Cyber Security Subject Matter Expert
US-DC-Washington, D.C.
Careers (External)
Req #: 8031
Type: Full-Time
|
|
||||||||||
|
|||||||||||
Overview: GovCIO is currently hiring for a Cybersecurity Subject Matter Expert (SME) to support the design and implementation of a Zero Trust Architecture for Headquarters Air Force/A2 Intelligence Directorate. This position will be located at Joint Base Anacostia Bolling in the National Capital region and will be an onsite position. Responsibilities: We are seeking a highly skilled Cybersecurity Subject Matter Expert (SME) to provide strategic guidance, technical leadership, and deep domain expertise across our security programs. This role is ideal for a seasoned professional who thrives at the intersection of hands‑on technical work, risk management, and organizational strategy. The SME will serve as a trusted advisor to leadership, drive security architecture decisions, and help mature our Zero Trust cybersecurity posture in a rapidly evolving threat landscape across the Department of War's Intelligence Community. * Advise executive and technical leadership on cybersecurity strategy, emerging threats, and industry best practices. * Translate complex security concepts into actionable recommendations for both technical and non‑technical stakeholders. * Shape and influence enterprise security policies, standards, and governance frameworks. * Provide deep subject matter expertise in areas such as network security, cloud security, identity and access management, incident response, threat intelligence, and vulnerability management. * Lead or support complex security assessments, architecture reviews, and system hardening initiatives. * Evaluate and recommend security technologies, tools, and platforms. * Serve as a senior escalation point during major security incidents. * Guide root‑cause analysis, containment strategies, and long‑term remediation planning. * Analyze threat trends and proactively identify risks to the organization. * Support compliance efforts across frameworks such as NIST CSF, NIST 800‑53, ISO 27001, CIS Controls, PCI‑DSS, or FedRAMP (as applicable). * Conduct risk assessments and provide expert input on mitigation strategies. * Ensure alignment between security controls and business objectives. * Partner with engineering, IT, DevOps, and product teams to embed security into system design and development lifecycles. * Mentor junior security staff and contribute to internal knowledge‑sharing initiatives. * Represent the security function in cross‑functional working groups and external engagements. Qualifications: High School with 10+ years (or commensurate experience) Required Skills and Experience * Clearance Required/SCI * Previous Risk Management Framework (RMF) experience as a Cyberspace Information Security Officer (CISO) * Strong understanding of Information System Security Engineering principles based on NIST SP 800-160 * Ability to objectively evaluate multiple IT and Cybersecurity products to select the best tools based on product capabilities, existing policies, and customer needs * Experience writing and reviewing governance within a DoD, or Intelligence Community environment * Strong understanding of DoD Cybersecurity Reference Architecture * Familiarity with application security, network security, cloud security, end point security, identity access management, and governance in a DoD, Intelligence Community environment * Military or government experience in operations and intelligence * Deep understanding of military operations, intelligence gathering (e.g., all-source, OSINT), and decision-making processes * Familiarity with DoD, Intelligence Community, and interagency structures and policies * Strong problem-solving, data analysis, and critical thinking abilities * Experience with process modeling and business intelligence tools (e.g., Power BI, Tableau) * Knowledge of standard intelligence analysis tools and procedures * Excellent communication (written and verbal), collaboration, and stakeholder management skills Preferred Skills and Experience * Experience and knowledge with a Zero-Trust Architecture in a DoD or Intelligence Community environment * Experience with content, processes, and procedures related to vendor and in-house developed applications. #NSS #DL
Share this job:
