Senior Cybersecurity and IT Assessor
Description
As a Vision, Mission, and Driven company, VMD has been delivering information technology solutions to the Federal government in Agile Engineering, Cybersecurity, and Critical Infrastructure Protection since 2002. Our mission has now expanded, and we have merged with Xcelerate Solutions to revolutionize end-to-end enterprise security. Together we are committed to protecting our nation’s citizens, critical infrastructure, and resources.
Why Join VMD Corp?
At VMD, now a part of Xcelerate Solutions, you have the opportunity to thrive in your career and become a Game Changer. The quality and talent of our people is what drives our success. We embrace an employee-first culture and make it a priority to provide professional development opportunities that foster career growth.
We help protect American Citizens and the nation’s most critical infrastructure by working alongside our customers and delivering game changing solutions to strengthen their missions. We believe our passion and commitment to achieving our customers' goals and solve their most critical challenges defines who we are. We don’t just dream big, we act on it – through teamwork, dedication, and resilience.
Your Impact to the Mission:
Your Impact to the Mission:
As a Senior Cybersecurity and IT Assessor, you will support a government cybersecurity assessment and oversight program focused on strengthening enterprise security governance, operational resilience, and mission assurance. In this role, you will serve as an independent assessor responsible for evaluating the deployment, effectiveness, and operational maturity of cybersecurity implementations across government systems, enterprise platforms, cloud environments, and security programs, ensuring compliance with applicable federal requirements, mandates, and laws You will support the continued evolution of the assessment program through the development of maturity models, assessment methodologies, and process documentation, while collaborating with a team of assessors to foster a culture of knowledge sharing, continuous improvement, and technical excellence.
Responsibilities:
- Conduct in-depth technical, operational, and programmatic inspections, assessments, and audits of agency systems, applications, and enterprise services.
- Provide task leadership, work allocation, and mentorship to team members across assigned assessments; perform quality assurance reviews of deliverables; and ensure the timely, accurate completion of assessment activities and associated reporting milestones.
- Collect, analyze, and present accurate, risk-informed IT and cybersecurity technical and programmatic information.
- Support the maturation and continuous improvement of the cybersecurity assessment program, partnering closely with federal leadership and staff to strengthen methodologies, governance processes, reporting standards, and enterprise assessment capabilities.
- Develop, document, and maintain program processes, procedures, standards, and assessment methodologies
- Support enterprise strategic planning and program oversight initiatives, including cybersecurity capability roadmaps, governance enhancements, performance measures, and long-range modernization objective to strengthen cybersecurity posture, operational maturity, and implementation effectiveness.
- Provide executive-level input on program status, risk posture, performance metrics, and trend analysis, including the identification of recurring findings, systemic gaps, and strategic improvement opportunities.
- Obtain and maintain DOE Derivative Classifier certification(s) as required to support mission and program responsibilities.
- Maintain required professional certifications through continuous professional education (CPE) and ongoing professional development, while remaining current on emerging threats, evolving technologies, federal mandates, and cybersecurity best practices.
Minimum Requirements:
- Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Engineering, or a related discipline, with 10+ years of relevant professional experience, including 8+ years of dedicated cybersecurity experience. Additional directly related experience may be substituted for the degree requirement.
- At least one DoD 8570 / 8140 compliant certification at the IAT Level III or IAM Level III level, such as CISSP, CISM, CASP+, CISA, GSLC, or GCIH.
- Demonstrated expert-level experience leading and conducting IT and cybersecurity inspections, independent assessments, compliance reviews, and audit activities.
- Deep working knowledge of federal cybersecurity requirements, mandates, and compliance frameworks, including FISMA, NIST SP 800-37, NIST SP 800-53, NIST SP 800-115, CNSSI 1253, and applicable OMB policies and memoranda.
- Exceptional verbal and written communication skills, with the ability to clearly and professionally engage with senior stakeholders, customers, technical teams, and executive leadership.
- Active or current DOE Q Clearance or Top Secret clearance with SCI eligibility, and the ability to successfully obtain and maintain a polygraph, as required.
- U.S. Citizenship required.
Desired Qualifications and Skills:
- Demonstrated subject matter expertise in federal cybersecurity baseline requirements, with preferred experience supporting Department of Energy (DOE) environments, directives, and mission systems.
- Strong knowledge of organizational maturity assessment models, particularly those used to evaluate cybersecurity, information technology, and enterprise risk management capabilities.
- Exceptional written communication skills, including proven experience developing cybersecurity policies, standards, procedures, implementation guidance, and process documentation for technical and executive stakeholders.
- Hands-on experience in secure configuration management and system hardening, including application, validation, and tailoring of appropriate DISA STIGs, CIS benchmarks, and other secure baseline standards across enterprise environments.
- Demonstrated experience securing cloud environments, including implementation and assessment of secure configurations across AWS, Azure, or hybrid federal cloud platforms.
- Working knowledge of Zero Trust principles, architectures, and maturity frameworks, with experience evaluating or supporting implementation aligned to federal Zero Trust strategies.
- Experience supporting enterprise vulnerability management programs, including demonstrated proficiency with Tenable Security Center / Tenable.sc, vulnerability analysis, prioritization, and remediation validation workflows.
- Prior experience serving in an Information System Security Manager (ISSM) or equivalent cybersecurity leadership role, with responsibility for governance, risk oversight, and enterprise security program execution.
The Ideal Candidate Will Excel By Demonstrating
- A high level of initiative, professionalism, and self-motivation, with the ability to independently drive complex cybersecurity assessment activities to completion.
- Exceptional attention to detail.
- A commitment to continuous learning, with the ability to remain current on emerging cybersecurity technologies, threat trends, assessment methodologies, and federal security mandates.
- Strong written and verbal communication skills, including the ability to translate technical findings into clear, actionable guidance.
- Natural leadership and team influence, with the ability to lead assessment efforts and facilitate stakeholder engagement.
Travel and Telecommuting:
- Travel: Significant (between 25%-75%)
- Telecommute Options: Remote, with frequent travel. Work will be conducted at various sites across the continental US. Position will be remote when not traveling.
Xcelerate Solutions and its subsidiaries are Equal Employment Opportunity/Affirmative Action Employers. We evaluate qualified applicants without regard to race, color, national origin, religion, age, equal pay, disability, veteran status, sex, sexual orientation, gender identity, genetic information, or expression of another protected characteristic. As part of this commitment to the full inclusion of all qualified individuals, Xcelerate provides reasonable accommodations if needed because of an applicant's or an employee's disability. Xcelerate Solutions maintains a drug-free workplace.