Demo
Salary Resume Critique Job Openings

Cyber Information Security SME

Iron Vine Security
Washington, DC Full Time
POSTED ON 2/10/2025
AVAILABLE BEFORE 5/7/2025

Position Title : Cyber Information Security SME

Location : Washington D.C

Position Summary :

Iron Vine Security is a rapidly growing information security and information technology company in Washington, DC. We are looking to hire a Cyber Information Security SME to support a full range of cyber security services on a long-term contract in Washington DC. The position is full time / permanent and will support a US Government civilian agency. The position is available immediately upon finding a qualified candidate with the appropriate background clearance.

Job Requirements :

  • Strong written and verbal communication skills.
  • Demonstrated ability to interact effectively with senior management and leadership.
  • Possess knowledge of NIST Risk Management Framework at the subject matter expert level, particularly including SP 800-30, 37, 39, 53, and 53-A.
  • Ability to craft enterprise-specific implementation guidance for system owners who are attempting to satisfy NIST SP 800-53 controls.
  • Extensive experience drafting SOPs, System Security Plans, Security Assessment Plans, POAMs
  • Ability to analyze and interpret Federal legislation, directives, Office of Management and Budget (OMB) mandates, and guidance provided by the National Institute of Standards and Technology (NIST) against existing information security and privacy policy to identify required updates.
  • Understanding of FIPS 199 Federal Computer Systems Categorization standards.
  • Experience with supporting the Authorization to Operate (ATO) process.
  • Ability to conduct research on new and emerging information technologies and develop comprehensive information security and privacy policy, standards / guidelines, and procedures to facilitate the implementation of information security and privacy controls.

Certifications / Licenses :

  • BS degree or other 4-year college degree or equivalent work experience
  • 5 years' experience in information security and assurance
  • One of the following certification or equivalent certifications preferred :
  • Certified Information Systems Security Professional (CISSP);
  • Certified Information Security Manager (CISM);
  • Certified Information Privacy Professional (CPP);
  • Certified Information Privacy Manager (CIPM);
  • Active Public Trust clearance or higher

    • Additional Experience Preferred :

  • Knowledge of risk and how to measure risk with respect to IT systems.
  • Knowledge of IT systems used in health care or health research.
  • Experience reviewing and drafting Privacy Impact Assessments (PIAs).
  • Has reviewed and developed Security Assessment and Authorization (SA&A) documents.
  • Possesses an in depth understanding of the NIST Risk Management Framework (RMF).
  • Supported efforts to ensure compliance with FISMA and NIST Guidance.
  • Ability to provide recommendations and guidance to the customer which enables them to enhance and optimize their information security program.

    • Position Responsibilities :

  • Review and update existing information security policy, standards, and Standard Operating Procedures based on federal and departmental regulations.
  • Draft, review, and / or update SA&A security artifacts such as FIPS 199, PTA, PIA, NIST SP 800-60-3 Digital Identity, Information System Contingency Plan and Contingency Test Plan, System Security Plan, Security Assessment Plan, Security Assessment Report.
  • Draft security policies and procedures and provide recommendation for improvement and compliance with applicable standards.
  • Support Disaster Recovery and Incident Response efforts
  • Examine system documentation, interview appropriate system stakeholders, test system technical security configuration settings, review vulnerability scan results for compliance requirements
  • Assist with the interpretation and analysis of Security Assessment Results upon completion of each Security Assessment and / or as requested to assist with post-assessment questions, to assess the vulnerability and risk to the system and to the customer or other connected systems.

    • Skills & Requirements Qualifications

    NOTES :

    Iron Vine Security is an equal opportunity employer. All qualified applicants are considered for employment without regard to race, color, age, religion, sex, sexual orientation, gender identity, national origin, disability, protected veteran status, or any other category protected by applicable federal, state or local laws.

    Iron Vine Security is a federal contractor. As such, we are subject to an Executive Order requiring all employees of federal contractors to be fully vaccinated for COVID-19 by December 8, 2021. Therefore, by applying for this position, you understand that you will be required to verify that you have been, or will be, fully vaccinated by December 8, or to verify that you cannot be vaccinated due to a legally recognized exception to the vaccine mandate set forth in the Executive Order.

    Note : An individual is not considered to be fully vaccinated until two weeks after receiving the second vaccine dosage in a vaccine regimen involving two vaccines.

    If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
    Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

    What is the career path for a Cyber Information Security SME?

    Sign up to receive alerts about other jobs on the Cyber Information Security SME career path by checking the boxes next to the positions that interest you.
    Income Estimation: 
    $70,462 - $84,818
    Income Estimation: 
    $77,991 - $108,747
    Income Estimation: 
    $87,093 - $107,335
    Income Estimation: 
    $140,233 - $181,029
    Income Estimation: 
    $161,209 - $233,553
    Income Estimation: 
    $99,793 - $130,112
    Income Estimation: 
    $125,027 - $157,872
    Income Estimation: 
    $125,027 - $157,872
    Income Estimation: 
    $149,432 - $188,965
    Income Estimation: 
    $163,631 - $209,073
    Income Estimation: 
    $192,911 - $256,346
    Income Estimation: 
    $150,041 - $190,701
    Income Estimation: 
    $163,631 - $209,073

    Sign up to receive alerts about other jobs with skills like those required for the Cyber Information Security SME.

    Click the checkbox next to the jobs that you are interested in.

    • Data Security Skill

      • Income Estimation: $93,919 - $117,786
      • Income Estimation: $123,246 - $161,441

    • Endpoint Protection Skill

      • Income Estimation: $77,991 - $108,747
    Employees: Get a Salary Increase
    View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

    Job openings at Iron Vine Security

    Senior Cyber Security Engineer
    Iron Vine Security
    Hired Organization Address Washington, DC Full Time
    Job Requirements : Strong written and verbal communication skills. Experience designing, implementing, and maintaining I...
    Mid Security Engineer
    Iron Vine Security
    Hired Organization Address Baltimore, MD Full Time
    Position Title : Mid-Level Security Engineer Location : Woodlawn MD Hours : 9 am - 5pm Position Summary : Iron Vine Secu...
    View More Jobs at Iron Vine Security

    Not the job you're looking for? Here are some other Cyber Information Security SME jobs in the Washington, DC area that may be a better fit.

    Cyber Information Security SME

    Iron Vine Security, LLC Career Center, Washington, DC

    Senior Manager, Information Systems Security Officer

    UltraViolet Cyber, Arlington, VA

    View More Jobs

    AI Assistant is available now!

    Feel free to start your new journey!