Senior Information Assurance & Security SME

Barbaricum is a rapidly growing government contractor providing leading-edge support to federal customers, with a particular focus on Defense and National Security mission sets. We leverage more than 17 years of support to stakeholders across the federal government, with established and growing capabilities across Intelligence, Analytics, Engineering, Mission Support, and Communications disciplines. Founded in 2008, our mission is to transform the way our customers approach constantly changing and complex problem sets by bringing to bear the latest in technology and the highest caliber of talent.

Headquartered in Washington, DC's historic Dupont Circle neighborhood, Barbaricum also has a corporate presence in Tampa, FL, Bedford, IN, and Dayton, OH, with team members across the United States and around the world. As a leader in our space, we partner with firms in the private sector, academic institutions, and industry associations with a goal of continually building our expertise and capabilities for the benefit of our employees and the customers we support. Through all of this, we have built a vibrant corporate culture diverse in expertise and perspectives with a focus on collaboration and innovation. Our teams are at the frontier of the Nation's most complex and rewarding challenges. Join our team.

Barbaricum is seeking a Senior Information Assurance & Security Subject Matter Expert (SME) to provide cybersecurity leadership in support of the Military Community and Family Policy (MC&FP) Outreach and Digital Enterprise Services (MODES) contract. This role supports RMF implementation, STIG enforcement, and secure system operations across MODES environments.

Responsibilities:

• Lead vulnerability assessment, cyber risk analysis, and security implementation planning.
• Guide STIG application, SCAP scans, IAVA management, and system hardening.
• Advise on compliance with RMF, NIST 800-53, and FISMA frameworks.
• Conduct security architecture reviews and recommend corrective actions.
• Collaborate with Government stakeholders to ensure IA objectives are met.
• Support audit readiness, incident response planning, and policy refinement.

Qualifications:

• Favorable adjudication of a National Agency Check with Inquiries (NACI)
• 10+ years of DoD IA and cybersecurity experience.
• 8+ years implementing RMF, NIST, STIGs, and vulnerability management.
• One or more of: GSLC, CISSP, CISM, CISA, or equivalent DoD 8570 Level III certification.

EEO Commitment

All qualified applicants will receive consideration for employment without regard to sex, race, ethnicity, age, national origin, citizenship, religion, physical or mental disability, medical condition, genetic information, pregnancy, family structure, marital status, ancestry, domestic partner status, sexual orientation, gender identity or expression, veteran or military status, or any other basis prohibited by law.