This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more.

Role Description

BMA is seeking a Cybersecurity Subject Matter Expert (CS SME) – Lead to support our DLA Cybersecurity Policy and Oversight Support Services (CPOSS) contract. The CS SME – Lead provides senior-level technical leadership and advisory support to the CPOSS program supporting DLA’s J6/J611 Cybersecurity Directorate. The SME serves as the principal cybersecurity authority for complex technical and governance challenges related to the enterprise Risk Management Framework (RMF) program, cybersecurity policy development, continuous monitoring, and control validation activities across the DLA enterprise.

• Enterprise Cybersecurity Technical Leadership: Serves as the senior technical advisor to the DLA cybersecurity assessment and oversight program, providing expert interpretation of cybersecurity policies, standards, and technical requirements.
• RMF and Cybersecurity Assessment Expertise: Provides subject matter expertise on implementation and governance of the DoDI 8510.01 Risk Management Framework for DoD IT across DLA information systems.
• Cybersecurity Tools, Standards, and Architecture Support: Evaluates cybersecurity tools and technologies to support enterprise security assessment, monitoring, and compliance activities.
• Enterprise Cybersecurity Policy and Methodology Development: Contributes to the development of new cybersecurity principles, methodologies, and governance practices that improve the DLA enterprise cybersecurity program.
• Strategic Analysis and Innovation: Conducts research and analysis of emerging cybersecurity threats, technologies, and best practices relevant to the DLA mission environment.
• Senior-Level Advisory and Communication Support: Provides expert written and oral briefings to senior government leadership regarding cybersecurity risks, program status, and recommended solutions.

Qualifications

• Current DoD 8670.01/8140 IAM Level III certification that includes one or more of the following: ISACA CISM, ISC2 Certified Information Systems Security Professional (CISSP), GIAC/SANS GIAS Security Leadership Certification (GSLC), or EC-Council Certified Chief Information Security Officer (CCISO).
• 7+ years of Information Technology experience.
• 5+ years of Information Assurance / Cybersecurity experience.
• Demonstrated expertise in cybersecurity assessment methodologies, risk analysis, and enterprise cybersecurity governance.
• Strong analytical and problem-solving skills with the ability to resolve complex cybersecurity challenges.
• In-depth knowledge of DoD cybersecurity regulations and guidance, including RMF implementation.
• Strong familiarity with Defense Information Systems Agency STIGs and Security Requirements Guides (SRGs).
• Demonstrated ability to develop and evaluate cybersecurity technologies, architectures, and security solutions.
• Exceptional technical leadership and independent decision-making ability.
• Ability to translate complex cybersecurity issues into clear, actionable guidance for senior leadership.
• Strong written and oral communication skills capable of supporting executive-level briefings.
• Proven ability to innovate and develop new cybersecurity concepts, processes, and technical solutions.
• Demonstrated ability to work independently toward long-range cybersecurity program objectives.

Requirements

• Able to travel within a week's notice.

Benefits

• Multiple healthcare coverage options including low deductible, high deductible, and plans eligible for Health Savings Account (HSA).
• Dental, vision, accident & illness, short- and long-term disability coverage available.
• 401(k) plan with an industry leading 6% match that can include profit sharing based on company performance.
• 100% Employee Stock Ownership Plan (ESOP), providing eligible employees the opportunity to earn stock in BMA, subject to plan eligibility and vesting requirements.