Lead SME Information System Security Engineer

Role Overview

• Lead the implementation of information security architectures and functionality to ensure uniform application of security policy across the enterprise.
• Validate and verify system security requirements and establish system security baseline designs for major system elements and all system interfaces.
• Establish, manage, operate , and maintain DoD RMF compliant processes and procedures for evaluating and authorizing changes to the System.
• Collect, review, assess, and provide feedback on System cybersecurity architecture and engineering artifacts.
• Collect, review, assess, and provide feedback on System cybersecurity Body-of-Evidence (BOE) results required to support the DoD RMF cybersecurity authorization process.
• Conduct periodic compliance scanning of the runtime System to meet all DoD periodic cybersecurity monitoring requirements.
• Support Government cybersecurity officials in preparing cybersecurity packages, including Interim Authority to Test (IATT) packages, Authority to Operate (ATO) packages, and Change Requests (CRs).
• Manage a team of 8-15 direct reports, providing leadership, mentorship, and performance evaluations.
• Develop and implement security policies, standards, and procedures to ensure compliance with DoD regulations.
• Coordinate with cross-functional teams to ensure security measures are integrated into the system development lifecycle.
• Provide technical expertise and guidance on cybersecurity best practices and risk management.
• Oversee the development and maintenance of security documentation and reports.
• Ensure continuous improvement of security processes and procedures.
• Conduct security assessments and audits to identify vulnerabilities and recommend mitigation strategies.
• Stay current with emerging security threats and technologies to ensure the System remains secure and compliant.

Requirements

• Bachelor’s degree or higher from an accredited college or university OR offerings listed in DoD 8140 Training Repository , CISM, CASP OR CISSP-ISSMP or GSLC certification.
• Minimum of 10 years of experience in information security engineering or related field.
• Experience with DoD Risk Management Framework (RMF) and NIST 800-53 Rev 4 or Rev 5.
• Experience in managing and leading a team of cybersecurity professionals.
• Strong understanding of cybersecurity principles, practices, and technologies.
• Experience with compliance scanning and cybersecurity monitoring.
• Excellent communication and interpersonal skills.
• Ability to obtain and maintain a TS/SCI with CI Poly clearance.
• Experience in preparing cybersecurity packages, including IATT and ATO packages.
• Strong analytical and problem-solving skills.

Tech Stack

• Cyber Security
• TypeScript

Benefits

• Health and Wellness programs
• Income Protection
• Paid Leave
• Retirement