TMMG, LLC
(C) Subject Matter Expert – Program Protection/Cybersecurity
TMMG, LLC, Washington, District of Columbia, us, 20022
(C) Subject Matter Expert – Program Protection/Cybersecurity
Join to apply for the (C) Subject Matter Expert – Program Protection/Cybersecurity role at TMMG, LLC.
Background check, US citizenship, and a CAC are requirements for this position. Contingent on client/contract approval. 10% travel.
The Program Protection/Cybersecurity Subject Matter Expert will provide support to the Director of Systems Integration and Chief Acquisition Officer for investment decisions and major systems acquisition program management processes and procedures. CG‑SID‑9 provides support and oversight to the Program Management Offices of major and non‑major systems acquisitions and is the primary point of contact with the Department of Homeland Security (DHS) for the acquisition review process. Due to the size, scope and complexity of USCG acquisition programs, CG‑SID‑9 requires specialized program management support.
Key Responsibilities and Requirements
Cybersecurity & Program Protection Expertise
Advise on cybersecurity strategies, policies, and best practices to safeguard systems and data.
Ensure compliance with federal cybersecurity standards (e.g., NIST SP 800 series, RMF, FISMA).
Risk Management & Threat Assessment: conduct risk assessments and vulnerability analyses for systems and programs, identify potential threats and develop mitigation strategies to protect critical assets.
Security Architecture & Design: support development and review of secure system architectures and designs, and ensure integration of cybersecurity requirements throughout the system lifecycle.
Compliance & Accreditation: assist with security authorization and accreditation processes under RMF, and prepare documentation for compliance audits and certification activities.
Program Protection Planning: develop and maintain Program Protection Plans (PPP) and related security documentation, ensuring protection of critical technologies, intellectual property, and sensitive information.
Stakeholder Engagement: provide expert input during technical reviews, briefings, and working groups; communicate cybersecurity requirements and risks to stakeholders effectively.
Incident Response & Continuous Monitoring: support incident response planning and execution, and recommend tools and processes for continuous monitoring and threat detection.
Education Bachelor’s degree in Cybersecurity, Information Assurance, Computer Science, or related field; Master’s degree preferred.
Experience
Minimum 8–10 years of experience in cybersecurity and program protection for complex systems.
Experience with federal acquisition programs and DoD/DHS security requirements.
Minimum 5 years of experience on ACAT 1 acquisition programs as defined by the Major Systems Acquisition Manual (MSAM).
Skills
Expertise in NIST RMF, FISMA, and related cybersecurity frameworks.
Strong knowledge of encryption, secure communications, and vulnerability management.
Excellent analytical, problem‑solving, and communication skills.
Certifications: CISSP, CISM, or equivalent required; PMP or INCOSE CSEP a plus.
Clearance: None required.
Additional Requirements
Ability to work collaboratively with multidisciplinary teams.
Strong documentation and presentation capabilities.
Seniority level Mid‑Senior level
Employment type Full‑time
Job function Other
Industries Maritime Transportation
#J-18808-Ljbffr
Background check, US citizenship, and a CAC are requirements for this position. Contingent on client/contract approval. 10% travel.
The Program Protection/Cybersecurity Subject Matter Expert will provide support to the Director of Systems Integration and Chief Acquisition Officer for investment decisions and major systems acquisition program management processes and procedures. CG‑SID‑9 provides support and oversight to the Program Management Offices of major and non‑major systems acquisitions and is the primary point of contact with the Department of Homeland Security (DHS) for the acquisition review process. Due to the size, scope and complexity of USCG acquisition programs, CG‑SID‑9 requires specialized program management support.
Key Responsibilities and Requirements
Cybersecurity & Program Protection Expertise
Advise on cybersecurity strategies, policies, and best practices to safeguard systems and data.
Ensure compliance with federal cybersecurity standards (e.g., NIST SP 800 series, RMF, FISMA).
Risk Management & Threat Assessment: conduct risk assessments and vulnerability analyses for systems and programs, identify potential threats and develop mitigation strategies to protect critical assets.
Security Architecture & Design: support development and review of secure system architectures and designs, and ensure integration of cybersecurity requirements throughout the system lifecycle.
Compliance & Accreditation: assist with security authorization and accreditation processes under RMF, and prepare documentation for compliance audits and certification activities.
Program Protection Planning: develop and maintain Program Protection Plans (PPP) and related security documentation, ensuring protection of critical technologies, intellectual property, and sensitive information.
Stakeholder Engagement: provide expert input during technical reviews, briefings, and working groups; communicate cybersecurity requirements and risks to stakeholders effectively.
Incident Response & Continuous Monitoring: support incident response planning and execution, and recommend tools and processes for continuous monitoring and threat detection.
Education Bachelor’s degree in Cybersecurity, Information Assurance, Computer Science, or related field; Master’s degree preferred.
Experience
Minimum 8–10 years of experience in cybersecurity and program protection for complex systems.
Experience with federal acquisition programs and DoD/DHS security requirements.
Minimum 5 years of experience on ACAT 1 acquisition programs as defined by the Major Systems Acquisition Manual (MSAM).
Skills
Expertise in NIST RMF, FISMA, and related cybersecurity frameworks.
Strong knowledge of encryption, secure communications, and vulnerability management.
Excellent analytical, problem‑solving, and communication skills.
Certifications: CISSP, CISM, or equivalent required; PMP or INCOSE CSEP a plus.
Clearance: None required.
Additional Requirements
Ability to work collaboratively with multidisciplinary teams.
Strong documentation and presentation capabilities.
Seniority level Mid‑Senior level
Employment type Full‑time
Job function Other
Industries Maritime Transportation
#J-18808-Ljbffr