Cybersecurity Subject Matter Expert (Remote)
ESM, Vienna, VA, United States
Enterprise Solutions and Management (ESM) is a rapidly growing government contractor that provides strategic IT services that meet mission needs for Defense and Federal customers. We are hiring a
Project Manager
for an exciting
remote
opportunity.
Job Description and Responsibilities
Support the Defense Travel Management Office's (DTMO) compliance with cybersecurity rules, regulations, and policies in accordance with NIST policy. Support DTMO's requirements to maintain current and achieve new Authorities to Operate (ATOs) and Authorities to Connect (ATCs) for all DTMO systems using the DoD Risk Management Framework (RMF). Perform System-Level Information System Security Officer (S-ISSO) responsibilities. Required Knowledge, Skills and Abilities (KSA)
Knowledge of cybersecurity principles, risk management practices, and defense-in-depth strategies for protecting information systems and networks.
Knowledge of federal cybersecurity frameworks and standards, including guidance from NIST Risk Management Framework, NIST Cybersecurity Framework, and NIST SP 800-53 security controls.
Knowledge of U.S. federal cybersecurity compliance requirements
Knowledge of security technologies and architectures, including network security, identity and access management, encryption, endpoint protection, and cloud security.
Knowledge of threat detection, vulnerability management, and incident response processes used to identify, assess, and mitigate cybersecurity threats.
Desired KSA
Be a positive, self-motivated, and proactive person with the ability to adapt to change and tolerate stressful situations
Candidate must communicate effectively with team members, team lead, management, and government customer
Must have the ability and desire to research and develop creative solutions to unique problems with minimal supervision
Minimum Training, Education, and Certifications
Bachelor's degree in a relevant field
Five (5) years experience in cybersecurity with executing Risk Management Framework
Specific Experience with: RMF process and documentation, PIAs, SORNs, ATOs and ATCs
CSSP vulnerability assessments, CORA, DoD IG audits
POAM management
Vulnerability and patch management
STIG and IAVM compliance
Support for internal/external audits, pen testing, red team testing and other security reviews
Minimum Clearance
Top Secret
Physical Requirements
Required to stand, walk and sit; communicate verbally both in person and by telephone; use hands to finger, handle or feel objects or controls; reach with hands and arms. Specific vision abilities required by this job include close vision, distance vision, depth perception, color vision and the ability to adjust focus.
Additional Requirements
Other duties as assigned
ESM provides equal employment opportunity to all individuals regardless of race, color, creed, religion, gender, age, sexual orientation, national origin or ancestry, disability, genetic information, veteran status, gender identification or any other characteristic protected by state, federal or local law.
Project Manager
for an exciting
remote
opportunity.
Job Description and Responsibilities
Support the Defense Travel Management Office's (DTMO) compliance with cybersecurity rules, regulations, and policies in accordance with NIST policy. Support DTMO's requirements to maintain current and achieve new Authorities to Operate (ATOs) and Authorities to Connect (ATCs) for all DTMO systems using the DoD Risk Management Framework (RMF). Perform System-Level Information System Security Officer (S-ISSO) responsibilities. Required Knowledge, Skills and Abilities (KSA)
Knowledge of cybersecurity principles, risk management practices, and defense-in-depth strategies for protecting information systems and networks.
Knowledge of federal cybersecurity frameworks and standards, including guidance from NIST Risk Management Framework, NIST Cybersecurity Framework, and NIST SP 800-53 security controls.
Knowledge of U.S. federal cybersecurity compliance requirements
Knowledge of security technologies and architectures, including network security, identity and access management, encryption, endpoint protection, and cloud security.
Knowledge of threat detection, vulnerability management, and incident response processes used to identify, assess, and mitigate cybersecurity threats.
Desired KSA
Be a positive, self-motivated, and proactive person with the ability to adapt to change and tolerate stressful situations
Candidate must communicate effectively with team members, team lead, management, and government customer
Must have the ability and desire to research and develop creative solutions to unique problems with minimal supervision
Minimum Training, Education, and Certifications
Bachelor's degree in a relevant field
Five (5) years experience in cybersecurity with executing Risk Management Framework
Specific Experience with: RMF process and documentation, PIAs, SORNs, ATOs and ATCs
CSSP vulnerability assessments, CORA, DoD IG audits
POAM management
Vulnerability and patch management
STIG and IAVM compliance
Support for internal/external audits, pen testing, red team testing and other security reviews
Minimum Clearance
Top Secret
Physical Requirements
Required to stand, walk and sit; communicate verbally both in person and by telephone; use hands to finger, handle or feel objects or controls; reach with hands and arms. Specific vision abilities required by this job include close vision, distance vision, depth perception, color vision and the ability to adjust focus.
Additional Requirements
Other duties as assigned
ESM provides equal employment opportunity to all individuals regardless of race, color, creed, religion, gender, age, sexual orientation, national origin or ancestry, disability, genetic information, veteran status, gender identification or any other characteristic protected by state, federal or local law.