We have an opportunity for an ADVANCED CYBERSECURITY SPECIALIST supporting one of our Federal customers in Reston Va.

MINIMUM CLEARANCE LEVEL: Secret

CITIZENSHIP: US Citizenship

LOCATION: Onsite Reston Va

Employment Type: Full-Time

Position Summary

The Advanced Cybersecurity Specialist serves as a senior technical advisor supporting the Enterprise Information Infrastructure (EII) Information Systems Security Officer (ISSO) and Privacy Security Officer (PSO). This position leads Risk Management Framework (RMF) compliance efforts for BSO-18 systems and networks, engages with DHA and DON cybersecurity officials on policy and compliance matters, and ensures Navy Medicine sites and systems maintain appropriate security postures. The specialist reviews and validates eMASS packages, monitors cyber hygiene compliance, and provides surge support to subordinate command ISSMs.

Primary Duties and Responsibilities
• Assist the EII ISSO/PSO with day-to-day tasks and strategic cybersecurity considerations
• Maintain awareness of and interpret DHA and DON cybersecurity requirements for NMED mission objectives
• Engage regularly with DHA cybersecurity officials on policy, RMF, and operations compliance
• Coordinate with DON cybersecurity officials on policy and RMF reciprocity compliance
• Engage with NMED site and system ISSMs; advise on implementation and compliance reporting
• Prepare, review, and vet formal agreements (MOU, MOA, SLA) with DHA and Navy AO officials
• Assess and monitor compliance of systems and commands with cybersecurity and privacy requirements
• Report data and metrics for DoD Cyber Hygiene Scorecard reporting and policy waivers
• Coordinate with stakeholders on cybersecurity issues, FRAGOs, WARNOs, and CTOs
• Review and validate site and system packages in DHA and DON eMASS for accuracy and completeness
• Provide limited surge support for NMED sites and systems ISSMs as needed
• Generate and maintain cybersecurity measures and KPIs specific to NMED sites and systems
• Maintain cyber assessment and readiness evaluation status through data validation and consolidation

Required Knowledge, Skills, and Abilities
• Expert knowledge of DoD Risk Management Framework (RMF) and NIST SP 800-53 Rev 5 controls
• Proficiency in eMASS administration and ATO package preparation
• Experience with DHA and Navy authorization processes and reciprocity requirements
• Knowledge of cybersecurity tools: ACAS, CMRS, COAMS, ESS/HBSS, Navy AO Service Portal, PPSM
• Understanding of IAVM compliance and vulnerability remediation processes
• Familiarity with Privacy Impact Assessments and POA&M management
• Experience with STIG implementation and compliance validation
• Strong written and verbal communication skills for policy interpretation and stakeholder engagement
• Ability to represent BUMED ISSO in working meetings with DHA and DON officials

Education: Bachelor's Degree in Cybersecurity, Information Technology, Computer Science, or related field

Qualifications:

Minimum 8-12 years of experience in cybersecurity, with at least 5 years in DoD/Federal RMF implementation

Certification Requirement

• IAM III
• Acceptable certifications include CISSP, CISM, GSLC, or CCISO. Must maintain certification currency throughout contract performance.

About Excentium

Excentium is a Service-Disabled Veteran-Owned Small Business (SDVOSB) providing cybersecurity and IT services to federal agencies. We hold FedRAMP 3PAO accreditation, CMMC Level 2 certification, and maintain facility clearances supporting our mission-critical work across government.

We take pride in building a workforce with strong Veterans focus.

Excentium offers a competitive salary and comprehensive benefits package, including medical, dental, life, disability, 401k, and paid time off.

Excentium, Inc. is an equal opportunity employer.