Cybersecurity SME

Job Description

Enterprise Solutions and Management (ESM) is a rapidly growing government contractor that provides strategic IT services that meet mission needs for Defense and Federal customers. We are hiring a Cybersecurity SME (real KP) for an exciting opportunity located in Ashburn, Va.

Job Description and Responsibilities

Exciting opportunity supporting a Department of Homeland Security (DHS) U.S. Customs and Border Protection (CBP) environment consisting of approximately 75,000 business users using CBP approved Windows or Mac baseline operating systems (OS). The program delivers Engineering, Operations, Cybersecurity, and Service Management in support of a) Windows 10 and Windows 11 platforms managed using Microsoft Endpoint Management solutions, Microsoft Endpoint Configuration Manager (MECM) and Microsoft Intune in a hybrid joined Azure and on premises co-managed Active Directory; and b) MacOS environment (MacOS Monterey, Big Sur, Catalina) using the Casper Administration Management (CAM) and JAMF mobile device management system. JAMF leverages on premises Active Directory for the management of devices.

The primary responsibilities of this role include:

Provide comprehensive cybersecurity services including but not limited to:

Investigate and analyze cyber threats by gathering and examining vulnerability and log data from a variety of cybersecurity tools and resources (Nessus, Tanium, Digital Guardian, Splunk, Axonius) to identify possible threats to system, hardware, and application security.

Engineer innovative methodologies to present aggregated findings, to include but not limited to: custom PowerPoint slides, Excel reports, Power BI dashboards, Splunk dashboards, Axonius dashboards, or custom designed reporting websites.

Work with Information System Security Officer(s) and Manager to review and recommend changes to IT Security Plans on an as needed basis and/or upon system re-accreditation.

Develop and implement remediation plans to address vulnerabilities found, to include but not limited to the following activities:

Engineer and implement scripts and/or automations to remediate vulnerabilities found

When deemed appropriate or necessary perform manual remediations on affected systems

Review and recommend overall work unit or agency process changes and/or policy changes. Document recommendations in official policy format for Government leadership to review, sign, and enact into policy

Author and present reports of findings and the remediation directions to a wide variety of audiences to include Government leadership, Field Technology Officers, and other stakeholders.

Develop methods to detect, remove, block, and/or deny access to prohibited products and or versions identified to be vulnerable

Required Knowledge, Skills and Abilities (KSA)

Provide overall CS engineering and Risk Management Framework (RMF) expertise across all performance areas; evaluate new/existing security technologies

Investigate/analyze CS threats and vulnerabilities (whitelisting, etc.), support CS/RMF reporting and documentation (security plans, assessments, findings, etc.), review and recommend remediation strategies

Direct experience detecting, monitoring, and remediating various aspects of CS, to include physical, SW, and network security; performing compliance control testing, knowledge of evolving cyber threats; developing recommendations and training programs to minimize CS risk; RMF; Zero Trust Architecture (ZTA); Federal Information Security Modernization Act (FISMA) compliance

Desired KSA

Be a positive, self-motivated, and proactive person with the ability to adapt to change and tolerate stressful situations

Candidate must communicate effectively with team members, team lead, management, and government customer

Must have the ability and desire to research and develop creative solutions to unique problems with minimal supervision

Minimum Training, Education, and Certifications

5+yrs experience

Bachelor's or Master's degree in Computer Science, Engineering, Information Technology, or Cybersecurity and

One or more of the following certifications: EC-Council Certified Ethical Hacker, CompTIA Security Analytics Expert, or Certified Information Security Professional (CISSP)

We apply the following substitution guidelines:

No diploma plus 2 years' experience equals a High School (HS) diploma

HS diploma plus 2 years' experience equals an Associate's degree

Associate's degree plus 2 years' experience equals a Bachelor's degree

Bachelor's degree plus 2 years' experience equals a Master's degree

Minimum Clearance

CBP Background Investigation

Physical Requirements

Required to stand, walk and sit; communicate verbally both in person and by telephone; use hands to finger, handle or feel objects or controls; reach with hands and arms. Regularly required to stoop, kneel, bend, crouch and lift up to 25 pounds. Specific vision abilities required by this job include close vision, distance vision, depth perception, color vision and the ability to adjust focus.

Physical demands associated with this position may include extensive walking (including stairs) throughout offices and between buildings. May require use of personal or Government vehicle to drive to local and/or remote office locations.

Additional Requirements

Other duties as assigned.

ESM provides equal employment opportunity to all individuals regardless of race, color, creed, religion, gender, age, sexual orientation, national origin or ancestry, disability, genetic information, veteran status, gender identification or any other characteristic protected by state, federal or local law.