SMX salary determination process takes into account a number of factors, including but not limited to, geographic location, Federal Government contract labor categories, relevant prior work experience, specific skills, education and certifications. At SMX, one of our Core Values is to Invest in Our People so we offer a competitive mix of compensation, learning & development opportunities, and benefits. Some key components of our robust benefits include health insurance, paid leave, and retirement.
The proposed salary for this position is:
$110,900-$184,800 USD
At SMX , we are a team of technical and domain experts dedicated to enabling your mission. From priority national security initiatives for the DoD to highly assured and compliant solutions for healthcare, we understand that digital transformation is key to your future success.
We share your vision for the future and strive to accelerate your impact on the world. We bring both cutting edge technology and an expansive view of what's possible to every engagement. Our delivery model and unique approaches harness our deep technical and domain knowledge, providing forward-looking insights and practical solutions to power secure mission acceleration.
SMX is an Equal Opportunity employer including disabilities and veterans.
Selected applicant may be subject to a background investigation and/or education verification.