Cherokee Federal

Senior Cybersecurity Specialist

Cherokee Federal

full-time

Posted on:

Location Type: Remote

Location: VirginiaUnited States

Visit company website

Explore more

AI Apply
Apply

Salary

💰 $150,000 - $170,000 per year

Job Level

Senior

Tech Stack

CloudCyber SecurityFirewallsLinuxOpenShiftSplunk

About the role

  • Lead the day-to-day continuous security monitoring for federal information systems aligned to NIST RMF and agency policies.
  • Partner with system owners, engineers, and other agency contractors to maintain the security posture through the continuous monitoring program.
  • Execute RMF for assigned systems: categorize, select, implement, assess, authorize, and monitor controls (NIST SP 800-37/160/53/53A/82).
  • Drive continuous monitoring: control assessments, vulnerability scanning, patch verification, configuration audits, log reviews, and evidence collection.
  • Validate technical control implementation across OS, network devices, and cloud services; review hardening baselines and configuration drift.
  • Use existing tools and workflows to coordinate change control, incident management, and problem management aligned to security requirements.
  • Conduct risk assessments and security impact analyses; recommend mitigations aligned to mission risk tolerance.
  • Provide technical reviews and oversight for enforcement of secure baselines (CIS, STIGs).

Requirements

  • Bachelor’s degree in IT, cybersecurity, or related field; or equivalent experience.
  • 5+ years of hands-on systems and network engineering/administration experience.
  • Administering Windows and Linux servers, AD/Group Policy, endpoint management (e.g., MECM/SCCM, Red Hat OpenShift).
  • Network fundamentals and device administration (firewalls, routers, switches), VLANs, ACLs, VPNs, and routing.
  • Secure configuration baselines (CIS benchmarks, DISA STIGs) and hardening practices.
  • 3+ years as an ISSO equivalent or in a federal security compliance role.
  • Strong command of NIST RMF, SP 800-53/53A controls, and FISMA reporting.
  • Experience with vulnerability management tools (e.g., Tenable/Nessus, Qualys).
  • Experience with SIEM/log management (e.g., Splunk, Elastic); log parsing and correlation.
  • Strong communication skills; able to brief technical and non-technical stakeholders across a distributed, remote team.
  • U.S. citizenship.
  • Ability to obtain and maintain a Public Trust suitability determination.
Benefits
  • Medical
  • Dental
  • Vision
  • 401K
  • Other possible benefits as provided

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard skills
NIST RMFvulnerability scanningconfiguration auditsrisk assessmentssecurity impact analysesWindows server administrationLinux server administrationnetwork engineeringendpoint managementsecure configuration baselines
Soft skills
strong communication skillstechnical reviewsoversightcollaborationproblem management