The One 23 Group
Cybersecurity Subject Matter Expert (SME)
The One 23 Group, Richmond, Virginia, United States,
Cybersecurity Subject Matter Expert (SME)
The One 23 Group seeks a TOP SECRET/SCI Cleared Cybersecurity Subject Matter Expert (SME) local to the Washington DC Metropolitan area.Responsibilities:Incident Response & Resolution:
Provide expert advice to senior leaders and stakeholders on cybersecurity incidents, including impact analysis, eradication strategies, and plans to restore networks to a more secure state.Cybersecurity Leadership:
Lead and manage a cybersecurity team in operations and maintenance environments, ensuring adherence to cybersecurity best practices and security engineering principles.Systems Security:
Ensure all systems and data repositories maintain appropriate levels of confidentiality, security, and integrity, while advising system owners on security matters related to IT systems.Risk Management & Compliance:
Provide guidance on cybersecurity engineering program policies, processes, and planning. Conduct risk management, auditing, and assessments, particularly related to Assessment and Authorization (A&A) using NIST RMF guidelines.Vulnerability Management & Intrusion Detection:
Utilize industry best practices for vulnerability management and intrusion detection, ensuring systems are protected against evolving cybersecurity threats.Operational Procedures & Collaboration:
Assist in developing and maintaining Operational Level Agreements (OLAs) and Standard Operating Procedures (SOPs) to support process interaction with Government and contractor IT groups.Continuous Monitoring:
Perform continuous monitoring of security controls to ensure correct implementation, operation, and outcomes related to cybersecurity requirements for IT systems.System Security Plans (SSP):
Develop, update, and maintain the System Security Plan (SSP) for assigned IT systems, ensuring it meets all cybersecurity requirements and standards.Security Control Deficiencies:
Collaborate with technical teams to mitigate security control deficiencies and assess the cybersecurity impact of changes to assigned IT systems.Qualifications:Education:
Master’s degree in a related discipline or equivalent experience in a business-related or relevant technical field.Experience:
Minimum of six (6) years of demonstrated cybersecurity engineering experience.At least three (3) years of experience with the NIST Risk Management Framework (RMF).
Certifications:
Must possess one of the following certifications:
DoD 8570.01-M IAT Level III certification such as:CISSP (Certified Information Systems Security Professional)CISM (Certified Information Security Manager)GSLC (GIAC Security Leadership Certification)ITIL v3 Foundation Certification
Clearance:
Must possess an active DoD TOP SECRET/SCI clearance.
#J-18808-Ljbffr
The One 23 Group seeks a TOP SECRET/SCI Cleared Cybersecurity Subject Matter Expert (SME) local to the Washington DC Metropolitan area.Responsibilities:Incident Response & Resolution:
Provide expert advice to senior leaders and stakeholders on cybersecurity incidents, including impact analysis, eradication strategies, and plans to restore networks to a more secure state.Cybersecurity Leadership:
Lead and manage a cybersecurity team in operations and maintenance environments, ensuring adherence to cybersecurity best practices and security engineering principles.Systems Security:
Ensure all systems and data repositories maintain appropriate levels of confidentiality, security, and integrity, while advising system owners on security matters related to IT systems.Risk Management & Compliance:
Provide guidance on cybersecurity engineering program policies, processes, and planning. Conduct risk management, auditing, and assessments, particularly related to Assessment and Authorization (A&A) using NIST RMF guidelines.Vulnerability Management & Intrusion Detection:
Utilize industry best practices for vulnerability management and intrusion detection, ensuring systems are protected against evolving cybersecurity threats.Operational Procedures & Collaboration:
Assist in developing and maintaining Operational Level Agreements (OLAs) and Standard Operating Procedures (SOPs) to support process interaction with Government and contractor IT groups.Continuous Monitoring:
Perform continuous monitoring of security controls to ensure correct implementation, operation, and outcomes related to cybersecurity requirements for IT systems.System Security Plans (SSP):
Develop, update, and maintain the System Security Plan (SSP) for assigned IT systems, ensuring it meets all cybersecurity requirements and standards.Security Control Deficiencies:
Collaborate with technical teams to mitigate security control deficiencies and assess the cybersecurity impact of changes to assigned IT systems.Qualifications:Education:
Master’s degree in a related discipline or equivalent experience in a business-related or relevant technical field.Experience:
Minimum of six (6) years of demonstrated cybersecurity engineering experience.At least three (3) years of experience with the NIST Risk Management Framework (RMF).
Certifications:
Must possess one of the following certifications:
DoD 8570.01-M IAT Level III certification such as:CISSP (Certified Information Systems Security Professional)CISM (Certified Information Security Manager)GSLC (GIAC Security Leadership Certification)ITIL v3 Foundation Certification
Clearance:
Must possess an active DoD TOP SECRET/SCI clearance.
#J-18808-Ljbffr