Cybersecurity SME Lead Secret or Top Secret - Remote

Cybersecurity SME Lead - Remote

Location

Remote

Clearance Required

• Active Secret (Tier 3 / T3) or Top-Secret accepted

Required Certifications

• CISSP, or CASP+, or CISA
• Active ACAS training certification
• Active Tanium training certification

One of the Below Certifications

• ICS-300 or equivalent OT/ICS cybersecurity certification (e.g., GICSP, ISA/IEC 62443)
• ISA/IEC 62443 Cybersecurity Certificate
• GRID (GIAC Response and Industrial Defense)
• GCIP (GIAC Critical Infrastructure Protection)
• CSSA (IACRB Certified SCADA Security Architect)

Position Overview

The Cybersecurity SME-Lead serves as the senior technical authority for the DLA TFS Vulnerability Management program. This individual provides expert-level cybersecurity direction to the Cybersecurity Engineers, leads preparation for DoD inspections (CCRI, CORA, Blue Team), manages end-to-end POA&M lifecycle, and briefs senior DLA leadership.

Minimum Requirements

• 10 years of IT experience
• 10 years of DoD Cybersecurity experience
• 10 years of Risk Management Framework (RMF) and NIST A&A experience
• Demonstrated expertise leading and mentoring cybersecurity teams with direct quality oversight
• Proven hands-on experience preparing enterprise environments for CCRI, CORA, and Blue Team assessments
• SME-level ability to assess security controls and conduct authorization reviews for large, complex organizations
• Expert knowledge of DoD cybersecurity requirements: STIGs, TCG configuration guides, IAVMs, Task Orders
• Oversees end-to-end POA&M lifecycle management including documentation, tracking, and remediation closure
• Ability to interpret new and evolving DoD cybersecurity documentation and produce high-quality artifacts even when guidance is ambiguous
• Skilled in producing authoritative system documents: SSP, CONOPS, Incident Response Plan, Contingency Plan, Configuration Management Plan
• Expert-level scripting and automation: PowerShell, Python - reviews and validates engineers' scripts
• Leads risk assessments and provides risk-based recommendations to leadership for prioritizing mitigation
• Creates dashboards, analytics, and trend reports using Power BI, Power Platform, and enterprise data sources
• Knowledgeable in emerging technology areas: Cloud, ICS, OT infrastructures

Key Responsibilities

• Provide technical leadership