Cybersecurity Assessment and Authorization (A&A) Subject Matter Expert (SME)

C

CALIBRE

Cybersecurity Assessment and Authorization (A&A) Subject Matter Expert (SME)

Marshfield, MA +1 location
Full Time
Paid
  • Responsibilities

    CALIBRE is an employee-owned mission focused solutions and digital transformation company.

    We are seeking an experienced Cybersecurity Assessment and Authorization (A &A) Subject Matter Expert (SME) to support Department of Defense (DoD) information systems through all phases of the Risk Management Framework (RMF) process. This position plays a critical role in guiding large, complex IT infrastructures through system assessment, authorization, and compliance—ensuring alignment with NIST 800-53 security controls and DoD cybersecurity requirements.

    Responsibilities:

    • Serve as the cybersecurity SME for A&A processes, policies, and procedures.
    • Guide systems through the RMF process, including control assessment, risk determination, and authorization recommendations.
    • Evaluate vulnerabilities, assign severity ratings, and assess the impact on authorization status.
    • Apply in-depth knowledge of NIST 800-53 controls across complex environments such as DLA’s IT infrastructure.
    • Support cybersecurity compliance across Cloud, Operational Technology (OT), ICS, and warehouse execution systems.
    • Provide expert briefings to senior leadership on system risk status and authorization progress.

    Required Skills

    • Minimum of 5 years of relevant experience with Risk Management Framework (RMF) and NIST Assessment & Authorization (A&A).
    • Direct experience with DoD cybersecurity processes and system authorization efforts.
    • Proven ability to assess security controls and conduct reviews within large, enterprise-level organizations.
    • In-depth understanding of DoD A&A implementation and supporting policies.
    • Experience in securing emerging technologies including Cloud, ICS, warehouse execution systems, and OT infrastructures.
    • Active DoD Top Secret Clearance required.
    • Must possess IT-II Non-Critical Sensitive security clearance or Tier 3 (T3) at the time of proposal submission.
    • For DLA CERT roles: Must possess DoD Top Secret Clearance and IT-I Critical Sensitive (Tier 5/T5) clearance at the time of proposal submission.
    • DoD 8570 Baseline Certification: IAM Level III (e.g., CISSP, CISM, GSLC).
    • For DLA CERT Analyst roles: CSSP-Analyst certification required.

    Required Experience

  • Qualifications
    • Minimum of 5 years of relevant experience with Risk Management Framework (RMF) and NIST Assessment & Authorization (A&A).
    • Direct experience with DoD cybersecurity processes and system authorization efforts.
    • Proven ability to assess security controls and conduct reviews within large, enterprise-level organizations.
    • In-depth understanding of DoD A&A implementation and supporting policies.
    • Experience in securing emerging technologies including Cloud, ICS, warehouse execution systems, and OT infrastructures.
    • Active DoD Top Secret Clearance required.
    • Must possess IT-II Non-Critical Sensitive security clearance or Tier 3 (T3) at the time of proposal submission.
    • For DLA CERT roles: Must possess DoD Top Secret Clearance and IT-I Critical Sensitive (Tier 5/T5) clearance at the time of proposal submission.
    • DoD 8570 Baseline Certification: IAM Level III (e.g., CISSP, CISM, GSLC).
    • For DLA CERT Analyst roles: CSSP-Analyst certification required.
  • Locations
    Marshfield, MA • Braintree, MA