Cyber Security SME
Clearance: Secret We are seeking a highly skilled Cyber Security Subject Matter Expert (SME) to join our team. The ideal candidate will possess deep expertise in secure software architecture, design patterns, and defensive coding techniques. This role requires a proactive individual who can provide expert guidance during system upgrades, conduct in-depth evaluations of software systems, and ensure compliance with government-mandated security frameworks. Key Responsibilities:
System Upgrades & Security Controls
Provide expert guidance during system upgrades, ensuring the implementation of security controls and compliance-driven optimizations.
Collaborate with development and operations teams to integrate security controls throughout the Software Development Life Cycle (SDLC).
Vulnerability Assessment & Mitigation
Conduct in-depth evaluations of software systems to identify vulnerabilities.
Recommend and implement robust security solutions to mitigate identified risks.
Logging & Auditing
Design and implement comprehensive logging mechanisms and audit trails.
Ensure logging best practices and rigorous auditing standards are adhered to.
Mentorship & Training
Mentor development teams on secure coding practices and compliance-driven development.
Provide training sessions and workshops on cybersecurity best practices.
Risk Management
Proactively identify potential security risks and vulnerabilities.
Develop and implement strategies to mitigate these risks.
Stakeholder Collaboration
Work closely with government stakeholders to understand security requirements.
Ensure projects meet compliance obligations and government recordkeeping requirements. Relevant Experience:
A bachelor’s degree in computer science, Cybersecurity, Software Engineering, or a closely related technical field OR extensive, directly relevant experience.
Deep expertise in secure software architecture, design patterns, and defensive coding techniques.
In-depth understanding of data integrity principles, logging best practices, and rigorous auditing standards.
Proven track record in designing and implementing robust security solutions within government-mandated compliance frameworks.
Extensive experience in integrating security controls and testing throughout the SDLC. Desired Qualifications:
Experience with Oracle database administration.
In-depth knowledge of cybersecurity frameworks and federal compliance standards.
Expertise in records management principles and auditing best practices.
Understanding of government recordkeeping requirements and compliance frameworks.
Strong understanding of log data formats, event correlation, and data retention policies.
Proficiency In Developing Technical Standards And Documentation. Desired Certifications
Certified Information Systems Security Professional (CISSP)
Oracle Certified Professional (OCP) Database Administration
Oracle Database Security Specialist
Certified Information Systems Auditor (CISA)
Systems Security Certified Practitioner (SSCP)
Relevant GIAC certification (GSEC, GPEN)
Additional Information
Work Environment: This position may require occasional travel and the ability to work in a fast-paced, high-security environment.
Clearance Requirement: Candidates must possess an active Secret clearance.