Cybersecurity SME

Responsibilities

Cardinal Technology Systems Corp. is a government IT solutions provider servicing commercial and government initiative in various parts of the United States. We are currently seeking a Cybersecurity SME to work for our company.

Summary

• Must possess IT-II security clearance or have a current National Agency Check with Local Agency Check and Credit Check (NACLC). (Basic Federal Clearance requirements are U.S. Citizenship, clear criminal history check, no recent or pending bankruptcies)
• Provides expert support, research and analysis of exceptionally complex problems, and processes relating to them.
• Serves as technical expert to the Cybersecurity Assessment Program providing technical direction, interpretation, and alternatives to complex problems.
• Thinks independently and demonstrates exceptional written and oral communications skills.
• Applies advanced technical principles, theories, and concepts. Contributes to the development of new principles, concepts, and methodologies.
• Works on unusually complex technical problems and provides highly innovative and ingenious solutions.
• Recommends cybersecurity software tools and assists in the development of software tool requirements and selection criteria to include the development of product specific STIGs from applicable DISA SRGs.
• Works under consultative direction toward predetermined long-range goals and objectives.
• Assignments are often self-initiated. Determines and pursues courses of action necessary to obtain desired results.
• Develops advanced technological ideas and guides their development into a final product.

Requirements

• Must possess IT-II security clearance or have a current National Agency Check with Local Agency Check and Credit Check (NACLC). (Basic Federal Clearance requirements are U.S. Citizenship, clear criminal history check, no recent or pending bankruptcies)
• Required Training /Certifications In: ICS300 or relevant Operational Technology “OT” or Industrial Control System “ICS” Cybersecurity Certifications, ACAS and Tanium Training Module /Course Completion.
• Must possess an active DoD 8570 IAT Level III certification (e.g., CISSP, CASP+ CE, CISSP-ISSAP, or CISSP-ISSEP).
• 10+ years of IT experience.
• 10+ years of DOD Cybersecurity experience.
• 10+ years of Risk Management Framework (RMF) and NIST A&A experience.
• Demonstrated expertise in leading and mentoring teams, providing clear guidance, quality oversight, and technical direction to ensure all cybersecurity artifacts meet DoD standards, organizational expectations, and inspection-ready quality levels.
• Proven real world hands-on experience preparing enterprise environments for DoD cybersecurity inspections (CCRI, CORA, Blue Team assessments).
• SME level experience in assessing security controls and conducting authorization reviews for large, complex organizations.
• SME level understanding of DoD cybersecurity requirements, including documenting and developing artifacts for STIGs, TCG configuration guides, IAVMs, and Task Orders.
• Oversees end to end POA&M lifecycle management, ensuring accurate documentation, status tracking, and closure of all remediation actions.
• Exceptional ability to develop, maintain, and validate RMF artifacts and cybersecurity documentation.
• Expert ability to interpret new and evolving DoD cybersecurity documentation, templates, and compliance requirements to develop high-quality cyber security artifacts even when guidance is incomplete, ambiguous, or inconsistently applied.
• Skilled in analyzing and interpreting cybersecurity guidance from the ISSM/ISSO to produce authoritative system documents such as the SSP, CONOPS, Incident Response Plan, and Contingency.
• Plan, Configuration Management Plan, and other required artifacts.
• Proven ability to work independently and collaboratively with minimal oversight.
• Strong research, analytical, and problem-solving skills.
• Proficiency with analytical tools such as Microsoft Excel, Access, Power BI, and Power Platforms.
• Ability to generate clear, accurate, and audit-ready cybersecurity reports, including vulnerability summaries, compliance status updates, and risk findings for technical and leadership audiences.
• Ability to generate detailed analytics and trend reports using data from vulnerability scanners, configuration tools, and security platforms to support decision-making and inspection readiness.
• Excellent written and verbal communication skills, including the ability to brief leadership and produce clear documentation.

Benefits

• Medical, Dental, Vision Benefits
• Paid Life
• Paid Vacation, Holidays, Sick Leave, Floating Holidays, Bereavement Leave
• Semi-monthly pay cycle

Work With Us

Cardinal Technology Systems, Corp (“CTech-Sys”), www.ctech-sys.com, is an SBA Certified 8(a) and HUBZone company located in the National Capital Region (NCR) and serves both government and commercial clients such clients as US CBP, US CIS, DLA, DFuse Technologies, and American Environmental Engineering Consultants.

Cardinal Technology Systems, Corp is an Equal Employment Opportunity employer and it's our policy to consider applicants for employment without regard to sex, race, color, creed, religion, national origin, sexual orientation, marital status, age, disability, veteran status, alienage, ancestry, or any other factors prohibited by law. Employment selections are based on company and client requirements and the qualifications and skills of the candidate. CTech-Sys is committed to actively capitalizing on the diversity of skills, talents and perspectives of our employees.