Cybersecurity SME in Chantilly, Virginia at High Side Technology, Inc.

High Side Technology is seeking a Cybersecurity Subject Matter Expert to provide expert-level cybersecurity analysis, engineering, and assessment services for complex, multi-domain systems. This role acts as a senior technical advisor and Security Control Assessor (SCA), specializing in integrating security throughout the system lifecycle, translating technical risks into mission-impact statements, and guiding the implementation of advanced security architectures.

Principal Duties and Responsibilities:

• Provides strategic cybersecurity guidance and participates in technical reviews (e.g., SRR, PDR, CDR) to ensure security is integrated from the initial design phase and throughout the system development lifecycle.
• Executes the Risk Management Framework (RMF) process, providing risk determinations and recommendations to the Authorizing Official (AO).
• As a Security Control Assessor (SCA), executes the Risk Management Framework (RMF) process across Federal, DoD, and IC policies. Provides continuous risk determinations and actionable recommendations directly to the Authorizing Official (AO).
• Conducts deep technical validation of security controls by reviewing vulnerability scans (e.g., ACAS/Nessus), STIG checklists, and penetration test reports to correlate findings with operational mission risk.
• Evaluates the security performance, integrity, and residual risk of diverse and complex architectures, including Platform Information Technology (PIT), cloud environments, communication networks, and satellite control systems.
• Guides the adoption and implementation of DoD Zero Trust principles and provides specialized expertise in the design and evaluation of Cross Domain Solutions (CDS).
• Functions as a technical liaison between engineering teams, program leadership, and external government and industry partners.

Minimum Qualifications:

• Clearance: Must possess an active Top Secret clearance with eligibility for SCI and SAP access.
• Experience: Requires a minimum of twelve (12) years of demonstrated experience in IT, cybersecurity engineering, and/or Assessment & Authorization (A&A).
• Certification: Must hold a current certification compliant with DoD 8140.01 for IAT Level III or IAM Level III (e.g., CISSP, CISM, GSLC, CASP+ CE).
• Technical Expertise: Must have proven hands-on experience with systems integration, enterprise networks, cloud computing systems, or Platform IT architectures.
• Ample experience with Special Access Program (SAP) and Sensitive Compartmentalized Information (SCI) Systems preferred.