Sr. Cyber Security Specialist
We are seeking a Sr. Cyber Security Specialist to support the PEO Enterprise Cyber Directorate at Fort Belvoir, VA. The ideal candidate will play a critical role in integrating and testing IT efforts for PEO Enterprise programs and Army initiatives, focusing on modernization, security compliance and process automation across classified and unclassified systems. This is a full time onsite role and requires an active Secret Clearance. What You'll Do: Lead integration and testing of IT systems for modernization and business process automation within PEO Enterprise programs and Army initiatives Develop, review, and maintain cybersecurity policies, procedures, and compliance documentation to meet RMF security controls and System Development Life Cycle sustainment Conduct risk assessments, vulnerability scans, and security audits using industry-standard tools and techniques (e.g., firewalls, IDS, antivirus, encryption) Manage and analyze reports generated from DoD and Army security tools; interpret findings for technical and non-technical stakeholders Oversee the development and tracking of Plan of Action and Milestones (POA&M) for non-compliant security controls Collaborate with cross-functional teams to ensure government IA requirements are understood and implemented Mentor junior cybersecurity staff and lead project teams as needed Support accreditation and certification procedures, including RMF Assessments, ATO/IATT documentation, and PPP evaluations Perform Security Technical Implementation Guides (STIG) scans and analysis; maintain current knowledge of security directives, policies, and regulations Additional Skills & Qualifications: What You Bring: Minimum 8 years of experience in cybersecurity, information systems security, or defense industry (continuous or cumulative) Active SECRET clearance and eligibility for higher-level clearance Security+ certification (required); CISSP (preferred) Army IA Training and Certification BBP (required) Bachelor's degree in IT Systems Engineering or related field Hands-on experience with RMF, eMASS, STIGs, and compliance documentation Proficiency with MS Office Suite, including Visio and Project; experience with virtual computing at PC and server levels Strong written and verbal communication skills for technical and non-technical audiences Demonstrable knowledge of Federal, DoD, and Army IT security requirements Desired Qualifications: CISSP Certification (highly preferred) Department of Defense (DoD) courses related to government security Experience with NIST 800-171, NIST 800-53, JSIG, ICD 503, and ISO27 standards Contract Data Requirements List (CDRL) experience Technical background in routers, switches, servers, databases, and network protocols Familiarity with cloud security, automation, and zero trust architectures Experience creating, tracking, and updating POA&M items for non-compliant security controls Ability to construct and apply repeatable processes to the work environment This position requires an active DoD Clearance (Secret, Top Secret, Top Secret/SCI) or the ability to be obtain an (Interim Secret, Interim Top Secret). Because an active or interim DoD clearance is required, U.S. Citizenship is required. Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms.
We are seeking a Sr. Cyber Security Specialist to support the PEO Enterprise Cyber Directorate at Fort Belvoir, VA. The ideal candidate will play a critical role in integrating and testing IT efforts for PEO Enterprise programs and Army initiatives, focusing on modernization, security compliance and process automation across classified and unclassified systems. This is a full time onsite role and requires an active Secret Clearance. What You'll Do: Lead integration and testing of IT systems for modernization and business process automation within PEO Enterprise programs and Army initiatives Develop, review, and maintain cybersecurity policies, procedures, and compliance documentation to meet RMF security controls and System Development Life Cycle sustainment Conduct risk assessments, vulnerability scans, and security audits using industry-standard tools and techniques (e.g., firewalls, IDS, antivirus, encryption) Manage and analyze reports generated from DoD and Army security tools; interpret findings for technical and non-technical stakeholders Oversee the development and tracking of Plan of Action and Milestones (POA&M) for non-compliant security controls Collaborate with cross-functional teams to ensure government IA requirements are understood and implemented Mentor junior cybersecurity staff and lead project teams as needed Support accreditation and certification procedures, including RMF Assessments, ATO/IATT documentation, and PPP evaluations Perform Security Technical Implementation Guides (STIG) scans and analysis; maintain current knowledge of security directives, policies, and regulations Additional Skills & Qualifications: What You Bring: Minimum 8 years of experience in cybersecurity, information systems security, or defense industry (continuous or cumulative) Active SECRET clearance and eligibility for higher-level clearance Security+ certification (required); CISSP (preferred) Army IA Training and Certification BBP (required) Bachelor's degree in IT Systems Engineering or related field Hands-on experience with RMF, eMASS, STIGs, and compliance documentation Proficiency with MS Office Suite, including Visio and Project; experience with virtual computing at PC and server levels Strong written and verbal communication skills for technical and non-technical audiences Demonstrable knowledge of Federal, DoD, and Army IT security requirements Desired Qualifications: CISSP Certification (highly preferred) Department of Defense (DoD) courses related to government security Experience with NIST 800-171, NIST 800-53, JSIG, ICD 503, and ISO27 standards Contract Data Requirements List (CDRL) experience Technical background in routers, switches, servers, databases, and network protocols Familiarity with cloud security, automation, and zero trust architectures Experience creating, tracking, and updating POA&M items for non-compliant security controls Ability to construct and apply repeatable processes to the work environment This position requires an active DoD Clearance (Secret, Top Secret, Top Secret/SCI) or the ability to be obtain an (Interim Secret, Interim Top Secret). Because an active or interim DoD clearance is required, U.S. Citizenship is required. Eligibility requirements apply to some benefits and may depend on your job classification and length of employment. Benefits are subject to change and may be subject to specific elections, plan, or program terms.