More jobs:
Cybersecurity Specialist - Mid/Senior - SBG REMOTE
Remote / Online - Candidates ideally in
Alexandria, Fairfax County, Virginia, 22350, USA
Listed on 2026-06-28
Alexandria, Fairfax County, Virginia, 22350, USA
Listing for:
Sbg Technology Solutions Inc
Remote/Work from Home
position Listed on 2026-06-28
Job specializations:
-
IT/Tech
Cybersecurity, Information Security, IT Consultant
Job Description & How to Apply Below
Overview The Cybersecurity Specialist ensures all applications meet FedRAMP High security and compliance requirements throughout the assessment and onboarding process for DSS Health Cloud, a FedRAMP High authorized healthcare-focused platform hosted in an AWS Government enclave environment. This role supports Independent Software Vendors (ISVs) and government applications by identifying security gaps, supporting authorization documentation, and validating alignment with applicable federal cybersecurity frameworks.
The Cybersecurity Specialist will:
Assesses application security posture, including logging, auditing, and control implementation, against FedRAMP High baseline requirements
Supports Authority to Operate (ATO) documentation efforts and compliance readiness activities for applications undergoing onboarding assessment
Identifies cybersecurity gaps across assessed applications and recommends prioritized remediation actions with supporting rationale
Evaluates application and environment alignment with Zero Trust architecture principles and continuous monitoring requirements
Supports development of System Security Plans (SSPs), Plan of Action and Milestones (POA&M) inputs, and related security authorization artifacts
Applies Risk Management Framework (RMF) processes to security assessment activities and documents findings in accordance with NIST guidelines
Reviews identity, access control, and encryption implementations to verify compliance with applicable standards and FedRAMP controls
Conducts vulnerability management reviews and evaluates continuous monitoring capabilities for onboarding candidates
Collaborates with cloud architects, program managers, and ISV technical teams to communicate security findings and guide remediation planning
Other Duties:
Performs other duties as assigned by management in support of SBG Technology Solutions contract objectives
Travel requirements: occasional travel as required by project needs (estimated up to 10% per year)
Conditions of Employment:
Must be a US Citizen Must be able to pass a Federal background check
Must be determined suitable for federal employment
Security and Privacy Duties and Responsibilities Individuals working for SBG Technology Solutions, Inc, a DSS, Inc. will be subject to security and privacy requirements as explained in HIPAA, FedRAMP, and NIST 800-53. Additionally, they are required to undergo specific FedRAMP training to ensure compliance with all associated controls and responsibilities in the day-to-day performance of their duties. Individuals working in departments that are considered to be in the high-risk category will be required to undergo advanced training based on their role and level of access.
Individuals with access to modify data and the configuration baseline will require further training.
The preceding functions are examples of the work performed by employees assigned to this job classification. Management reserves the right to add, modify, change or rescind work assignments and make a reasonable accommodation as needed.
Required Skills:
In-depth knowledge of FedRAMP High security controls and the NIST Risk Management Framework (RMF) process
Proficiency in security architecture review and cloud security engineering within AWS or comparable government cloud environments
Experience conducting vulnerability management assessments and evaluating continuous monitoring programs
Working knowledge of identity and access management (IAM), encryption standards, and access control frameworks
Ability to develop and review authorization documentation including SSPs, POA&Ms, and security assessment reports
Strong analytical and written communication skills; able to document and present security findings clearly to both technical and non-technical audiences
Capable of managing concurrent assessment work streams and delivering findings within defined project timelines
Preferred
Skills:
Familiarity with HIPAA Security Rule…
Position Requirements
10+ Years
work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
Search for further Jobs Here:
×