Apply

Ready to go for it?

AI Apply speeds things up—apply directly if you prefer.

FREE ACCESS
5,000–10,000 jobs/day
JobTailor Logo

See all jobs on JobTailor

Search thousands of fresh jobs every day.

Discover
  • Fresh listings
  • Fast filters
  • No subscription required
Create a free account and start exploring right away.
NexGen Data Systems, Inc.

Risk Management Support Lead

NexGen Data Systems, Inc.

Risk Management Support Task Lead directing cybersecurity engineering for USTRANSCOM. Managing contract deliverables and leading compliance engineering teams for risk management operations.

Posted 6/19/2026full-timeSt. Louis • Illinois, Montana • 🇺🇸 United StatesSeniorWebsite

Tech Stack

Tools & technologies
ApacheCyber SecurityETLFirewallsLinuxOraclePythonSQLUnix

About the role

Key responsibilities & impact
  • Manage complex on-site contract deliverables and coordinate directly with the Government functional lead to align team activities with combatant command priorities.
  • Lead the technical execution of the RMF lifecycle across approximately 40 enterprise systems, independently evaluating security controls, tracking categorizations, and finalizing ATO packages.
  • Reconstruct and recommend advanced cybersecurity software tools and assist in the development of tool requirements and product-specific STIGs derived from applicable DISA SRGs.
  • Provide expert Information Systems Security Engineering (ISSE) lifecycle alignment in strict accordance with NIST SP 800-160 Volume I and Volume II trust and cyber resiliency models.
  • Supervise the execution of weekly automated network vulnerability scanning (ACAS), continuous risk dashboard monitoring, and verification against DISA STIG/SRG baselines.
  • Oversee the command’s Information Assurance Vulnerability Management (IAVM) program, managing the distribution of security alerts, tracking macro compliance trends, and processing complex POA&Ms.
  • Serve as the lead technical expert for Software Assurance (SwA) code diagnostics, utilizing automated application scanning tools (such as Fortify) to evaluate source code, tune configurations to eliminate false positives, and publish annual summary analysis logs.
  • Manage Security Control Assessor Representative (SCAR) workflows, performing rapid triage of all RMF-related submissions within strict 7-business-day service level thresholds.
  • Coordinate across the Joint Deployment and Distribution Enterprise (JDDE) to facilitate technical data-sharing, evaluate system reciprocity, and manage DoD Ports, Protocols, and Services Management (PPSM) registries.
  • Provide technical engineering oversight for the deployment of the Cybersecurity Readiness Framework (CRF), executing complex ETL data pipelines and analytics workloads using Databricks, Python, SQL, and Qlik.

Requirements

What you’ll need
  • Active Department of Defense Top Secret/SCI (Tier 5 Investigation) required.
  • Travel on-site to Scott Airforce Base required one week per quarter.
  • Must satisfy DoD 8570.01-M / DoDM 8140.03 Information Assurance Management (IAM) Level III baseline qualification requirements (e.g., active CISSP, CISM, or GSLC) at the commencement of work.
  • Must hold a validation/penetration testing credential (e.g., CEH, GPEN, LPT, or CEPT) and a Tenable Certified NESSUS Auditor (or ACAS equivalent) certification.
  • REQUIRED Foundational Qualification: Defense Cyber Crime Center (DC3) Cyber 101 course completion.
  • Bachelor's degree or related technical training in Computer Science, Engineering, Information Management, or a related mission-area professional discipline required.
  • A minimum of seven (7) years of progressive IT experience combined with at least five (5) years of direct, specialized Cybersecurity experience.
  • Proven expert experience conducting CCRI-level evaluations and hands-on proficiency with tools including VULNERATOR, eMASS, ACAS/NESSUS, and HBSS (ePO, HIPS, AV).
  • Deep engineering knowledge of core computing environments across varying Operating Systems (Windows, Unix/Linux), Boundary Defenses (firewalls, routers), and Web/Database services (SQL Server, Oracle, Apache, IIS).
  • Strong conceptual thinking and communication skills, with a documented track record of authoring high-fidelity Security Risk Assessments, standard operating procedures (SOPs), and technical analysis of alternatives (AoA) whitepapers.

Benefits

Comp & perks
  • Company covers 100% of premiums for the employee’s medical, dental, and vision insurance and subsidizes premiums for spouse and dependents.
  • Company provides short and long term disability plans.
  • 401(k) match up to 10% of the employee’s salary contributions to 401(K) plan.
  • Comprehensive training and development program.
  • 11 paid holidays and paid time off (PTO) accrual level starts at 15 days annually.

ATS Keywords

✓ Tailor your resume
Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools
cybersecurityinformation systems security engineeringrisk management frameworkvulnerability scanningpenetration testingdata analyticsETL data pipelinessource code evaluationsecurity control assessmenttechnical data-sharing
Soft Skills
leadershipcommunicationconceptual thinkingteam coordinationtechnical oversightproblem-solvinganalytical skillsauthoring technical documentsproject managementinterpersonal skills
Certifications
CISSPCISMGSLCCEHGPENLPTCEPTTenable Certified NESSUS AuditorDoD 8570.01-M IAM Level IIIDC3 Cyber 101