Cyber Security Subject Matter Expert

Job description

VetsEZ is seeking a Cyber Security SME to be part of a remote team supporting a Department of Veterans Affairs (VA) project. The ideal candidate will have experience in a vast array of IT systems involving end users as well as enterprise-level networks; experience in designing and implementing systems that meet agency Cyber Security policy and regulations; and must have extensive experience in Cyber Security and DLP Tools, network topologies, intrusion detection, and Zero Trust Architecture.

The candidate must reside within the continental US.

Responsibilities:

• Identifying security risks, improving security architecture designs, and managing the security of data at rest and in motion.
• Lead initiative to modernize DLP solution, removing on-premises dependencies and introducing new capabilities.
• Implement cybersecurity requirements for IT systems and applications, documenting them in formal security engineering documents using the Risk Management Framework.
• Maintain a working knowledge of system functions, security policies, technical security safeguards, and operational security measures.
• Lead the identification and assessment of Information Technology (IT) security control compliance of information technology and assessing information security risks within a broader enterprise risk management program.
• Provide subject matter expertise, direction, guidance, tracking, and support on cyber security, risk management, continuous monitoring, security Assessment and Authorization (A&A), and business processes that support a metric-driven environment.
• Develop, maintain, and update Plans of Action and Milestones (POA&M) to identify system weaknesses, mitigation, and timelines for applying corrective actions.

Requirements:

• Bachelor’s Degree in Computer Science, Electronics Engineering, or other engineering/technical discipline
• 8+ years of applicable experience in Cybersecurity and Cloud Security experience at a large Government agency similar in size/scope to GSA, IRS, DoD, or VA.
• 5+ years’ experience: Architect, engineer, develop, deploy, and administer Data Loss Prevention solutions.
• Expertise in MITRE Adversarial Tactics, Techniques, and Common Knowledge Framework.
• Hands-on experience with CASB, DLP, Web Proxy, SIEM, CSPM, File and Removable media protection tools (FRP).
• Hands-on experience with Data Classification policies and technologies to address data leakage.

Additional Qualifications:

• Ability to obtain a government clearance.
• Experience in the VA or other health-related organizations desired.
• One or more of the following: certifications: CISSP, CISA, CISM, CRISC.

Benefits:

• Medical/Dental/Vision
• 401k with Employer Match
• PTO + Federal Holidays
• Corporate Laptop
• Training opportunities
• Remote Opportunity

Qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, sexual orientation, gender identity, disability, or protected veteran status.

Sorry, we are unable to offer sponsorship at this time.