Assessments/Mitigations Control Systems Cybersecurity Consultant_Mid Job at Coll

Must be a US Citizen who currently possesses a Top Secret/SCI Clearance. Must be local to the DC Metro Area as this is a hybrid position with some travel required. Position Description The Assessments & Mitigations Control Systems Cybersecurity Consultant will apply 3–5 years of hands-on experience to manage and oversee a broad range of DoD and Air Force cybersecurity assessments—spanning Mission Assurance, Energy Resilience Readiness Exercises (ERRE), Cyber Resilience Readiness Exercises (CRRE), and Defense Critical Infrastructure (DCI) evaluations. This mid-tier consultant will design and orchestrate assessment engagements, develop targeted mitigation and recovery strategies, and also ensure OT cyber equities are included in future wargames, exercises, and assessments. The role requires strong analytical skills, thorough risk-evaluation expertise, and effective stakeholder collaboration to continuously strengthen mission-critical cyber resilience. Required Skills 3–5 years’ experience Cybersecurity Assessment & Risk Evaluation – Leading RMF-style assessments, tabletop exercises, and infrastructure evaluations Mission Assurance Testing – Execution oversight of assessments that map cyber vulnerabilities to mission-critical functions ERRE/CRRE Process Management – Planning, conducting, and reporting on Energy/Cyber Resilience Readiness Exercises DCI Assessment Expertise – Evaluating and prioritizing risks to Defense Critical Infrastructure systems Mitigation Strategy Development – Designing and coordinating response and recovery plans based on assessment findings Analytical Reporting – Producing detailed technical reports and executive summaries on risk posture and mitigation effectiveness Stakeholder Facilitation – Leading cross-functional workshops, documenting action items, and driving closure of findings DoD Wargaming / Exercise Experience – Building and integrating OT cyber injects into wargames to demonstrate cyber effects on operations and test incident detection / incident response activities Preferred Skills 2–3 years’ experience Automated Assessment Tools – Using scripting (Python, PowerShell) or platforms (Nessus, SCAP) to streamline vulnerability scanning Data Fusion & Visualization – Building dashboards (Splunk, ELK, PowerBI) to correlate assessment data and track metrics Supply Chain Risk Management – Incorporating third-party and component risks into overall assessment scope eMASS / GRC Systems – Populating controls, evidence, and POA&Ms in eMASS or equivalent governance tools Digital-Twin Modeling – Applying “digital twin” frameworks to simulate control-system resilience scenarios Incident Response Coordination – Supporting playbook creation and after-action reviews for assessed vulnerabilities Cloud/Edge OT Security – Assessing resilience of OT assets integrated with AWS, Azure, or edge-computing platforms Professional Certification Pursuit – Progress toward CISSP, CISM, GICSP, or similar credentials Provide primary job duties: Lead Cybersecurity Assessments (25%) Plan and perform oversight of execution of Mission Assurance, ERRE, CRRE, and DCI assessments—defining scope, objectives, and success criteria. Develop & Coordinate Mitigations (25%) Based on assessment outcomes, design remediation plans, assign responsibilities, and track implementation through completion. Wargame and Exercise Development & support (15%) Design and integrate critical infrastructure cyber effect scenarios into DoD wargames, exercises, and ongoing mission assurance assessments. Analysis, Reporting & Briefings (20%) Produce comprehensive reports, risk dashboards, and deliver briefings to senior stakeholders on findings and recovery status. Facilitate Stakeholder Workshops (15%) Organize and lead collaborative sessions to review assessment results, refine mitigation strategies, and promote continuous improvement. #J-18808-Ljbffr