Cybersecurity SME
Listed on 2026-07-08
-
IT/Tech
Cybersecurity, Information Security
Overview
Mano Lani LLC is seeking an enthusiastic, well-qualified individual to serve as a Cybersecurity Subject Matter Expert (SME) for the DTMO Enterprise Infrastructure. The SME will provide comprehensive cybersecurity support in accordance with the Risk Management Framework (RMF), NIST 800‑37, and DoW cybersecurity requirements. The role is central to ensuring DTMO systems maintain their Authority to Operate (ATO) by managing the RMF process, conducting security assessments, overseeing remediation, coordinating with DMDC, the DTMO Information System Security Manager (ISSM), Authorizing Official (AO), and Security Control Assessor (SCA), and maintaining compliance with DoD cybersecurity mandates.
Responsibilities- Coordinate with DMDC to administer all aspects of RMF and maintain system ATO.
- Maintain DTMO system security packages in collaboration with the DTMO ISSM.
- Support the AO and SCA in ensuring continued compliance.
- Record, track, and close all applicable Plans of Action and Milestones (POA&Ms) with the ISSM.
- Participate in audit support during planned assessment events.
- Report security status of DTMO systems via automated and manual tools.
- Monitor and audit security event logging, generate reports, and analyze findings.
- Analyze vulnerability reports and recommend and implement remediation efforts.
- Ensure mandatory system patches are applied to address vulnerabilities.
- Review access control measures to ensure appropriate controls are in place.
- Develop and submit Deviation Requests to authorize deviations from DoW STIG requirements.
- Develop and maintain system security documentation (SSPs, SARs, RARs).
- Support incident response activities and coordinate with DMDC on security incidents.
- Provide cybersecurity guidance and recommendations to DTMO leadership.
- Support cloud security compliance and ensure adherence to DoD cloud computing requirements.
- Stay current on emerging cybersecurity threats and recommend appropriate countermeasures.
- Coordinate security assessments and penetration testing.
- Support continuous monitoring activities and ensure compliance with DoW IAVM requirements.
- Bachelor's degree in Cybersecurity, Information Technology, Computer Science, Engineering, or a related field, or a Certified Information Systems Security Professional (CISSP) certification.
- Microsoft Certified Solutions Expert (MCSE) Cloud Platform and Infrastructure, AWS Certified Solutions Architect, Red Hat Certified System Administrator, or equivalent (Preferred).
- Master's degree in a related discipline.
- CompTIA Security+ certification.
- 5+ years of experience in the cybersecurity field.
- Extensive experience supporting federal cybersecurity programs, preferably under government contracts or GWAC vehicles.
- Strong knowledge of NIST cybersecurity frameworks (RMF, NIST SP 800 series).
- Experience with security architecture, vulnerability management, and risk assessment.
- Familiarity with federal cybersecurity compliance requirements (FISMA, agency policies).
- Experience with RMF / NIST 800‑37 implementation.
- DoW Security Technical Implementation Guides (STIGs).
- Experience with Enterprise Mission Assurance Support Service (eMASS).
- Experience with vulnerability assessment and remediation.
- Experience with security event logging and monitoring.
- POA&M management experience.
- Cloud security expertise (AWS, Azure, or Red Hat Open Stack).
- Experience with Splunk for security and compliance.
- Experience with SaaS, PaaS, and cloud platforms.
Work may involve sitting or standing for extended periods. The position may require typing and reading from a computer screen. The employee must have sufficient mobility, including but not limited to bending, reaching, and kneeling. Moderate to long-distance walking may be required, and lifting up to 25 pounds may be necessary.
Equal Opportunity StatementMano Lani LLC is an equal opportunity employer and does not discriminate against applicants based on race, color, creed, religion, medical condition, legally protected genetic information, national origin, sex (including pregnancy, childbirth or related medical condition), sexual orientation, gender identity and expression, age, disability, or veteran status.
#J-18808-Ljbffr(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).