Cybersecurity Professional

Job Summary:

The Cybersecurity Professional (Level 3 )will support the Secure Cloud Computing Architecture (SCCA) Program Management Office (PMO) with cybersecurity engineering, Risk Management Framework (RMF) support, and onsite security management. This role is essential in ensuring that cloud services and related infrastructure remain compliant with Department of Defense (DoD) cybersecurity standards while enabling secure, mission-aligned innovation. 

*This position is contingent upon contract award*

Job Duties and Responsibilities:

• Design and implement secure, repeatable security architectures for SCCA systems aligned with DevSecOps and Agile principles.
• Provide security engineering support for XaaS offerings and networking equipment across all classification levels.
• Respond to, investigate, and assist in the remediation of breaches or security issues reported by CSPs.
• Monitor SCCA-managed systems and cloud environments for signs of compromise or misconfiguration.
• Support the development and implementation of security policies, procedures, and awareness programs.
• Conduct regular vulnerability assessments, penetration testing, and security audits.
• Execute all RMF activities including system categorization, control selection, continuous monitoring, and documentation aligned with NIST SP 800-53.
• Develop and maintain security documentation such as System Security Plans (SSPs), Security Assessment Reports (SARs), and POA&Ms.
• Collaborate with system owners, certifiers, and stakeholders to facilitate security authorization processes.
• Provide onsite security management support including coordination of security functions, access control, personnel briefings, incident management, and compliance tracking.
• Perform security reviews of third-party software and cloud offerings, and identify risks or gaps in compliance.
• Conduct capability gap assessments and support the development of lessons learned to improve security posture.
• Maintain up-to-date knowledge of DoD cybersecurity regulations and recommend technical and policy updates as necessary.
• Other duties as assigned.

Job Requirements (Education/Skills/Experience):

• Active Secret clearance required!
• Education: Bachelor’s degree in Computer Science, Engineering, or related technical field (or equivalent work experience).
• Certifications Required:

  • • Information Assurance Technical (IAT) Level I or II AND Information Assurance Management (IAM) Level III certification (e.g., CISSP, CISM).

• Minimum of 10 years of recent relevant experience in cybersecurity roles supporting DoD or enterprise IT environments.

• Deep understanding of RMF, NIST SP 800-53 controls, and DoD cybersecurity frameworks.

• Demonstrated experience in security architecture, engineering, and compliance in classified environments.

• Ability to lead incident response efforts and conduct forensic investigations.

• Strong technical writing skills for policy development and security documentation.

• Experience supporting A&A activities and security posture management in a multi-cloud, hybrid infrastructure.
• Expected Deliverables: 

  • Security Assessment Reports (SARs)

  • System Security Plans (SSPs)

  • Plan of Action and Milestones (POA&Ms)

  • Risk Management Framework (RMF) Documentation

  • Security Architecture Designs and Technical Evaluations

  • Security Policies, Briefings, and Awareness Training Materials

  • Incident Reports and Forensic Analysis Findings

  • Vulnerability Assessment and Audit Reports

  • Meeting Minutes, Lessons Learned, and Compliance Checklists

Diné Development Corporation (DDC) is a Navajo Nation owned family of companies that delivers IT, professional, and environmental solutions to advance the missions of federal, state, and tribal government agencies. As thought leaders and innovators, our team of specialists build client-centric solutions that solve critical challenges faced by defense, civilian, and healthcare organizations. Employing a mission-focused approach, we deliver value that not only enhances current operations, but also drives future change. Closely aligned with this approach is our commitment to advancing the Navajo Nation and its People. Through economic development and community empowerment, we elevate the Navajo Nation to provide lasting impact and sustainable growth for future generations. DDC’s ability to unite legacy-inspired technologies, industry best practices, and proven methodologies has contributed to our success for twenty years.

This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, national origin, or for inquiring about, discussing, or disclosing information about compensation, or any other basis prohibited by law. We participate in E-Verify.