Home › Companies › BD1EA60AEEB10C351C9D11F5ACCAE8B8 › Cybersecurity Subject Matter Expert Lead (59834)
Cybersecurity Subject Matter Expert Lead (59834)
BD1EA60AEEB10C351C9D11F5ACCAE8B8 · REMOTE (United States) - Remote, VA 22211; No Address, Remote, VA, 22211, USA · Remote · Active · Paycom ATS
Job facts
| Field | Value |
|---|---|
| Company | BD1EA60AEEB10C351C9D11F5ACCAE8B8 |
| Title | Cybersecurity Subject Matter Expert Lead (59834) |
| Normalized title | - |
| Department / team | Professional Services |
| Location | VA, United States |
| Work model | Remote / Remote |
| Employment type | Full Time |
| Salary | - |
| Status | active |
| ATS provider | Paycom ATS |
| Posted / first seen | 2026-03-05 / 2026-05-31 |
| Changed / last seen | 2026-05-31 / 2026-06-06 |
Related slices
| Page | What it contains | Open |
|---|---|---|
| Company jobs | Active postings from BD1EA60AEEB10C351C9D11F5ACCAE8B8. | Open |
| Company breakdowns | Role, location, ATS, and work model facets for this company. | Open |
| ATS provider jobs | Active postings observed through Paycom ATS. | Open |
| Provider filtered search | The same provider as a filtered job collection. | Open |
| Department jobs | Active postings in Professional Services. | Open |
| Work model jobs | Active Remote postings. | Open |
| Lifecycle events | Open, update, close, and reopen events for this posting. | Open |
| Original posting | Canonical source or apply URL captured from the ATS. | Open |
Linked records
| Company | BD1EA60AEEB10C351C9D11F5ACCAE8B8 |
| Source | 7262a4a5-72a6-432d-ab32-df72cb1cd3a3 |
| ATS provider | Paycom ATS |
Description
Description
BMA is seeking a Cybersecurity Subject Matter Expert – Lead to support the DLA JETS Cybersecurity Policy and Oversight Support Services (CPOSS) program. This is a fully remote position and contingent on contract award.
Job Summary
BMA is seeking a Cybersecurity Subject Matter Expert (CS SME) – Lead to support our DLA Cybersecurity Policy and Oversight Support Services (CPOSS) contract. The CS SME – Lead provides senior-level technical leadership and advisory support to the CPOSS program supporting DLA’s J6/J611 Cybersecurity Directorate. The SME serves as the principal cybersecurity authority for complex technical and governance challenges related to the enterprise Risk Management Framework (RMF) program, cybersecurity policy development, continuous monitoring, and control validation activities across the DLA enterprise. Working under consultative direction, the SME independently evaluates exceptionally complex cybersecurity issues, develops innovative solutions, and provides authoritative technical guidance to government leadership, Security Control Assessors (SCAs), Authorizing Officials (AOs), and enterprise cybersecurity stakeholders. The role also contributes to the development of enterprise cybersecurity methodologies, advanced assessment techniques, and improved cybersecurity governance practices aligned with DoD cybersecurity policy and DLA strategic initiatives.
Key Responsibilities
Enterprise Cybersecurity Technical Leadership : Serves as the senior technical advisor to the DLA cybersecurity assessment and oversight program, providing expert interpretation of cybersecurity policies, standards, and technical requirements. Provides authoritative guidance on complex cybersecurity issues involving enterprise systems, networks, applications, enclaves, and emerging technologies. Analyzes highly complex cybersecurity challenges and recommends innovative solutions that balance mission requirements, operational risks, and regulatory compliance.
RMF and Cybersecurity Assessment Expertise: Provides subject matter expertise on implementation and governance of the DoDI 8510.01 Risk Management Framework for DoD IT across DLA information systems. Advises government stakeholders on security control validation, risk assessments, and authorization readiness determinations. Provides technical review of security control assessments, continuous monitoring activities, and RMF authorization packages submitted through eMASS. Supports development of enterprise-level recommendations regarding residual risk acceptance and cybersecurity posture improvements.
Cybersecurity Tools, Standards, and Architecture Support: Evaluates cybersecurity tools and technologies to support enterprise security assessment, monitoring, and compliance activities. Recommends cybersecurity software solutions and assists in defining functional and technical requirements for tool selection. Supports development of product-specific Security Technical Implementation Guides (STIGs) based on Defense Information Systems Agency Security Requirements Guides (SRGs). Provides technical leadership in evaluating network security architectures, vulnerability assessment methodologies, and cybersecurity implementation strategies.
Enterprise Cybersecurity Policy and Methodology Development: Contributes to the development of new cybersecurity principles, methodologies, and governance practices that improve the DLA enterprise cybersecurity program. Provides expert guidance in the development and refinement of enterprise cybersecurity policies, directives, and standard operating procedures supporting the CPOSS program. Supports the development of advanced cybersecurity concepts and technical approaches that strengthen enterprise security posture and compliance with DoD cybersecurity regulations.
Strategic Analysis and Innovation: Conducts research and analysis of emerging cybersecurity threats, technologies, and best practices relevant to the DLA mission environment. Develops innovative approaches for improving cybersecurity assessment processes, continuous monitoring practices, and enterprise risk management strategies. Identifies opportunities to enhance cybersecurity oversight capabilities through improved tools, automation, analytics, and governance frameworks.
Senior-Level Advisory and Communication Support: Provides expert written and oral briefings to senior government leadership regarding cybersecurity risks, program status, and recommended solutions. Prepares technical reports, white papers, and presentations addressing enterprise cybersecurity challenges.
Clearance Requirements
There is a Secret Security clearance requirement for this position.
Required Skills & Certifications
Current DoD 8670.01/8140 IAM Level III certification that includes one or more of the following: ISACA CISM, ISC2 Certified Information Systems Security Professional (CISSP), GIAC/SANS GIAS Security Leadership Certification (GSLC), or EC-Council Certified Chief Information Security Officer (CCISO).
7+ years of Information Technology experience.
5+ years of Information Assurance / Cybersecurity experience.
Demonstrated expertise in cybersecurity assessment methodologies, risk analysis, and enterprise cybersecurity governance.
Strong analytical and problem-solving skills with the ability to resolve complex cybersecurity challenges.
In-depth knowledge of DoD cybersecurity regulations and guidance, including RMF implementation.
Strong familiarity with Defense Information Systems Agency STIGs and Security Requirements Guides (SRGs).
Demonstrated ability to develop and evaluate cybersecurity technologies, architectures, and security solutions.
Exceptional technical leadership and independent decision-making ability.
Ability to translate complex cybersecurity issues into clear, actionable guidance for senior leadership.
Strong written and oral communication skills capable of supporting executive-level briefings.
Proven ability to innovate and develop new cybersecurity concepts, processes, and technical solutions.
Demonstrated ability to work independently toward long-range cybersecurity program objectives.
Desired Skills & Certifications
Experience supporting DoD or DLA program offices.
Experience supporting DoD DLA environments.
Experience leading enterprise-level cyber modernization initiatives.
Familiarity with DLA-specific cybersecurity governance frameworks.
Current Project Management Professional (PMP) certification.
Current Risk Management Professional certification such as one or more of the following: PMP-RMP, ISACA Certified in Risk and Information Systems Control (CRISC), ISACA Certified Information Systems Auditor (CISA), ISACA Certified Information Security Manager (CISM), ISC2 Certified in Governance, Risk and Compliance (CGRC), or Risk and Insurance Management Society (RIMS) Certified Risk Management Professional (RIMS-CRMP).
Other Duties
Able to travel within a week's notice.
This job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job.
Duties, responsibilities, and activities may change at any time with or without notice.
Overview
BMA is an employee-owned small business headquartered in Huntsville, AL that provides superior customer service by empowering all levels of our staff to make timely decisions to produce high-quality results. BMA fosters an environment of passion, precision, and dedication in order to fulfill our commitments to our partners, government, and country.
Benefits
We believe that our employees well-being is paramount to our success so our benefits package has been crafted with that in mind. We offer multiple healthcare coverage options to include low deductible, high deductible, and plans eligible for our Health Savings Account (HSA) option. Along with medical coverage, employees have dental, vision, accident & illness, short- and long-term disability all available to them. BMA proudly maintains a 401(k) plan with an industry leading 6% match that can include profit sharing based on company performance. Lastly, being an employee-owned company means that BMA offers a 100% Employee Stock Ownership Plan (ESOP), providing eligible employees the opportunity to earn stock in BMA, subject to plan eligibility and vesting requirements.
AAP & EEO Statement
Beshenich Muir & Associates, LLC (BMA) is an Equal opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regards to race, color, religion, religious creed, gender, sexual orientation, gender identity, gender expression, transgender, pregnancy, marital status, national origin, ancestry, citizenship status, age, disability, protected Veteran Status, genetics or any other characteristics protected by applicable Federal, State, or Local Law.
Full job record
| Job ID | e2e309cb542a4089c79b330c97606d84247466dd |
| Org ID | e8a572cb-75af-4a74-801d-c4b032cd9504 |
| Source ID | 7262a4a5-72a6-432d-ab32-df72cb1cd3a3 |
| Board ID | 7262a4a5-72a6-432d-ab32-df72cb1cd3a3 |
| Provider | paycom |
| Provider Job Key | 311252 |
| Title | Cybersecurity Subject Matter Expert Lead (59834) |
| Normalized Title | — |
| Status | active |
| Active | yes |
| Location Text | REMOTE (United States) - Remote, VA 22211; No Address, Remote, VA, 22211, USA |
| Department | Professional Services |
| Team | — |
| Employment Type | full_time |
| Workplace Type | remote |
| Remote Policy | remote |
| Country | United States |
| Region | VA |
| City | — |
| Salary Raw | Description BMA is seeking a Cybersecurity Subject Matter Expert – Lead to support the DLA JETS Cybersecurity Policy and Oversight Support Services (CPOSS) program. This is a fully remote position and contingent on contract award. Job Summary BMA is seeking a Cybersecurity Subject Matter Expert (CS SME) – Lead to support our DLA Cybersecurity Policy and Oversight Support Services (CPOSS) contract. The CS SME – Lead provides senior-level technical leadership and advisory support to the CPOSS program supporting DLA’s J6/J611 Cybersecurity Directorate. The SME serves as the principal cybersecurity authority for complex technical and governance challenges related to the enterprise Risk Management Framework (RMF) program, cybersecurity policy development, continuous monitoring, and control validation activities across the DLA enterprise. Working under consultative direction, the SME independently evaluates exceptionally complex cybersecurity issues, develops innovative solutions, and provides authoritative technical guidance to government leadership, Security Control Assessors (SCAs), Authorizing Officials (AOs), and enterprise cybersecurity stakeholders. The role also contributes to the development of enterprise cybersecurity methodologies, advanced assessment techniques, and improved cybersecurity governance practices aligned with DoD cybersecurity policy and DLA strategic initiatives. Key Responsibilities Enterprise Cybersecurity Technical Leadership : Serves as the senior technical advisor to the DLA cybersecurity assessment and oversight program, providing expert interpretation of cybersecurity policies, standards, and technical requirements. Provides authoritative guidance on complex cybersecurity issues involving enterprise systems, networks, applications, enclaves, and emerging technologies. Analyzes highly complex cybersecurity challenges and recommends innovative solutions that balance mission requirements, operational risks, and regulatory compliance. RMF and Cybersecurity Assessment Expertise: Provides subject matter expertise on implementation and governance of the DoDI 8510.01 Risk Management Framework for DoD IT across DLA information systems. Advises government stakeholders on security control validation, risk assessments, and authorization readiness determinations. Provides technical review of security control assessments, continuous monitoring activities, and RMF authorization packages submitted through eMASS. Supports development of enterprise-level recommendations regarding residual risk acceptance and cybersecurity posture improvements. Cybersecurity Tools, Standards, and Architecture Support: Evaluates cybersecurity tools and technologies to support enterprise security assessment, monitoring, and compliance activities. Recommends cybersecurity software solutions and assists in defining functional and technical requirements for tool selection. Supports development of product-specific Security Technical Implementation Guides (STIGs) based on Defense Information Systems Agency Security Requirements Guides (SRGs). Provides technical leadership in evaluating network security architectures, vulnerability assessment methodologies, and cybersecurity implementation strategies. Enterprise Cybersecurity Policy and Methodology Development: Contributes to the development of new cybersecurity principles, methodologies, and governance practices that improve the DLA enterprise cybersecurity program. Provides expert guidance in the development and refinement of enterprise cybersecurity policies, directives, and standard operating procedures supporting the CPOSS program. Supports the development of advanced cybersecurity concepts and technical approaches that strengthen enterprise security posture and compliance with DoD cybersecurity regulations. Strategic Analysis and Innovation: Conducts research and analysis of emerging cybersecurity threats, technologies, and best practices relevant to the DLA mission environment. Develops innovative approaches for improving cybersecurity assessment processes, continuous monitoring practices, and enterprise risk management strategies. Identifies opportunities to enhance cybersecurity oversight capabilities through improved tools, automation, analytics, and governance frameworks. Senior-Level Advisory and Communication Support: Provides expert written and oral briefings to senior government leadership regarding cybersecurity risks, program status, and recommended solutions. Prepares technical reports, white papers, and presentations addressing enterprise cybersecurity challenges. Clearance Requirements There is a Secret Security clearance requirement for this position. Required Skills & Certifications Current DoD 8670.01/8140 IAM Level III certification that includes one or more of the following: ISACA CISM, ISC2 Certified Information Systems Security Professional (CISSP), GIAC/SANS GIAS Security Leadership Certification (GSLC), or EC-Council Certified Chief Information Security Officer (CCISO). 7+ years of Information Technology experience. 5+ years of Information Assurance / Cybersecurity experience. Demonstrated expertise in cybersecurity assessment methodologies, risk analysis, and enterprise cybersecurity governance. Strong analytical and problem-solving skills with the ability to resolve complex cybersecurity challenges. In-depth knowledge of DoD cybersecurity regulations and guidance, including RMF implementation. Strong familiarity with Defense Information Systems Agency STIGs and Security Requirements Guides (SRGs). Demonstrated ability to develop and evaluate cybersecurity technologies, architectures, and security solutions. Exceptional technical leadership and independent decision-making ability. Ability to translate complex cybersecurity issues into clear, actionable guidance for senior leadership. Strong written and oral communication skills capable of supporting executive-level briefings. Proven ability to innovate and develop new cybersecurity concepts, processes, and technical solutions. Demonstrated ability to work independently toward long-range cybersecurity program objectives. Desired Skills & Certifications Experience supporting DoD or DLA program offices. Experience supporting DoD DLA environments. Experience leading enterprise-level cyber modernization initiatives. Familiarity with DLA-specific cybersecurity governance frameworks. Current Project Management Professional (PMP) certification. Current Risk Management Professional certification such as one or more of the following: PMP-RMP, ISACA Certified in Risk and Information Systems Control (CRISC), ISACA Certified Information Systems Auditor (CISA), ISACA Certified Information Security Manager (CISM), ISC2 Certified in Governance, Risk and Compliance (CGRC), or Risk and Insurance Management Society (RIMS) Certified Risk Management Professional (RIMS-CRMP). Other Duties Able to travel within a week's notice. This job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. Duties, responsibilities, and activities may change at any time with or without notice. Overview BMA is an employee-owned small business headquartered in Huntsville, AL that provides superior customer service by empowering all levels of our staff to make timely decisions to produce high-quality results. BMA fosters an environment of passion, precision, and dedication in order to fulfill our commitments to our partners, government, and country. Benefits We believe that our employees well-being is paramount to our success so our benefits package has been crafted with that in mind. We offer multiple healthcare coverage options to include low deductible, high deductible, and plans eligible for our Health Savings Account (HSA) option. Along with medical coverage, employees have dental, vision, accident & illness, short- and long-term disability all available to them. BMA proudly maintains a 401(k) plan with an industry leading 6% match that can include profit sharing based on company performance. Lastly, being an employee-owned company means that BMA offers a 100% Employee Stock Ownership Plan (ESOP), providing eligible employees the opportunity to earn stock in BMA, subject to plan eligibility and vesting requirements. AAP & EEO Statement Beshenich Muir & Associates, LLC (BMA) is an Equal opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regards to race, color, religion, religious creed, gender, sexual orientation, gender identity, gender expression, transgender, pregnancy, marital status, national origin, ancestry, citizenship status, age, disability, protected Veteran Status, genetics or any other characteristics protected by applicable Federal, State, or Local Law. |
| Salary Min | — |
| Salary Max | — |
| Salary Currency | — |
| Salary Period | week |
| Source URL | https://www.paycomonline.net/v4/ats/web.php/jobs/ViewJobDetails?job=311252&clientkey=BD1EA60AEEB10C351C9D11F5ACCAE8B8 |
| Apply URL | https://www.paycomonline.net/v4/ats/web.php/jobs/ViewJobDetails?job=311252&clientkey=BD1EA60AEEB10C351C9D11F5ACCAE8B8 |
| First Seen At | 2026-05-31 19:06:22Z |
| Last Seen At | 2026-06-06 09:54:32Z |
| Last Checked At | 2026-06-06 09:54:32Z |
| Last Changed At | 2026-05-31 19:06:22Z |
| Inactive At | — |
| Source Posted At | 2026-03-05 00:00:00Z |
| Source Updated At | — |
| Raw Payload Uri | s3://job-postings-prod-raw-590183727216/raw/provider=paycom/board=BD1EA60AEEB10C351C9D11F5ACCAE8B8/date=2026-06-06/2026-06-06T09-54-30-911Z-08cd82c2529cf77aaa55d1a7bc8ead4a537d3a19986febc3cdce99f22689fe7e.json |
Event Fields
{
"content_hash": "68971e85447586bb09eb109c105bfde7db9299e295116e9a1f40d841aa88ad7a",
"source_hash": "e3d03fd783574b01545f9e987f901a441556c0d598c9a11c4ab217482af006c8",
"last_changed_at": "2026-05-31T19:06:22.044Z",
"active_status": "active"
}Parsed Structured
{
"language": "en",
"location": {
"raw": "REMOTE (United States) - Remote, VA 22211; No Address, Remote, VA, 22211, USA",
"city": null,
"region": "VA",
"country": "United States",
"is_remote": true,
"confidence": 0.8
},
"salary_max": null,
"salary_min": null,
"inferred_at": "2026-06-06T09:54:32.596Z",
"launch_scope": {
"reason": "english_us_canada",
"included": true,
"language": "en",
"location": {
"raw": "REMOTE (United States) - Remote, VA 22211; No Address, Remote, VA, 22211, USA",
"city": null,
"region": "VA",
"country": "United States",
"is_remote": true,
"confidence": 0.8
},
"countries": [
"United States"
]
},
"remote_policy": "remote",
"salary_period": "week",
"workplace_type": "remote",
"salary_currency": null
}Extensions
{}Native Structured
{
"detail": {
"city": "Remote",
"jobId": 311252,
"level": "Senior",
"endDate": "",
"legalId": 4330,
"isHotJob": false,
"jobShift": "Day",
"jobTitle": "Cybersecurity Subject Matter Expert Lead (59834)",
"location": "REMOTE (United States) - Remote, VA 22211",
"startDate": "",
"clientCode": "0QS68",
"remoteType": "Fully Remote",
"description": "<p style=\"margin-bottom: 11px; text-align: center;\"><span style=\"display:block;font-size:16px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">BMA is seeking a </span><strong><span style=\"color:black\">Cybersecurity Subject Matter Expert – Lead</span></strong><span style=\"line-height:115%\"><strong> </strong>to support the DLA JETS Cybersecurity Policy and Oversight Support Services (CPOSS) program. This is a fully<b> remote </b>position and <b>contingent</b> on contract award. </span></span></span></p>\r\n\r\n<p style=\"margin-bottom: 11px; text-align: center;\"> </p>\r\n\r\n<p style=\"margin-bottom: 11px;\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><strong>Job Summary</strong></span></span></p>\r\n\r\n<p><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\">BMA is seeking a Cybersecurity Subject Matter Expert (CS SME) – Lead to support our DLA Cybersecurity Policy and Oversight Support Services (CPOSS) contract. The CS SME – Lead provides senior-level technical leadership and advisory support to the CPOSS program supporting DLA’s J6/J611 Cybersecurity Directorate. The SME serves as the principal cybersecurity authority for complex technical and governance challenges related to the enterprise Risk Management Framework (RMF) program, cybersecurity policy development, continuous monitoring, and control validation activities across the DLA enterprise. Working under consultative direction, the SME independently evaluates exceptionally complex cybersecurity issues, develops innovative solutions, and provides authoritative technical guidance to government leadership, Security Control Assessors (SCAs), Authorizing Officials (AOs), and enterprise cybersecurity stakeholders. The role also contributes to the development of enterprise cybersecurity methodologies, advanced assessment techniques, and improved cybersecurity governance practices aligned with DoD cybersecurity policy and DLA strategic initiatives.</span></span></p>\r\n\r\n<p><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><strong> Key Responsibilities</strong></span></span></p>\r\n\r\n<ol>\r\n\t<li>\r\n\t<p><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><strong>Enterprise Cybersecurity Technical Leadership</strong>: Serves as the senior technical advisor to the DLA cybersecurity assessment and oversight program, providing expert interpretation of cybersecurity policies, standards, and technical requirements. Provides authoritative guidance on complex cybersecurity issues involving enterprise systems, networks, applications, enclaves, and emerging technologies. Analyzes highly complex cybersecurity challenges and recommends innovative solutions that balance mission requirements, operational risks, and regulatory compliance.</span></span></p>\r\n\t</li>\r\n\t<li>\r\n\t<p><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><strong>RMF and Cybersecurity Assessment Expertise: </strong>Provides subject matter expertise on implementation and governance of the DoDI 8510.01 Risk Management Framework for DoD IT across DLA information systems. Advises government stakeholders on security control validation, risk assessments, and authorization readiness determinations. Provides technical review of security control assessments, continuous monitoring activities, and RMF authorization packages submitted through eMASS. Supports development of enterprise-level recommendations regarding residual risk acceptance and cybersecurity posture improvements.</span></span></p>\r\n\t</li>\r\n\t<li>\r\n\t<p><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><strong>Cybersecurity Tools, Standards, and Architecture Support: </strong>Evaluates cybersecurity tools and technologies to support enterprise security assessment, monitoring, and compliance activities. Recommends cybersecurity software solutions and assists in defining functional and technical requirements for tool selection. Supports development of product-specific Security Technical Implementation Guides (STIGs) based on Defense Information Systems Agency Security Requirements Guides (SRGs). Provides technical leadership in evaluating network security architectures, vulnerability assessment methodologies, and cybersecurity implementation strategies.</span></span></p>\r\n\t</li>\r\n\t<li>\r\n\t<p><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><strong>Enterprise Cybersecurity Policy and Methodology Development:</strong> Contributes to the development of new cybersecurity principles, methodologies, and governance practices that improve the DLA enterprise cybersecurity program. Provides expert guidance in the development and refinement of enterprise cybersecurity policies, directives, and standard operating procedures supporting the CPOSS program. Supports the development of advanced cybersecurity concepts and technical approaches that strengthen enterprise security posture and compliance with DoD cybersecurity regulations.</span></span></p>\r\n\t</li>\r\n\t<li>\r\n\t<p><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><strong>Strategic Analysis and Innovation: </strong>Conducts research and analysis of emerging cybersecurity threats, technologies, and best practices relevant to the DLA mission environment. Develops innovative approaches for improving cybersecurity assessment processes, continuous monitoring practices, and enterprise risk management strategies. Identifies opportunities to enhance cybersecurity oversight capabilities through improved tools, automation, analytics, and governance frameworks.</span></span></p>\r\n\t</li>\r\n\t<li>\r\n\t<p><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><strong>Senior-Level Advisory and Communication Support: </strong>Provides expert written and oral briefings to senior government leadership regarding cybersecurity risks, program status, and recommended solutions. Prepares technical reports, white papers, and presentations addressing enterprise cybersecurity challenges.</span></span></p>\r\n\t</li>\r\n</ol>\r\n\r\n<p style=\"margin-bottom:11px\"> </p>\r\n\r\n<p style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\"><b>Clearance Requirements </b></span></span></span></p>\r\n\r\n<p style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">There is a<b> Secret </b>Security clearance requirement for this position. </span></span></span></p>\r\n\r\n<p style=\"margin-bottom:11px\"> </p>\r\n\r\n<p style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\"><b>Required Skills & Certifications </b></span></span></span></p>\r\n\r\n<ul style=\"margin-bottom:11px\">\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">Current DoD 8670.01/8140 IAM Level III certification that includes one or more of the following: ISACA CISM, ISC2 Certified Information Systems Security Professional (CISSP), GIAC/SANS GIAS Security Leadership Certification (GSLC), or EC-Council Certified Chief Information Security Officer (CCISO).</span></span></span></li>\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">7+ years of Information Technology experience.</span></span></span></li>\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">5+ years of Information Assurance / Cybersecurity experience.</span></span></span></li>\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">Demonstrated expertise in cybersecurity assessment methodologies, risk analysis, and enterprise cybersecurity governance.</span></span></span></li>\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">Strong analytical and problem-solving skills with the ability to resolve complex cybersecurity challenges.</span></span></span></li>\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">In-depth knowledge of DoD cybersecurity regulations and guidance, including RMF implementation.</span></span></span></li>\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">Strong familiarity with Defense Information Systems Agency STIGs and Security Requirements Guides (SRGs).</span></span></span></li>\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">Demonstrated ability to develop and evaluate cybersecurity technologies, architectures, and security solutions.</span></span></span></li>\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">Exceptional technical leadership and independent decision-making ability.</span></span></span></li>\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">Ability to translate complex cybersecurity issues into clear, actionable guidance for senior leadership.</span></span></span></li>\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">Strong written and oral communication skills capable of supporting executive-level briefings.</span></span></span></li>\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">Proven ability to innovate and develop new cybersecurity concepts, processes, and technical solutions.</span></span></span></li>\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">Demonstrated ability to work independently toward long-range cybersecurity program objectives.</span></span></span></li>\r\n</ul>\r\n\r\n<p style=\"margin-bottom:11px\"> </p>\r\n\r\n<p style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\"><b>Desired Skills & Certifications </b></span></span></span></p>\r\n\r\n<ul style=\"margin-bottom:11px\">\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">Experience supporting DoD or DLA program offices.</span></span></span></li>\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">Experience supporting DoD DLA environments.</span></span></span></li>\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">Experience leading enterprise-level cyber modernization initiatives.</span></span></span></li>\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">Familiarity with DLA-specific cybersecurity governance frameworks.</span></span></span></li>\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">Current Project Management Professional (PMP) certification.</span></span></span></li>\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">Current Risk Management Professional certification such as one or more of the following: PMP-RMP, ISACA Certified in Risk and Information Systems Control (CRISC), ISACA Certified Information Systems Auditor (CISA), ISACA Certified Information Security Manager (CISM), ISC2 Certified in Governance, Risk and Compliance (CGRC), or Risk and Insurance Management Society (RIMS) Certified Risk Management Professional (RIMS-CRMP).</span></span></span></li>\r\n</ul>\r\n\r\n<p style=\"margin-bottom:11px\"> </p>\r\n\r\n<p style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\"><b>Other Duties</b></span></span></span></p>\r\n\r\n<ul style=\"margin-bottom:11px\">\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">Able to travel within a week's notice.</span></span></span></li>\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">This job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. </span></span></span></li>\r\n\t<li style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">Duties, responsibilities, and activities may change at any time with or without notice. </span></span></span></li>\r\n</ul>\r\n\r\n<p style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\"> </span></span></span></p>\r\n\r\n<p style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\"><b>Overview</b></span></span></span></p>\r\n\r\n<p style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">BMA is an employee-owned small business headquartered in Huntsville, AL that provides superior customer service by empowering all levels of our staff to make timely decisions to produce high-quality results. BMA fosters an environment of passion, precision, and dedication in order to fulfill our commitments to our partners, government, and country.</span></span></span></p>\r\n\r\n<p style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\"> </span></span></span></p>\r\n\r\n<p style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\"><b>Benefits</b></span></span></span></p>\r\n\r\n<p style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\">We believe that our employees well-being is paramount to our success so our benefits package has been crafted with that in mind. We offer multiple healthcare coverage options to include low deductible, high deductible, and plans eligible for our Health Savings Account (HSA) option. Along with medical coverage, employees have dental, vision, accident & illness, short- and long-term disability all available to them. BMA proudly maintains a 401(k) plan with an industry leading 6% match that can include profit sharing based on company performance. Lastly, being an employee-owned company means that BMA offers a 100% Employee Stock Ownership Plan (ESOP), providing eligible employees the opportunity to earn stock in BMA, subject to plan eligibility and vesting requirements. </span></span></span></p>\r\n\r\n<p style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\"> </span></span></span></p>\r\n\r\n<p style=\"margin-bottom:11px\"><span style=\"display:block;font-size:14px;\"><span style=\"font-family:Arial,Helvetica,sans-serif;\"><span style=\"line-height:115%\"><b>AAP & EEO Statement</b><br />\r\n Beshenich Muir & Associates, LLC (BMA) is an Equal opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regards to race, color, religion, religious creed, gender, sexual orientation, gender identity, gender expression, transgender, pregnancy, marital status, national origin, ancestry, citizenship status, age, disability, protected Veteran Status, genetics or any other characteristics protected by applicable Federal, State, or Local Law. </span></span></span></p>\r\n",
"jobCategory": "Professional Services",
"salaryRange": "",
"socialMedia": {
"xLink": null,
"emailLink": {
"subject": "Bma%20Technical%20Services%20Inc%20Job%20Opportunity%20Cybersecurity%20Subject%20Matter%20Expert%20Lead%20%2859834%29",
"summary": "BMA%20is%20seeking%20a%C2Cybersecurity%20Subject%20Matter%20Expert%20%E2%80%93%20Lead%C2to%20support%20the%C2DLA%20JETS%20Cybersecurity%20Policy%20and%20Oversight%20Support%20Services%20%28CPOSS%29%20program.%20This%20is%20a%20fully%20remote%20position%20and%20contingent%20on%20contract%20award.%20%0D%0A%0D%0A%C2%0D%0A%0D%0AJob%20Summary%0D%0A%0D%0ABMA%20is%20seeking%20a%20Cybersecurity%20Subject%20Matter%20Expert%20%28CS%20SME%29%20%E2%80%93%20Lead%20to%20support%20our%20DLA%20Cybersecurity%20Policy%20and%20Oversight%20Support%20Services%20%28CPOSS%29%20contract.%20The%20CS%20SME%20%E2%80%93%20Lead%20provides%20senior-level%20technical%20leadership%20and%20advisory%20support%20to%20the%20CPOSS%20program%20supporting%20DLA%E2%80%99s%20J6%2FJ611%20Cybersecurity%20Directorate.%20The%20SME%20serves%20as%20the%20principal%20cybersecurity%20authority%20for%20complex%20technical%20and%20governance%20challenges%20related%20to%20the%20enterprise%20Risk%20Management%20Framework%20%28RMF%29%20program%2C%20cybersecurity%20policy%20development%2C%20continuous%20monitoring%2C%20and%20control%20validation%20activities%20across%20the%20DLA%20enterprise.%20Working%20under%20consultative%20direction%2C%20the%20SME%20independently%20evaluates%20exceptionally%20complex%20cybersecurity%20issues%2C%20develops%20innovative..."
},
"facebookLink": {
"redirectUri": "",
"facebookAppId": "773759036043100"
},
"linkedInLink": {}
},
"isQuickApply": false,
"positionType": "Full Time",
"countryPaidIn": "",
"googleJobJson": "{\"@context\":\"https://schema.org/\",\"@type\":\"JobPosting\",\"title\":\"Cybersecurity Subject Matter Expert Lead (59834)\",\"identifier\":\"J0QS68311252\",\"url\":\"https://www.paycomonline.net/v4/ats/web.php/portal/BD1EA60AEEB10C351C9D11F5ACCAE8B8/jobs/311252\",\"image\":\"https://www.paycomonline.net/v4/ats/web.php/application/style/logo?clientkey=BD1EA60AEEB10C351C9D11F5ACCAE8B8\",\"datePosted\":\"2026-03-05\",\"description\":\"Job DetailsLevel: SeniorJob Location: REMOTE (United States) - Remote, VA 22211Position Type: Full TimeEducation Level: Not SpecifiedTravel Percentage: Occasionally Job Shift: DayJob Category: Professional ServicesBMA is seeking a Cybersecurity Subject Matter Expert – Lead to support the DLA JETS Cybersecurity Policy and Oversight Support Services (CPOSS) program. This is a fully remote position and contingent on contract award. \\r\\n\\r\\n \\r\\n\\r\\nJob Summary\\r\\n\\r\\nBMA is seeking a Cybersecurity Subject Matter Expert (CS SME) – Lead to support our DLA Cybersecurity Policy and Oversight Support Services (CPOSS) contract. The CS SME – Lead provides senior-level technical leadership and advisory support to the CPOSS program supporting DLA’s J6/J611 Cybersecurity Directorate. The SME serves as the principal cybersecurity authority for complex technical and governance challenges related to the enterprise Risk Management Framework (RMF) program, cybersecurity policy development, continuous monitoring, and control validation activities across the DLA enterprise. Working under consultative direction, the SME independently evaluates exceptionally complex cybersecurity issues, develops innovative solutions, and provides authoritative technical guidance to government leadership, Security Control Assessors (SCAs), Authorizing Officials (AOs), and enterprise cybersecurity stakeholders. The role also contributes to the development of enterprise cybersecurity methodologies, advanced assessment techniques, and improved cybersecurity governance practices aligned with DoD cybersecurity policy and DLA strategic initiatives.\\r\\n\\r\\n Key Responsibilities\\r\\n\\r\\n\\r\\n\\t\\r\\n\\tEnterprise Cybersecurity Technical Leadership: Serves as the senior technical advisor to the DLA cybersecurity assessment and oversight program, providing expert interpretation of cybersecurity policies, standards, and technical requirements. Provides authoritative guidance on complex cybersecurity issues involving enterprise systems, networks, applications, enclaves, and emerging technologies. Analyzes highly complex cybersecurity challenges and recommends innovative solutions that balance mission requirements, operational risks, and regulatory compliance.\\r\\n\\t\\r\\n\\t\\r\\n\\tRMF and Cybersecurity Assessment Expertise: Provides subject matter expertise on implementation and governance of the DoDI 8510.01 Risk Management Framework for DoD IT across DLA information systems. Advises government stakeholders on security control validation, risk assessments, and authorization readiness determinations. Provides technical review of security control assessments, continuous monitoring activities, and RMF authorization packages submitted through eMASS. Supports development of enterprise-level recommendations regarding residual risk acceptance and cybersecurity posture improvements.\\r\\n\\t\\r\\n\\t\\r\\n\\tCybersecurity Tools, Standards, and Architecture Support: Evaluates cybersecurity tools and technologies to support enterprise security assessment, monitoring, and compliance activities. Recommends cybersecurity software solutions and assists in defining functional and technical requirements for tool selection. Supports development of product-specific Security Technical Implementation Guides (STIGs) based on Defense Information Systems Agency Security Requirements Guides (SRGs). Provides technical leadership in evaluating network security architectures, vulnerability assessment methodologies, and cybersecurity implementation strategies.\\r\\n\\t\\r\\n\\t\\r\\n\\tEnterprise Cybersecurity Policy and Methodology Development: Contributes to the development of new cybersecurity principles, methodologies, and governance practices that improve the DLA enterprise cybersecurity program. Provides expert guidance in the development and refinement of enterprise cybersecurity policies, directives, and standard operating procedures supporting the CPOSS program. Supports the development of advanced cybersecurity concepts and technical approaches that strengthen enterprise security posture and compliance with DoD cybersecurity regulations.\\r\\n\\t\\r\\n\\t\\r\\n\\tStrategic Analysis and Innovation: Conducts research and analysis of emerging cybersecurity threats, technologies, and best practices relevant to the DLA mission environment. Develops innovative approaches for improving cybersecurity assessment processes, continuous monitoring practices, and enterprise risk management strategies. Identifies opportunities to enhance cybersecurity oversight capabilities through improved tools, automation, analytics, and governance frameworks.\\r\\n\\t\\r\\n\\t\\r\\n\\tSenior-Level Advisory and Communication Support: Provides expert written and oral briefings to senior government leadership regarding cybersecurity risks, program status, and recommended solutions. Prepares technical reports, white papers, and presentations addressing enterprise cybersecurity challenges.\\r\\n\\t\\r\\n\\r\\n\\r\\n \\r\\n\\r\\nClearance Requirements \\r\\n\\r\\nThere is a Secret Security clearance requirement for this position. \\r\\n\\r\\n \\r\\n\\r\\nRequired Skills & Certifications \\r\\n\\r\\n\\r\\n\\tCurrent DoD 8670.01/8140 IAM Level III certification that includes one or more of the following: ISACA CISM, ISC2 Certified Information Systems Security Professional (CISSP), GIAC/SANS GIAS Security Leadership Certification (GSLC), or EC-Council Certified Chief Information Security Officer (CCISO).\\r\\n\\t7+ years of Information Technology experience.\\r\\n\\t5+ years of Information Assurance / Cybersecurity experience.\\r\\n\\tDemonstrated expertise in cybersecurity assessment methodologies, risk analysis, and enterprise cybersecurity governance.\\r\\n\\tStrong analytical and problem-solving skills with the ability to resolve complex cybersecurity challenges.\\r\\n\\tIn-depth knowledge of DoD cybersecurity regulations and guidance, including RMF implementation.\\r\\n\\tStrong familiarity with Defense Information Systems Agency STIGs and Security Requirements Guides (SRGs).\\r\\n\\tDemonstrated ability to develop and evaluate cybersecurity technologies, architectures, and security solutions.\\r\\n\\tExceptional technical leadership and independent decision-making ability.\\r\\n\\tAbility to translate complex cybersecurity issues into clear, actionable guidance for senior leadership.\\r\\n\\tStrong written and oral communication skills capable of supporting executive-level briefings.\\r\\n\\tProven ability to innovate and develop new cybersecurity concepts, processes, and technical solutions.\\r\\n\\tDemonstrated ability to work independently toward long-range cybersecurity program objectives.\\r\\n\\r\\n\\r\\n \\r\\n\\r\\nDesired Skills & Certifications \\r\\n\\r\\n\\r\\n\\tExperience supporting DoD or DLA program offices.\\r\\n\\tExperience supporting DoD DLA environments.\\r\\n\\tExperience leading enterprise-level cyber modernization initiatives.\\r\\n\\tFamiliarity with DLA-specific cybersecurity governance frameworks.\\r\\n\\tCurrent Project Management Professional (PMP) certification.\\r\\n\\tCurrent Risk Management Professional certification such as one or more of the following: PMP-RMP, ISACA Certified in Risk and Information Systems Control (CRISC), ISACA Certified Information Systems Auditor (CISA), ISACA Certified Information Security Manager (CISM), ISC2 Certified in Governance, Risk and Compliance (CGRC), or Risk and Insurance Management Society (RIMS) Certified Risk Management Professional (RIMS-CRMP).\\r\\n\\r\\n\\r\\n \\r\\n\\r\\nOther Duties\\r\\n\\r\\n\\r\\n\\tAble to travel within a week's notice.\\r\\n\\tThis job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. \\r\\n\\tDuties, responsibilities, and activities may change at any time with or without notice. \\r\\n\\r\\n\\r\\n \\r\\n\\r\\nOverview\\r\\n\\r\\nBMA is an employee-owned small business headquartered in Huntsville, AL that provides superior customer service by empowering all levels of our staff to make timely decisions to produce high-quality results. BMA fosters an environment of passion, precision, and dedication in order to fulfill our commitments to our partners, government, and country.\\r\\n\\r\\n \\r\\n\\r\\nBenefits\\r\\n\\r\\nWe believe that our employees well-being is paramount to our success so our benefits package has been crafted with that in mind. We offer multiple healthcare coverage options to include low deductible, high deductible, and plans eligible for our Health Savings Account (HSA) option. Along with medical coverage, employees have dental, vision, accident & illness, short- and long-term disability all available to them. BMA proudly maintains a 401(k) plan with an industry leading 6% match that can include profit sharing based on company performance. Lastly, being an employee-owned company means that BMA offers a 100% Employee Stock Ownership Plan (ESOP), providing eligible employees the opportunity to earn stock in BMA, subject to plan eligibility and vesting requirements. \\r\\n\\r\\n \\r\\n\\r\\nAAP & EEO Statement\\r\\n Beshenich Muir & Associates, LLC (BMA) is an Equal opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regards to race, color, religion, religious creed, gender, sexual orientation, gender identity, gender expression, transgender, pregnancy, marital status, national origin, ancestry, citizenship status, age, disability, protected Veteran Status, genetics or any other characteristics protected by applicable Federal, State, or Local Law. \\r\\nQualifications\",\"responsibilities\":\"BMA is seeking a Cybersecurity Subject Matter Expert – Lead to support the DLA JETS Cybersecurity Policy and Oversight Support Services (CPOSS) program. This is a fully remote position and contingent on contract award. \\r\\n\\r\\n \\r\\n\\r\\nJob Summary\\r\\n\\r\\nBMA is seeking a Cybersecurity Subject Matter Expert (CS SME) – Lead to support our DLA Cybersecurity Policy and Oversight Support Services (CPOSS) contract. The CS SME – Lead provides senior-level technical leadership and advisory support to the CPOSS program supporting DLA’s J6/J611 Cybersecurity Directorate. The SME serves as the principal cybersecurity authority for complex technical and governance challenges related to the enterprise Risk Management Framework (RMF) program, cybersecurity policy development, continuous monitoring, and control validation activities across the DLA enterprise. Working under consultative direction, the SME independently evaluates exceptionally complex cybersecurity issues, develops innovative solutions, and provides authoritative technical guidance to government leadership, Security Control Assessors (SCAs), Authorizing Officials (AOs), and enterprise cybersecurity stakeholders. The role also contributes to the development of enterprise cybersecurity methodologies, advanced assessment techniques, and improved cybersecurity governance practices aligned with DoD cybersecurity policy and DLA strategic initiatives.\\r\\n\\r\\n Key Responsibilities\\r\\n\\r\\n\\r\\n\\t\\r\\n\\tEnterprise Cybersecurity Technical Leadership: Serves as the senior technical advisor to the DLA cybersecurity assessment and oversight program, providing expert interpretation of cybersecurity policies, standards, and technical requirements. Provides authoritative guidance on complex cybersecurity issues involving enterprise systems, networks, applications, enclaves, and emerging technologies. Analyzes highly complex cybersecurity challenges and recommends innovative solutions that balance mission requirements, operational risks, and regulatory compliance.\\r\\n\\t\\r\\n\\t\\r\\n\\tRMF and Cybersecurity Assessment Expertise: Provides subject matter expertise on implementation and governance of the DoDI 8510.01 Risk Management Framework for DoD IT across DLA information systems. Advises government stakeholders on security control validation, risk assessments, and authorization readiness determinations. Provides technical review of security control assessments, continuous monitoring activities, and RMF authorization packages submitted through eMASS. Supports development of enterprise-level recommendations regarding residual risk acceptance and cybersecurity posture improvements.\\r\\n\\t\\r\\n\\t\\r\\n\\tCybersecurity Tools, Standards, and Architecture Support: Evaluates cybersecurity tools and technologies to support enterprise security assessment, monitoring, and compliance activities. Recommends cybersecurity software solutions and assists in defining functional and technical requirements for tool selection. Supports development of product-specific Security Technical Implementation Guides (STIGs) based on Defense Information Systems Agency Security Requirements Guides (SRGs). Provides technical leadership in evaluating network security architectures, vulnerability assessment methodologies, and cybersecurity implementation strategies.\\r\\n\\t\\r\\n\\t\\r\\n\\tEnterprise Cybersecurity Policy and Methodology Development: Contributes to the development of new cybersecurity principles, methodologies, and governance practices that improve the DLA enterprise cybersecurity program. Provides expert guidance in the development and refinement of enterprise cybersecurity policies, directives, and standard operating procedures supporting the CPOSS program. Supports the development of advanced cybersecurity concepts and technical approaches that strengthen enterprise security posture and compliance with DoD cybersecurity regulations.\\r\\n\\t\\r\\n\\t\\r\\n\\tStrategic Analysis and Innovation: Conducts research and analysis of emerging cybersecurity threats, technologies, and best practices relevant to the DLA mission environment. Develops innovative approaches for improving cybersecurity assessment processes, continuous monitoring practices, and enterprise risk management strategies. Identifies opportunities to enhance cybersecurity oversight capabilities through improved tools, automation, analytics, and governance frameworks.\\r\\n\\t\\r\\n\\t\\r\\n\\tSenior-Level Advisory and Communication Support: Provides expert written and oral briefings to senior government leadership regarding cybersecurity risks, program status, and recommended solutions. Prepares technical reports, white papers, and presentations addressing enterprise cybersecurity challenges.\\r\\n\\t\\r\\n\\r\\n\\r\\n \\r\\n\\r\\nClearance Requirements \\r\\n\\r\\nThere is a Secret Security clearance requirement for this position. \\r\\n\\r\\n \\r\\n\\r\\nRequired Skills & Certifications \\r\\n\\r\\n\\r\\n\\tCurrent DoD 8670.01/8140 IAM Level III certification that includes one or more of the following: ISACA CISM, ISC2 Certified Information Systems Security Professional (CISSP), GIAC/SANS GIAS Security Leadership Certification (GSLC), or EC-Council Certified Chief Information Security Officer (CCISO).\\r\\n\\t7+ years of Information Technology experience.\\r\\n\\t5+ years of Information Assurance / Cybersecurity experience.\\r\\n\\tDemonstrated expertise in cybersecurity assessment methodologies, risk analysis, and enterprise cybersecurity governance.\\r\\n\\tStrong analytical and problem-solving skills with the ability to resolve complex cybersecurity challenges.\\r\\n\\tIn-depth knowledge of DoD cybersecurity regulations and guidance, including RMF implementation.\\r\\n\\tStrong familiarity with Defense Information Systems Agency STIGs and Security Requirements Guides (SRGs).\\r\\n\\tDemonstrated ability to develop and evaluate cybersecurity technologies, architectures, and security solutions.\\r\\n\\tExceptional technical leadership and independent decision-making ability.\\r\\n\\tAbility to translate complex cybersecurity issues into clear, actionable guidance for senior leadership.\\r\\n\\tStrong written and oral communication skills capable of supporting executive-level briefings.\\r\\n\\tProven ability to innovate and develop new cybersecurity concepts, processes, and technical solutions.\\r\\n\\tDemonstrated ability to work independently toward long-range cybersecurity program objectives.\\r\\n\\r\\n\\r\\n \\r\\n\\r\\nDesired Skills & Certifications \\r\\n\\r\\n\\r\\n\\tExperience supporting DoD or DLA program offices.\\r\\n\\tExperience supporting DoD DLA environments.\\r\\n\\tExperience leading enterprise-level cyber modernization initiatives.\\r\\n\\tFamiliarity with DLA-specific cybersecurity governance frameworks.\\r\\n\\tCurrent Project Management Professional (PMP) certification.\\r\\n\\tCurrent Risk Management Professional certification such as one or more of the following: PMP-RMP, ISACA Certified in Risk and Information Systems Control (CRISC), ISACA Certified Information Systems Auditor (CISA), ISACA Certified Information Security Manager (CISM), ISC2 Certified in Governance, Risk and Compliance (CGRC), or Risk and Insurance Management Society (RIMS) Certified Risk Management Professional (RIMS-CRMP).\\r\\n\\r\\n\\r\\n \\r\\n\\r\\nOther Duties\\r\\n\\r\\n\\r\\n\\tAble to travel within a week's notice.\\r\\n\\tThis job description is not designed to cover or contain a comprehensive listing of activities, duties, or responsibilities that are required of the employee for this job. \\r\\n\\tDuties, responsibilities, and activities may change at any time with or without notice. \\r\\n\\r\\n\\r\\n \\r\\n\\r\\nOverview\\r\\n\\r\\nBMA is an employee-owned small business headquartered in Huntsville, AL that provides superior customer service by empowering all levels of our staff to make timely decisions to produce high-quality results. BMA fosters an environment of passion, precision, and dedication in order to fulfill our commitments to our partners, government, and country.\\r\\n\\r\\n \\r\\n\\r\\nBenefits\\r\\n\\r\\nWe believe that our employees well-being is paramount to our success so our benefits package has been crafted with that in mind. We offer multiple healthcare coverage options to include low deductible, high deductible, and plans eligible for our Health Savings Account (HSA) option. Along with medical coverage, employees have dental, vision, accident & illness, short- and long-term disability all available to them. BMA proudly maintains a 401(k) plan with an industry leading 6% match that can include profit sharing based on company performance. Lastly, being an employee-owned company means that BMA offers a 100% Employee Stock Ownership Plan (ESOP), providing eligible employees the opportunity to earn stock in BMA, subject to plan eligibility and vesting requirements. \\r\\n\\r\\n \\r\\n\\r\\nAAP & EEO Statement\\r\\n Beshenich Muir & Associates, LLC (BMA) is an Equal opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regards to race, color, religion, religious creed, gender, sexual orientation, gender identity, gender expression, transgender, pregnancy, marital status, national origin, ancestry, citizenship status, age, disability, protected Veteran Status, genetics or any other characteristics protected by applicable Federal, State, or Local Law. \\r\\n\",\"employmentType\":\"FULL_TIME\",\"hiringOrganization\":{\"@type\":\"Organization\",\"name\":\"BMA TECHNICAL SERVICES INC\",\"logo\":\"https://www.paycomonline.net/v4/ats/web.php/application/style/logo?clientkey=BD1EA60AEEB10C351C9D11F5ACCAE8B8\"},\"jobLocation\":{\"@type\":\"Place\",\"address\":{\"streetAddress\":\"No Address \",\"addressLocality\":\"Remote\",\"addressRegion\":\"VA\",\"postalCode\":22211,\"addressCountry\":\"USA\"}},\"industry\":\"Professional Services\",\"validThrough\":\"-0001-11-30\",\"workHours\":\"Day\",\"educationRequirements\":\"Not Specified\"}",
"applyAvailable": true,
"educationLevel": "Not Specified",
"qualifications": "",
"descriptionTitle": "Description",
"travelPercentage": "Occasionally ",
"jobYoutubeVideoId": "",
"legalRevisionDate": {
"date": "2025-05-05T14:10:08.000Z",
"timezone": "America/Chicago",
"timezone_type": 3
},
"secondaryLocations": [],
"primaryPhoneCountry": "US",
"primaryPhoneEnabled": true,
"qualificationsTitle": "Qualifications",
"primaryPhoneRequired": true,
"primaryPhoneNumberDoesNotExist": false
},
"preview": {
"jobId": 311252,
"isHotJob": false,
"jobTitle": "Cybersecurity Subject Matter Expert Lead (59834)",
"postedOn": "",
"locations": "REMOTE (United States) - Remote, VA 22211",
"remoteType": "Fully Remote",
"description": "BMA is seeking a Cybersecurity Subject Matter Expert – Lead to support the DLA JETS Cybersecurity Policy and Oversight Support Services (CPOSS) progra...",
"positionType": "Full Time"
},
"detail_meta": {
"url": "https://portal-applicant-tracking.us-cent.paycomonline.net/api/ats/job-postings/311252",
"http_status": 200,
"content_type": "application/json",
"response_bytes": 48001
},
"detail_errors": []
}Get this page with API
Rendered from the bluedoor Job Postings API. Reproduce it:
GET https://api.bluedoor.sh/job-postings/v1/jobs/e2e309cb542a4089c79b330c97606d84247466dd?include=descriptionJSONGET https://api.bluedoor.sh/job-postings/v1/orgs/e8a572cb-75af-4a74-801d-c4b032cd9504JSONGET https://api.bluedoor.sh/job-postings/v1/sources/7262a4a5-72a6-432d-ab32-df72cb1cd3a3JSONGET https://api.bluedoor.sh/job-postings/v1/jobs/e2e309cb542a4089c79b330c97606d84247466dd/eventsJSON