Sr. Cybersecurity Consultant
Arlington, VA, United States
Command Services & Support, Inc.
CMDSS proudly provides high-quality technology and business solutions to the federal government and commercial clients.Company Description
CMDSS proudly provides technology and business solutions to the federal government. We deliver high-quality services and solutions with personal attention and competitive pricing, utilizing a variety of technologies and techniques including PMI Methodologies, Certifications in Project Management, CMMI Processes, and Lean Six Sigma. We are proud to be a Service-Disabled Veteran-Owned Small Business (SDVOSB).
Job Description
- Providing technical and authorization and accreditation support.
- Conducting vulnerability management activities using Tenable Nessus, Security Center and other tools to ensure adequate flaw remediation is maintained.
- Coordinating and collaborating with operations teams to identify solutions for vulnerability mitigation and preparing cybersecurity documentation to obtain support and approval to operate
- Developing POA&Ms for identified vulnerabilities and developing remediation, mitigation and criticality strategies for weaknesses that are unable to be addressed within policy timelines and customer expectations.
- Supporting accreditation activities for installed and in-deployment infrastructure as well as requirements in development and engineering change proposal/pipeline processes such as developing supporting documentation and completing cybersecurity compliance requirements
- Coordinating with independent verification and validation team and cybersecurity support to enable overall cybersecurity program activities
- Developing, maintaining, editing, authoring, and supporting accreditation package requirements including NIST SP 800-53R5 and DoD Security Technical Implementation Guidelines
- Developing scripting and automation and other supporting infrastructure for continuous monitoring activities.
- Advise and consult stakeholders on new technologies, tools and strategies to maintain modern cyberseucity practices.
Qualifications
- 10 years experience supporting a federal agencies cybersecurity program, including risk management, compliance and vulnerability management.
- 10 years experience with direct customer relationship management including advising, reporting, briefings and development of formal memos or policies.
- Demonstrated strong understanding and application of RMF And DISA STIG/Security framework implementation.
- Experience creating and maintaining RMF-based accreditation packages
- Expert experience conducting vulnerability management and reporting using Security Center,
- Strong technical foundation with system administration skills and experience to support independent assessments of cybersecurity risk and mitigation measures of enterprise data center systems.
- Experience performing risk assessment and supporting change management processes
- Experience using Log Management and SIEM solutions to support cybersecurity program
Additional Information
Only candidates with Top Secret or Secret clearances, verifiable in DISS will be considered for this position.
Command Services & Support, Inc. (CMDSS) is an equal opportunity employer and does not discriminate against otherwise qualified applicants on the basis of race, color, religion, sex, sexual orientation, gender identity, or national origin.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: Automation Compliance DISA DoD Monitoring Nessus NIST Risk assessment Risk management RMF Scripting SIEM Top Secret Vulnerabilities Vulnerability management
Perks/benefits: Career development
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Security Operations Engineer jobs
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Manager Pentest H/F jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Principal Security Engineer jobs
- Open Product Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Sr. Security Engineer jobs
- Open Security Researcher jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open Windows-related jobs
- Open ISO 27001-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Java-related jobs
- Open Security assessment-related jobs
- Open IDS-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open IPS-related jobs