Senior Cybersecurity SME

About the OrganizationNow is a great time to join Redhorse Corporation. Redhorse specializes in developing and implementing creative strategies and solutions with private, state, and federal customers in the areas of cultural and environmental resources services, climate and energy change, information technology, and intelligence services. We are hiring creative, motivated, and talented people with a passion for doing what's right, what's smart, and what works.
About the RoleRedhorse is seeking a highly experienced Cybersecurity SME Senior to support the GISA program in Wiesbaden, Germany. This critical role ensures the security and compliance of sensitive information systems within the Department of Defense, directly impacting national security. You will lead a team of cybersecurity professionals, providing technical expertise and guidance while working closely with government clients to maintain Authorization to Operate (ATO). This is a challenging but highly rewarding opportunity to make a significant contribution to Redhorse’s mission of transforming how government uses data and technology.

Key Responsibilities

• Perform the duties of an Information System Security Officer (ISSO) as defined in AR 25-2, DA 25-2-14, and NIST SP 800-53 security controls.
• Actively manage the organization’s eMASS records, including validating security controls, assessing security scan results and STIGs, performing POA&M updates, tracking, and resolution, and leading continuous monitoring activities.
• Manage the day-to-day activities and professional development of Cybersecurity Analysts.
• Collaborate with the O-ISSM on all assessment and authorization activities to ensure information systems maintain an ATO on all applicable DoD/IC networks.
• Maintain up-to-date status on all assigned systems and communicate status to Government leads.
• Maintain complete records of communications, submit written status reports as required, perform peer-review as directed, and attend weekly meetings.
• Correspond with the Government customer and system administrators to communicate any unacceptable risks identified and correct deficient POA&M items to meet DoD and IC standards.
• Coordinate with the Security Control Assessor (SCA) to perform analysis of the overall risk level the system poses to enterprise networks and mission data.
• Create and maintain cybersecurity policies and standards.
• Ensure cybersecurity plans, controls, processes, standards, policies, and procedures align with cybersecurity standards.
• Provide guidance in the creation and maintenance of Standard Operating Procedures (SOPs), Tactics, Techniques, and Procedures (TTPs), and other similar documentation.

Required Experience/Clearance

• PhD in STEM with at least 8 years’ experience as a cybersecurity professional OR a Master’s degree in STEM with at least 10 years’ experience OR a Bachelor’s degree in STEM with at least 12 years’ experience as a cybersecurity professional.
• Active TS security clearance and eligible for SCI and NATO read-on prior to starting work.
• Meet the DoD requirements for a privileged user on a TS/SCI information system prior to starting work - DoD 8140 / 8570.01-m requirements.
• 15 years’ experience with the assessment and accreditation activities of national security systems (NSSs).
• 10 years’ experience validating system security controls.
• 10 years’ experience with vulnerability management.
• 10 years’ experience with DISA STIGs, DISA SRGs, and vendor-specific security guides.
• 8 years’ experience with RMF and eMASS.
• 5 years’ experience with POA&M tracking and resolution.
• 3 years’ experience performing the continuous monitoring of system security controls.

Desired Experience

• Experience with specific DoD/IC networks and systems.
• Experience leading larger teams (10+ members).
• Familiarity with Agile methodologies in a cybersecurity context.
• Experience with cloud security architectures (AWS, Azure, GCP).
• Experience with DevSecOps principles and practices.

Equal Opportunity Employer/Veterans/Disabled  Accommodations:If you are a qualified individual with a disability or a disabled veteran, you may request a reasonable accommodation if you are unable or limited in your ability to access job openings or apply for a job on this site as a result of your disability. You can request reasonable accommodations by contacting Talent Acquisition at Talent-Acquisition@redhorsecorp.com Redhorse Corporation shall, in its discretion, modify or adjust the position to meet Redhorse’s changing needs.This job description is not a contract and may be adjusted as deemed appropriate in Redhorse’s sole discretion.