CrawlJobs Logo

Cybersecurity SME Lead

aac.com Logo

AAC

Location Icon

Location:
United States , Fort Belvoir

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

Not provided
Save Job
Save Icon
Apply Position

Job Description:

The Cybersecurity SME-Lead serves as the technical lead for all cybersecurity activities in support of the Defense Logistics Agency (DLA) Vulnerability Management program. The SME provides expert-level support in research, analysis, assessment, documentation, and incident response, ensuring all operations comply with DoD requirements, federal regulations, and agency policies. This role directs solutions for highly complex problems, develops new cyber methodologies, and mentors the engineering team.

Job Responsibility:

  • Lead cybersecurity assessment, authorization, and vulnerability management for large, enterprise DLA networks and systems (NIPRNET, SIPRNET, Operational Technology)
  • Advise and design solutions that adhere to Risk Management Framework (RMF), NIST, and DoD requirements
  • Prepare and review advanced technical documentation, assessments, audits, POA&Ms, and lessons learned
  • Develop scripts, automation tools, and reports for vulnerability management at scale
  • Support DLA cybersecurity inspections and maintain inspection readiness
  • Mentor engineers/analysts and enforce best practices
  • Serve as primary interface with DLA leadership, project managers, and assessment teams
  • Report on compliance, risk, and vulnerability trends
  • Represent contractor in meetings and facilitate knowledge transfer

Requirements:

  • Bachelor's degree in IT, cybersecurity, or related field (or 4 additional years’ experience)
  • Ten (10) years IT experience, including ten (10) years DoD cybersecurity and RMF/NIST A&A experience
  • Leadership experience in federal/DoD cyber teams
  • Hands-on expertise with vulnerability remediation, patch automation (PowerShell, Python)
  • Mastery of DISA STIGs, TCG guides, IAVMs, and all DoD cyber documentation
  • Strong experience with security architecture, segmentation, and zero trust
  • Certifications required: ICS300/OT/ICS cyber
  • Training module or course for: ACAS/Forescout
  • Active DoD Secret Clearance and eligible for IT-II Non-Critical Sensitive (Tier 3)
  • Skilled in Microsoft Excel, Power BI, Power Platform
  • Excellent communication and executive briefing skills

Additional Information:

Job Posted:
May 03, 2026

Employment Type:
Fulltime
Work Type:
Hybrid work
Icon
AAC - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Cybersecurity SME Lead

Cyber Manager's Control Assessment (MCA) Lead Analyst

This role will report to the Cybersecurity MCA Group Manager, responsible for pr...
Location
Location
Hungary , Budapest
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Have at least 8+ years of relevant experience
  • Experience in Manager’s Control Assessment (MCA), Operational Risk, Information Security, Cybersecurity, Risk Management, and/or Governance, Risk and Control (GRC)
  • Risk Management, Cybersecurity, and/or Project Management certifications are a plus (e.g. CRISC, CISA, CISM, CISSP, PMP)
  • Proven experience in implementing sustainable solutions and improving processes
  • Bring creative approaches to help us drive value for clients
  • Ability to influence decisions with senior leadership and business partners when confronted with differing opinions on information security risks
  • Proficiency with Microsoft Office, advanced Excel skills (e.g. macros, pivots, complex formulas)
  • Knowledge of data visualization/analytics business applications such as Tableau, QlikView, and Microsoft Power BI
  • Familiarity with Machine Learning and Artificial Intelligence (AI) is a plus
  • Fluent in English (ability to read, write, and speak)
Job Responsibility
Job Responsibility
  • Manage the planning, coordination, and execution of MCA Transformation program for CISO
  • Drive MCA best practices, transformation, and execution consistency across business/functions
  • Lead efforts in Global Process MCA Profiles (GPMPs) and Continuous Risk Management (CRM) for CISO
  • Gain expert-level knowledge of MCA Standard, Procedure, and tools to support future-state MCA
  • Support CISO Business Processes, Control Owners, and Global Assessment Unit (GAU) Owners in their responsibilities related to MCA execution
  • Identify and document key controls necessary for mitigation of cybersecurity risk
  • Be a hands-on Subject Matter Expert (SME) with the ability to drive problem solving and root cause analyses, simplify complex messages and summarize key points
  • Partner with CISO’s Enterprise Architecture Methodology (EAM) Lead team by which taxonomies and processes interlink with each other, establishing a multifaceted matrix to inform decision-making and simplification
  • Foster constructive dialogue and facilitate open discussion, sharing of knowledge and experience with customers and stakeholders
  • Actively manage relationships with CISO business partners and risk management teams to achieve sustained success
What we offer
What we offer
  • Cafeteria Program
  • Home Office Allowance (for colleagues working in hybrid work models)
  • Paid Parental Leave Program (maternity and paternity leave)
  • Private Medical Care Program and onsite medical rooms at our offices
  • Pension Plan Contribution to voluntary pension fund
  • Group Life Insurance
  • Employee Assistance Program
  • Access to a wide variety of learning and development programs, online course libraries and upskilling platforms, such as Udemy and Degreed
  • Flexible work arrangements to support you in managing work - life balance
  • Career progression opportunities across geographies and business lines
  • Fulltime
Read More
Arrow Right

Information Security Risk Lead

The Information Security Risk Lead is responsible for driving efforts to support...
Location
Location
Thailand , Bangkok
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master’s/Bachelor’s/University degree or equivalent experience in Computer Science, Cyber Security, Computer/Information Engineering, Information Technology or a related discipline is preferred
  • One or more industry-recognized cybersecurity-related certifications such as CISSP, CISA, CISM, CRISC, ISO 27001
  • 6 - 10 years or above of relevant experience in Cyber Security Management / Cyber Security Operations / Technology Risk Management / Third-party Risk Management or IT Audit, preferably with experience gained from banking / finance services industry / consultancy / control compliance or legal disciplines
  • Experience in assessing cyber regulatory compliance from BOT, SEC etc.
  • Strong understanding of International Standards/Frameworks such as: NIST, ISO 27001series, COBIT, CIS, GDPR, DORA, etc.
  • Proficient in interpreting and applying policies, standards and procedures
  • Excellent project management and organizational skills (PMP, PRINCE2, etc. is a plus)
  • Strong consultation, reporting writing and communication skills with highly proficiency in both spoken and written English and Thai
  • Thai language fluency is a must.
Job Responsibility
Job Responsibility
  • Manage and validate deliverables of all Information Security (IS) programs, ensuring closure per agreed timelines and goals
  • Engagement with local regulators BOT, SEC, TB-CERT, Thai-CERT, MDES, NCSA, etc. on IS related matters
  • Manage regulatory exams and internal & external audits
  • Work closely with Global & Regional Information Security teams to improve processes and reduce risk, and support the IS regulatory related activities for Thailand
  • Manage internal/external resources to organize cyber-attack simulations exercise, coordinating and overseeing vulnerability, mitigation/remediation/correction action plans, and issues management process
  • Accountable for delivery of the associated remediation from regulatory assessments
  • Proficiency in preparing periodic updates / reports / presentation deck for both internal stakeholders and regulators
  • Provide timely and appropriate updates to regional and global stakeholders
  • escalate issues in a timely manner to senior management
  • Build and develop partnerships with business, IT, risk, compliance, IS, senior management staff and stakeholders
  • Fulltime
Read More
Arrow Right

Cyber Controls Lead Analyst / Business Risk Officer

The Business Risk Officer is a strategic professional who stays abreast of devel...
Location
Location
Singapore , Singapore
Salary
Salary:
Not provided
https://www.citi.com/ Logo
Citi
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 6-10 years relevant work experience in Business Risk & Controls
  • MS Excel, MS Access, SAS, SQL, Visual Basic a plus
  • 5+ years’ experience in financial services
  • Consistently demonstrates clear and concise written and verbal communication skills
  • Effective organizational influencing skills required
  • Third party vendor management preferred
  • Demonstrated ability to lead global team efforts
  • Excellent problem solving skills
  • Ability to see the big pictures with high attention to critical details
  • Demonstrated ability to develop and implement strategy and process improvement initiatives.
Job Responsibility
Job Responsibility
  • Responsible for managing and supporting multiple risk and control programs for the organization including defining the strategy, approach, processes, quality, tools and reporting that provide global risk management consistency and excellence
  • Establishes quarterly audit process of attributes to ensure proper calculation and control
  • Works closely with business partners on findings and makes recommendations on improving practices
  • Develops procedural implementation and change management process with Operations and Reporting team to ensure proper governance and controls exist
  • Examines procedures for consistency and gaps relative to regulations in addition to impacts on customer experience
  • Conducts internal testing of dispute processes to ensure control
  • Monitors exceptions to dispute policy and identifies drivers of exceptions
  • Leverages data to examine impacts to Customer Experience and Regulatory breaks
  • Has the ability to operate with a limited level of direct supervision
  • Can exercise independence of judgement and autonomy
  • Fulltime
Read More
Arrow Right

Senior Education/Trainer Subject Matter Expert

The Senior Education/Trainer Subject Matter Expert (SME) is a highly experienced...
Location
Location
United States , McLean
Salary
Salary:
Not provided
bln24.com Logo
BLN24
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Technology, Education/Instructional Design, or a related field
  • Minimum 8 years of experience in cybersecurity, information security, or a related discipline, including experience supporting education and training initiatives
  • In-depth expertise in cybersecurity principles, practices, and current threat landscape, with the ability to translate technical concepts into clear, actionable learning content
  • Proven experience developing and delivering instructor-led training and mentoring others in a training or education environment
  • Strong ability to validate and quality-check training materials for accuracy, clarity, and effectiveness
  • Excellent written and verbal communication skills, including experience briefing technical and non-technical audiences
Job Responsibility
Job Responsibility
  • Lead the design, development, and delivery of cybersecurity training programs that support workforce readiness, awareness, and operational effectiveness
  • Serve as the authoritative cybersecurity SME for training content, ensuring all materials are accurate, current, and aligned to best practices and stakeholder expectations
  • Validate course content, learning objectives, and instructional approaches to ensure training is effective, engaging, and outcome-driven
  • Deliver instructor-led training, workshops, and briefings to diverse audiences, tailoring delivery methods to stakeholder needs and learner skill levels
  • Mentor and coach other trainers and instructional staff by providing guidance, technical insight, and quality assurance support
  • Support continuous improvement by evaluating training effectiveness, collecting feedback, and updating curriculum to address emerging threats and evolving requirements
  • Collaborate with program leadership and stakeholders to identify training needs, prioritize initiatives, and ensure alignment with mission objectives
  • Contribute to training documentation, knowledge management, and program reporting to support traceability, transparency, and delivery quality
What we offer
What we offer
  • Generous medical, dental, and vision plans
  • Opportunity to work in different sectors
  • Flexibility and remote working opportunities
  • Fulltime
Read More
Arrow Right
New

Senior Specialist, Product Management, Cybersecurity

Location
Location
Salary
Salary:
Not provided
mastercard.com Logo
Mastercard
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Experience in product commercialization, client and/or account management, or a related role within the cybersecurity and risk domain
  • Demonstrated experience in product management in the Cybersecurity and Risk domains
  • Strong ability to convince/influence stakeholders, internal and external
  • Good understanding of market dynamics, customer behaviour, and competitive landscape
  • Excellent leadership and project management skills, with the ability to effectively coordinate cross-functional teams without direct management responsibility
  • Excellent communication and interpersonal skills to build and maintain relationships with internal and external stakeholders
  • Demonstrated skills in storyboarding and expressing vision and outcomes to influence sales and cross-upsell opportunities
  • Strong technical skills and comfortable with industry/domain jargon to demonstrate credibility with unique buying personas
  • Results-oriented with a track record of achieving commercial objectives and driving revenue growth in a global organization
  • Ability to adapt to a fast-paced, dynamic environment and manage multiple priorities effectively
Job Responsibility
Job Responsibility
  • Function as a specialist cybersecurity commercialisation SME
  • Be responsible for cybersecurity products and services in Europe
  • Work closely with regional sales and account management teams to support growth of the business including support and execution of the Channel Sales & Partnership GTM strategy
  • Enable execution of land-and-expand strategy by working closely with Advisors & Consultant Services leadership and cybersecurity SMEs to define capacity and capability requirements
  • Collaborate closely with the global cyber product team to define market needs for product and enhancements
  • Serve as thought leader for cybersecurity in the European market
  • represent Mastercard SSO Cyber at events, conferences, etc.
  • Support local teams identifying market opportunities, target client segments, and opportunities to drive successful product launches and market penetration
  • For new products, coordinate the launch activities ensuring successful market entry and adherence to launch timelines
  • Work in partnership with local stakeholders, and functional teams ensuring market insights and analysis are understood and support the activities agreed for commercialization and outcomes that need to be achieved
  • Fulltime
Read More
Arrow Right

Cybersecurity Penetration Tester (Traditional) - SME

CYBERSECURITY PENETRATION TESTER (TRADITIONAL) - SME LOCATION: Eglin AFB, FL J...
Location
Location
United States , Eglin AFB
Salary
Salary:
Not provided
astrion.us Logo
Astrion
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Demonstrated subject matter expertise in penetration testing of DoD systems
  • depth of knowledge and operational experience rather than a specific degree or years-of-service threshold is the primary qualifying criterion
  • Active Secret clearance required
  • must be able to obtain and maintain a Top Secret clearance. U.S. Citizenship required
  • Must meet DOD 8140 Cyber Workforce Foundational Qualification requirements prior to the commencement of work
  • Expert-level proficiency with modern penetration testing tools, frameworks, and methodologies as applied to DoD operational environments
  • Advanced experience testing and exploiting web applications, including complex authentication mechanisms, API attack surfaces, and application logic flaws
  • Exceptional analytical and creative problem-solving skills, including the ability to develop novel attack paths against hardened or previously untested systems
  • Outstanding organizational, decision-making, and written and verbal communication skills - including the ability to present complex technical findings to senior DoD leadership and program offices
  • Demonstrated ability to independently lead, scope, plan, execute, and report on large-scale or high-visibility penetration test events
Job Responsibility
Job Responsibility
  • Serve as the program's primary technical authority on penetration testing, providing definitive guidance on methodology, tooling, scope, and risk assessment decisions
  • Conduct highly complex and independent penetration tests against DoD systems, networks, applications, and platforms - including novel or first-of-kind targets
  • Lead the development of advanced test tools, custom exploits, and strategic testing frameworks tailored to DoD cybersecurity evaluation requirements
  • Perform in-depth system security analysis to identify and characterize vulnerabilities across operating systems (Windows, Linux, Unix), software, and databases (Apache, SQL Server, Oracle, etc.)
  • Mentor and technically develop senior and mid-level penetration testers, elevating overall team capability and ensuring consistency of tradecraft
  • Establish and maintain quality standards for test documentation, findings reporting, and evidence collection across the team
  • Translate complex technical findings into clear, actionable reports and briefings for both technical audiences and senior non-technical DoD stakeholders (written and oral)
  • Provide authoritative technical leadership in the management, planning, and execution of Cooperative Vulnerability Identification (CVI), Adversarial Cyber Defense (ACD), and Cooperative Vulnerability and Penetration Assessment (CVPA) events
  • Collaborate directly with DoD Program Offices to define test scope, negotiate rules of engagement, assess mission risk, and present findings at program-level reviews
  • Identify and advocate for adoption of emerging tools, techniques, and threat-informed testing approaches relevant to DoD operational environments
What we offer
What we offer
  • Competitive salaries
  • Continuing education assistance
  • Professional development
  • Multiple healthcare benefits package options
  • 401K with employer matching
  • Competitive time off policy along with a federally recognized holiday schedule
  • Fulltime
Read More
Arrow Right

Security Consultant

BluBiz Solutions is currently seeking an experienced Security Consultant to prov...
Location
Location
Australia , Melbourne
Salary
Salary:
Not provided
blubiz.com.au Logo
BluBiz Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Minimum 5 years of relevant IT, Assurance, Risk Management, or Cybersecurity support experience
  • Experience in Implementation of information security industry standards (ISO27001, PCIDSS) and other best practice frameworks for Enterprise clients
  • Proven experience in conducting security assessments such as VAPT evaluation, and documentation of client environment, infrastructure, processes, and operations
  • Ability to influence technical and management leaders to achieve the best Cyber Security outcomes
  • Extensive knowledge of security frameworks such as TOGAF, ISO-27001, NIST, HIPPA and PCI
  • Demonstrate the ability to translate business needs into architecture requirements
  • Strong business and risk analysis skills to drive security outcomes
  • Experience in architecting enterprise network and security solutions
  • Experience in working with one or multiple vendor solutions such as Cisco, Fortinet, Palo Alto
  • Strong client-facing skills with the ability to build relationships
Job Responsibility
Job Responsibility
  • Provide consultancy to clients on information security and architectural decisions
  • Be a trusted advisor and lead for delivery of cybersecurity and risk consulting client engagements that will include governance, risk and compliance reviews
  • Assist in driving growth of Cybersecurity and Risk practice through building solutions, and leading proposal development
  • Develop and deliver security strategy, architecture, and design for BluBiz clients
  • Deliver technical presentations tailored for technical and non-technical audiences from IT manager, executive and C-Level
  • Develop high-level and detailed security requirements relating to new opportunities
  • Prepare overall solution design, architecture, and implementation plan
  • Provide technical leadership to enterprise customers through a range of presales support functions including, supporting product evaluations, pre-sales technical consultation, post-sales support advocacy, and proactive needs analysis
  • Assist with networking and security solutions, product plans and roadmaps
Read More
Arrow Right

ICAM Identity Engineer

We are seeking an ICAM Identity Engineer to provide hands-on implementation and ...
Location
Location
United States , Tampa
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active DoD Top Secret clearance with SCI eligibility
  • DoD 8140 compliant (IAT Level II or higher)
  • Hands-on experience with at least one core identity platform: Microsoft Entra ID, Enterprise PAM (e.g., Delinea), Enterprise IGA (e.g., SailPoint)
  • Strong understanding of identity security principles (least privilege, MFA, RBAC/ABAC, JIT/JEA)
  • Experience administering Active Directory and enterprise identity policies
  • Ability to implement and troubleshoot complex access control and security configurations
  • Labor Category Alignment: Journeyman: 3–10 years of experience
  • BA/BS or MA/MS
  • Senior: 10+ years of experience
  • MA/MS
Job Responsibility
Job Responsibility
  • Implement and maintain Microsoft Entra ID Conditional Access policies and CAC/PKI authentication
  • Manage federation and SSO integrations using Ping Federate (SAML, OIDC, MFA)
  • Onboard and manage privileged accounts within an enterprise PAM solution (e.g., Delinea)
  • Configure credential rotation, session monitoring, and Just-In-Time / Just-Enough-Administration workflows
  • Implement SailPoint IGA workflows for Joiner-Mover-Leaver lifecycle automation and access certification
  • Administer Active Directory using delegated administration tools (e.g., Active Roles)
  • Manage Linux identity and authorization policies using Red Hat IdM (HBAC, sudo)
  • Troubleshoot identity, authentication, and access control issues across enterprise environments
Read More
Arrow Right