Cybersecurity SME
KaiHonua · Denver, CO · 2 wk ago
Engineering$135k/yrFull-time
About the role
Mano Lani LLC is looking for an enthusiastic, well-qualified individual to fill the Cybersecurity Subject Matter Expert (SME) position. This role offers the opportunity to work with a diverse and talented group of individuals committed to driving success. Mano Lani is an exceptional industry partner to the Department of Defense (DoD) and a leader in physical and cyber security, IT management, logistics, supply chain management, process improvement and development.
Responsibilities
- Cook with DMDC to administer all aspects of RMF to ensure DTMO systems are accredited and maintain ATO
- Cook with the DTMO ISSM to maintain DTMO system security packages
- Support the Authorizing Official (AO) and Security Control Assessor (SCA) to ensure systems remain compliant
- Work with the ISSM to record, track, and close all applicable POA&Ms
- Participate in audit support during planned assessment events
- Cook with DMDC to report security status of DTMO systems via automated and manual tools
- Monitor and audit security event logging, generate reports, and analyze findings
- Analyze system vulnerability reports and recommend and implement remediation efforts
- Ensure system patches are applied to address security vulnerabilities
- Review security controls to ensure appropriate access control measures are in place
- Develop and submit Deviation Requests to authorize deviations from DoW STIG requirements
- Develop and maintain system security documentation including System Security Plans (SSPs), Security Assessment Reports (SARs), and Risk Assessment Reports (RARs)
- Support incident response activities and coordinate with DMDC on security incidents
- Provide cybersecurity guidance and recommendations to DTMO leadership
- Support cloud security compliance and ensure adherence to DoD cloud computing requirements
- Stay current on emerging cybersecurity threats and recommend appropriate countermeasures
- Conduct security assessments and penetration testing coordination
- Support continuous monitoring activities and ensure compliance with DoW Information Assurance Vulnerability Management (IAVM) requirements
Qualifications
- Education: Required Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Engineering, or a related field or Certified Information Systems Security Professional (CISSP) certification
- Experience: 5+ years experience in cybersecurity field
- Experience: Extensive experience supporting federal cybersecurity programs or initiatives, preferably under government contracts or GWAC vehicles
- Experience: Strong knowledge of NIST cybersecurity frameworks, including RMF and NIST SP 800-series publications
- Experience: Familiarity with federal cybersecurity compliance requirements, including FISMA and agency cybersecurity policies
- Experience: 5+ years experience with Risk Management Framework (RMF) / NIST 800-37 DoW Security Technical Implementation Guides (STIGs)
- Experience: Experience with Enterprise Mission Assurance Support Service (eMASS)
- Experience: Experience with vulnerability assessment and remediation
- Experience: Experience with security event logging and monitoring
- Experience: Experience with Plan of Action and Milestones (POA&M) management
- Experience: Experience with cloud security (AWS, Azure, or Red Hat OpenStack)
- Experience: Experience with Splunk technology for security and compliance
- Experience: Experience with SaaS, PaaS, and cloud platforms
Physical Requirements
- Work may involve sitting or standing for extended periods of time.
- Position may require typing and reading from a computer screen.
- Mobility: sufficient to include bending, reaching, and kneeling to complete daily duties in a timely and efficient manner.
- Potential for walking moderate to long distances due to parking availability and location of work.
- Lifting: up to 25 pounds as necessary.
Posted Salary Range
USD $135,000.00 - USD $163,000.00 /Yr.
Please Apply at: [Apply Here]