Cybersecurity Risk Specialist
Description:
Job Description
Salary: $120,000-135,000
Internal Code: IT2
Reports to: Director of Business Operations
Location: MATSYS HQ
MATSYS, Inc. is seeking a Cybersecurity Risk Specialist to support our research/development and manufacturing facilities in Sterling, VA. This role is central to developing and implementing security risk management strategies, ensuring compliance with regulatory frameworks, advising on controls, and responding to emerging threats. If you are looking to join a rapidly growing company that offers a dynamic, fast-paced, solution-driven work environment, MATSYS is the place for you! Join MATSYS and help build solutions to complex materials and defense challenges.
This position will be responsible for identifying, assessing, and mitigating cybersecurity risks to protect the organizations digital assets and information systems. The Cybersecurity Risk Specialist will report to the Director of Business Operations and work closely with the IT Manager to implement and maintain a strong security architecture. The ideal candidate will have experience with have a strong working knowledge of Cybersecurity Maturity Model Certification requirements.
Veterans strongly encouraged to apply!
Description
Develop, maintain, and enhance cybersecurity policies and controls aligned with industry standards and regulatory requirements (such as CMMC, HIPAA, GDPR, etc.)
Identify, assess, and manage cybersecurity risks across the organization's systems, infrastructure, and third-party relationships, using recognized risk frameworks (NIST 800-171, NIST 800-172, etc.)
Conduct regular risk assessments, vulnerability scans, risk analytics, and recommend mitigation strategies
Serve as liaison between security, compliance, and IT management, ensuring integration of cyber, operational, and facility-level security requirements
Oversee and mature the third-party risk management program and manage security documentation requirements
Coordinate with internal and external auditors to prepare for assessments, collect audit materials, and resolve compliance gaps
Develop and participate in incident response planning, including threat containment, remediation, post-incident reviews, and communications
Deliver training and promote awareness campaigns to strengthen cybersecurity culture and risk mitigation among stakeholders
Fully manage the GCC High tenant
Design, implement, and regularly review the cyber permissioning process
Support operational and facility security functions
Required
Ability to obtain a Secret Security Clearance (U.S. citizenship is a pre-requisite)
Bachelors degree in cybersecurity, computer science, information systems, or closely-related field (or equivalent experience)
Third-party cybersecurity certification(s) (CISSP, CMMC CP preferred)
Minimum of five years of experience in cybersecurity risk, governance, or audit roles in a regulated environment, such as a federal agency or DoD contractor
Strong, working knowledge of cybersecurity and risk management frameworks (NIST 800-171, NIST 800-172, etc.) and Cybersecurity Maturity Model Certification (CMMC) requirements and assessment framework
Working knowledge of industrial security/NISPOM compliance and OPSEC processes
Preferred
Veteran candidates strongly encouraged to apply!
Experience supporting OPSEC and FSO responsibilities
Audit experience/training/certification
GCC High tenant management experience
Competencies
Commitment to maintaining confidentiality of information
Work Execution & Excellence: Efficient planning & quality execution, ability to meet deliverables & deadlines, drive towards excellence.
Communication & Team Impact: Strong communication, documentation, and cross-functional coordination skills. Demonstrated ability to communicate risk insights and solutions clearly to both technical and non-technical leaders.
Technical Expertise & Development: Strong understanding of security technologies, including firewalls, proxies, antivirus, etc. Competency in penetration testing, network security, and methods to identify and mitigate security vulnerabilities.
Autonomy, Judgment & Decision-Making: Sounds judgment and planning ability, risk assessment skills, creativity & critical problem-solving. Big picture thinking, as well as detail orientation and milestone planning ability.
Commitment to MATSYS core values and ideals:
Safety: Safety is at the forefront of our decision-making. We hold each other responsible to ensure the health and safety of our team at all times.
Quality: We stake our reputation on our impeccable standards. We provide the utmost quality in everything that we do and deliver above expectations, both as individuals and as a team.
Integrity: We are accountable, transparent, and act with respect and in the best interests of our customers, communities, and employees.
Teamwork: Good ideas come from everyone and great ideas come from us working together.
Impact: We are responsive and effect positive and ground-breaking change, delivering excellence every step of the way.
About MATSYS Inc.
MATSYS is a full-service provider with over 30 years of experience delivering materials expertise and prototyping solutions to the defense, energy, and pharmaceutical sectors.
We specialize in developing advanced, integrated technologies for defense applications, with a strong focus on next-generation warheads and small to medium caliber ammunition. Our deep knowledge of advanced materials, novel alloy development, and our multidisciplinary approach to complex challenges foster unique opportunities for innovation and cross-industry collaboration.
MATSYS is an Equal Opportunity Employer committed to providing employment opportunity without regard to an individual's age, color, disability, gender, gender expression, gender identity, genetic information, national origin, race, religion, (including pregnancy and pregnancy related conditions), sexual orientation, or military status. All qualified applicants will receive consideration for employment without regard to characteristics protected by law or irrelevant to performance, unless otherwise required by law.
MATSYS uses E-Verify to verify right-to-work.
MATSYS is a Drug-Free Workplace. Candidates are required to pass a pre-employment background investigation and drug test prior following receipt of a conditional job offer.
Full-time