Koniag Government Services
Cybersecurity Automation Subject Matter Expert (SME) (TS/SCI)
Koniag Government Services, Alexandria, Virginia, us, 22350
Overview
Koniag IT Systems, a Koniag Government Services company, is seeking a Cybersecurity Automation Subject Matter Expert (SME) with a TS/SCI to support KITS and our government customer at the Mark Center, Alexandria, VA. This is a hybrid opportunity that requires 1-4 days of onsite work. We offer competitive compensation and an extraordinary benefits package including health, dental, and vision insurance, 401K with company matching, flexible spending accounts, paid holidays, three weeks paid time off, and more. Responsibilities
Provide subject matter expertise in the development and deployment of automated RMF security control assessment, informing authorization, and continuous monitoring processes. Develop, integrate, and maintain automated workflows for evidence collection, control validation, and reporting. Leverage scripting, orchestration, and DevSecOps pipelines to embed compliance and security checks. Collaborate with cybersecurity engineers, assessors, system owners, and other stakeholders to align automation solutions with mission needs. Integrate automated testing tools (e.g., vulnerability scanners, configuration management tools) into RMF packages. Provide subject matter expertise on leveraging OSCAL (Open Security Controls Assessment Language) and other machine-readable compliance frameworks. Deliver training, documentation, and guidance to program teams on automated RMF practices. Stay current and provide feedback and recommendations on DoD cybersecurity policies, NIST updates, and emerging compliance automation technologies. Qualifications
Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or related field. 7+ years of experience in DoD cybersecurity compliance, assessment, or risk management. Hands-on expertise with RMF processes, NIST SP 800-53 Rev. 5 controls, and DoD RMF (DoDI 8510.01). Experience developing automation solutions using Python, PowerShell, Ansible, or similar scripting/orchestration tools. Familiarity with continuous monitoring and automated compliance reporting. DoD 8570.01-M certification (e.g., CISSP, CAP, Security+ CE). TS/SCI security clearance required. Ability to work on-site 1-4 days a week. Preferred
Experience with Governance, Risk, and Compliance (GRC) tools (e.g., eMASS, Archer, Xacta) and their automation/integration. Knowledge of OSCAL and machine-readable RMF artifacts. Experience with DevSecOps pipelines, CI/CD, and Infrastructure as Code (IaC). Background in vulnerability management, STIG compliance, or automated security testing. Equal Employment Opportunity
The company is an equal opportunity employer. The company shall not discriminate against any employee or applicant because of race, color, religion, creed, ethnicity, sex, sexual orientation, gender or gender identity (except where gender is a bona fide occupational qualification), national origin or ancestry, age, disability, citizenship, military/veteran status, marital status, genetic information or any other characteristic protected by applicable federal, state, or local law. We are committed to equal employment opportunity in all decisions related to employment, promotion, wages, benefits, and all other privileges, terms, and conditions of employment. If you require an accommodation to navigate or apply for a position on our website, please get in touch with Heaven Wood via e-mail at accommodations@koniag-gs.com or by calling 703-488-9377 to request accommodations. The company is dedicated to seeking all qualified applicants.
Equal Opportunity Employer/Veterans/Disabled. Shareholder Preference in accordance with Public Law 88-352 Company details
Seniority level: Mid-Senior level Employment type: Full-time Job function: Information Technology Industries: IT Services and IT Consulting
#J-18808-Ljbffr
Koniag IT Systems, a Koniag Government Services company, is seeking a Cybersecurity Automation Subject Matter Expert (SME) with a TS/SCI to support KITS and our government customer at the Mark Center, Alexandria, VA. This is a hybrid opportunity that requires 1-4 days of onsite work. We offer competitive compensation and an extraordinary benefits package including health, dental, and vision insurance, 401K with company matching, flexible spending accounts, paid holidays, three weeks paid time off, and more. Responsibilities
Provide subject matter expertise in the development and deployment of automated RMF security control assessment, informing authorization, and continuous monitoring processes. Develop, integrate, and maintain automated workflows for evidence collection, control validation, and reporting. Leverage scripting, orchestration, and DevSecOps pipelines to embed compliance and security checks. Collaborate with cybersecurity engineers, assessors, system owners, and other stakeholders to align automation solutions with mission needs. Integrate automated testing tools (e.g., vulnerability scanners, configuration management tools) into RMF packages. Provide subject matter expertise on leveraging OSCAL (Open Security Controls Assessment Language) and other machine-readable compliance frameworks. Deliver training, documentation, and guidance to program teams on automated RMF practices. Stay current and provide feedback and recommendations on DoD cybersecurity policies, NIST updates, and emerging compliance automation technologies. Qualifications
Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or related field. 7+ years of experience in DoD cybersecurity compliance, assessment, or risk management. Hands-on expertise with RMF processes, NIST SP 800-53 Rev. 5 controls, and DoD RMF (DoDI 8510.01). Experience developing automation solutions using Python, PowerShell, Ansible, or similar scripting/orchestration tools. Familiarity with continuous monitoring and automated compliance reporting. DoD 8570.01-M certification (e.g., CISSP, CAP, Security+ CE). TS/SCI security clearance required. Ability to work on-site 1-4 days a week. Preferred
Experience with Governance, Risk, and Compliance (GRC) tools (e.g., eMASS, Archer, Xacta) and their automation/integration. Knowledge of OSCAL and machine-readable RMF artifacts. Experience with DevSecOps pipelines, CI/CD, and Infrastructure as Code (IaC). Background in vulnerability management, STIG compliance, or automated security testing. Equal Employment Opportunity
The company is an equal opportunity employer. The company shall not discriminate against any employee or applicant because of race, color, religion, creed, ethnicity, sex, sexual orientation, gender or gender identity (except where gender is a bona fide occupational qualification), national origin or ancestry, age, disability, citizenship, military/veteran status, marital status, genetic information or any other characteristic protected by applicable federal, state, or local law. We are committed to equal employment opportunity in all decisions related to employment, promotion, wages, benefits, and all other privileges, terms, and conditions of employment. If you require an accommodation to navigate or apply for a position on our website, please get in touch with Heaven Wood via e-mail at accommodations@koniag-gs.com or by calling 703-488-9377 to request accommodations. The company is dedicated to seeking all qualified applicants.
Equal Opportunity Employer/Veterans/Disabled. Shareholder Preference in accordance with Public Law 88-352 Company details
Seniority level: Mid-Senior level Employment type: Full-time Job function: Information Technology Industries: IT Services and IT Consulting
#J-18808-Ljbffr