×
Register Here to Apply for Jobs or Post Jobs. X

Senior Cyber Security Specialist Security Clearance

Job in Fort Belvoir, Fairfax County, Virginia, 22060, USA
Listing for: OBXtek, Inc
Full Time position
Listed on 2026-07-01
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Systems Engineer, IT Consultant
Job Description & How to Apply Below
Position: Senior Cyber Security Specialist with Security Clearance
Responsibilities OBXtek is currently staffing for a Senior Cyber Security Specialist supporting the Army's United Network Modernization (UNM) organization . Place of performance will be Fort Belvoir, VA. This person will work on high-visibility or mission critical aspects of a given program and performs all functional duties independently. Major

Duties and Responsibilities:

* Provide assistance in identifying and resolving highly complex Cybersecurity/Information Assurance (IA) problems which are not subject to resolution through conventional methods.
* Provide assistance in the development of Cybersecurity/IA briefings to obtain leadership/management consensus/approval on potential security solutions.
* Provide assistance in network security implementation, including preparation and oversight of the execution of policies and procedures to ensure the continuous security of project architectures.
* Provide assistance in the oversight to ensure implemented security safeguards are adequate to assure the integrity, availability, and confidentiality of the information being processed, transmitted, or stored are consistent with the level of sensitivity of that information.
* Provide analysis of information processing needs and proposed system changes for security requirements and implications.
* Participate in regular Cyber IPTs for assigned projects as required.
* Ensure that the independent IV&V is scheduled and executed.
* Perform a complete system self-assessment prior to the IV&V with CY in attendance; consistently communicate with the major CY stakeholders of all assigned projects
* Be responsible for all CY actions (at a minimum any Interim Authority to Test (IATT), Authority to Connect (ATC), Authority to Operate (ATO) using the security controls of CNSSI-1253 and include life-cycle CY maintenance of the system; have experience with Enterprise Mission Assurance Support Service (eMASS).
* Deliver to the CY a weekly progress report that documents the RMF.
* Provide engineering design that incorporates IA criteria for the components IAW applicable Army Regulations (ARs), DoD regulations, and DISA STIGs.
* Provide for the system scanning with DISA approval ACAS and SCAP vulnerability scanning tools during a self-assessment of the entire system(s).
* Discovered vulnerabilities, Not Applicable (N/A) security controls and mitigation actions will be recorded in a Plan of Action and Milestones (POA&M) template formatted per NIST 800-18 (current).
* Plan, coordinate, and ensure that the Independent Validation and Verification (IV&V) is funded, planned, and executed with the local ICAN ISSM or appropriate USG CY representative.
* Ensure the hardware/software inventory demonstrates compliance with the Unified Capabilities UC APL for all software in the SDP and EIP.
* Ensure that the Network Topology Diagram in the, OV-1, SV-1 format and the Data Flow Logical Diagram in the SV-2 format demonstrate adequate security controls compliant with CNSSI-1253 to protect the System in the System Design Plan (SDP) and EIP.
* Ensure the diagrams are prepared in the Department of Defense Architecture Framework (DoDAF) format.
* Confirm the IA Test Plan defines all appropriate STIGs to be applied to the System, vulnerability scans to be conducted, remediation and system hardening efforts to secure the System.
* Ensure that each contract and project integrator shall provide patching, system hardening, fixing, and mitigating findings from vulnerability scan results or manual assessments on a system POA&M template found in NIST 800-18.
* Submit a POA&M for the system to include identification of control vulnerabilities for Non-compliant Test Result findings, corrective actions with mitigation/resolution alternatives and associated risk analyses, and Not Applicable (N/A) findings to include the reason why the security control is N/A and the artifact that validates this status. For each RMF security control an artifact will be included.
* Utilize vulnerability scanning tools and execute the vulnerability scans using an Army approved method (e.g., Assured Compliance Assessment Solution (ACAS)).
* Analyze the vulnerability…
Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary