Cyber Assessor

Please note only candidates who reside in one of the following states will be considered: Virginia, Maryland, District of Columbia, New York, New Jersey, Missouri, Florida, Louisiana, Kansas, Colorado, South Carolina, Pennsylvania, and Texas.

Founded in 2002, VMD is an award-winning provider of Agile Software Engineering, Digital Infrastructure, Cybersecurity, and Transportation Security Services to numerous U.S. Federal Government clients including projects across both DoD and Civilian agencies. We specialize in high-level, tip of the spear engagements with a significant impact on mission success for our clients.

Why Join VMD Corp?

VMD fosters a culture that is founded on Eight Core Values and you can watch what our Core Values mean to our Vision Mission Driven employees.

VMD Employees envision the future. We hold ourselves accountable and hold each other to equally high standards. Our people recognize and reward greatness and are humble in doing so. VMD Employees understand big accomplishments take a team. Our people learn from both our mistakes and successes; we pursue improvement relentlessly, objectively and without bias. We share our thoughts and ideas with purpose and transparency. We commit to the mission, the customer and to each other. We love being nimble and producing results.

Our team is one of the best in the business.

About the Mission You Will Join:

This Cyber Assessor position will be supporting the NNSA (National Nuclear Security Administration) Associate Administrator for Information Management and Chief Information Officer (OCIO) and will be responsible for conducing technical cybersecurity assessments.

Your Impact to the Mission:

As a Cyber Assessor you will work alongside a team of specialized assessors and will help foster a culture of information sharing and ensure that IT investments and projects in all NNSA locations are coordinated, have the necessary cybersecurity protection, align with strategic plans, and comply with DOE and Federal requirements, mandates, and laws. The Cyber Assessor will be responsible for:

• Conduct formal, independent, and objective cybersecurity audits and inspections to determine compliance of requirements and assess effectiveness and resiliency of cybersecurity measures applied to IT and OT systems and applications
• Measure effectiveness of controls, determine vulnerability exploitability, and document and report findings and impact
• Make recommendations that adhere to DOE classification requirements with accuracy
• Perform assessment work onsite, through remote connections, and to other federal organizations
• Provide formal audit and inspection expertise in accordance with national cybersecurity requirements and industry related best practices for all end nodes and devices connected to NNSA secure networks
• Demonstrate and utilize expert knowledge in conducting various types of pen testing ethically and safely to include internal, external, wireless, and web application testing
• Utilize commercial off-the-shelf and open-source cybersecurity tools safely, securely, and ethically in the execution of approved testing activities
• Support the development of the assessment program taking an active role and participation in helping the Federal staff improve the assessment program by documenting or updating processes and procedures
• Coordinate the use of crowdsource penetration testing capabilities where applicable

Experience Needed to Be Successful:

• Experience in all phases of the planning, development, and execution of a cybersecurity assessment program
• Ability to provide informed, expert technical opinion and translate technical findings to business impact
• Highly skilled in baseline cybersecurity requirements for a federal government agency (preferably DOE)
• Highly skilled in research, writing, and communication of technical cybersecurity topics
• Remains abreast of threats to diverse information and operational technologies
• Effective information and data management

Basic Qualifiers:

• Education Requirement: Bachelor�??s degree
• Can Additional Years of Experience Substitute for Degree? Yes
• Required Certification(s): Maintain technical certifications to include OSCP, CEH, GPEN, PenTest+, or related industry recognized certifications; satisfy requirements for DoD 8570 Information Assurance Technical III category
• Minimum Years of Overall Experience: 12
• Minimum Years of Specific Experience in Field: 8
• Minimum Clearance to Start: Top Secret
• Work Status Allowable: US Citizenship

The Type of Person That Will Excel:

• Maintain impeccable time and organization skills
• Possess expert writing and presentation skills
• Capable of thinking outside-the-box
• Motivated
• High attention to detail

Travel and Telecommuting:

• Travel: Significant (between 25%-75%)
• Telecommute Options: Remote plus Travel

VMD provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status, amnesty, or status as a covered veteran in accordance with applicable Federal, state and local laws. VMD maintains a drug-free workplace.