IA/Cybersecurity Specialist (Secret) (4499)

SMX is seeking Information Assurance/Cybersecurity Specialists (Junior, Mid, and Senior) with a foundation in information systems (IS), multi-cloud, network administration, systems administration, and cybersecurity. This role supports the design and implementation of secure, scalable multi-cloud infrastructure, applications, and services in support of enterprise cloud migration and mission-critical systems for the United States Air Force. Responsible for supporting or actively developing and implementing cybersecurity strategies, ensuring cloud accreditation success, and integrating best practice countermeasures to defend the platform and infrastructure against internal and external threats Services performed include, but are not limited to, designing, developing, engineering, and implementing integrated cloud security solutions that will ensure proprietary/confidential data and systems are protected. Gathers and organizes technical information about an organization's mission goals, and needs, existing security products, and ongoing programs in computer security in the strategic design process to translate security and business requirements into technical designs. Configures and validates secure cloud systems; tests security products and systems to detect security weaknesses. Conducts regular audits to ensure that systems are being operated securely and computer security policies and procedures are being implemented as defined in security plans. Duties include architecture design, system/network analysis, vulnerability and risk assessments, and security assessment of hardware and software. Performs duties on tasks that require expertise in firewall, cyber, cloud computing, implementation/configuration, physical security analysis of facilities, security assessment/risk analysis, security design of local area networks and wide area networks, security analysis of network operating systems and applications, continuity of operations, planning, policy development and disaster recovery.

Essential Duties & Responsibilities

• Assist in maintaining compliance with RMF and other DoD cybersecurity frameworks


• Collaborate with architects and developers to integrate security measures into systems throughout the development lifecycle


• Assess existing and potential system vulnerabilities, propose mitigation strategies, and provide incident response


• Support day-to-day vulnerability management and remediation tracking


• Help prepare and update security documentation, including POA&Ms and ATO artifacts


• Integrate cybersecurity best practices and countermeasures to detect and mitigate threats to the platform and supporting cloud infrastructure 


• Collaborate with mission stakeholders to align security controls with operational requirements.


• Maintain a continuous compliance posture via proactive vulnerability scanning, patch management, and incident response processes


• May assist with technical documentation, network diagrams, inventory control documentation, and security documentation


• Conduct or assist with Assured Compliance Assessment Solution (ACAS) scans

Required Skills & Experience 

• Must have High School diploma or Bachelor’s degree and minimum 1 year experience for junior-level. Must have Bachelor's degree or equivalent certification plus 3-6 years' experience for mid-level. Must have Bachelor's degree or equivalent certification plus 7 years' experience for senior-level. Must have Bachelor's degree or equivalent certification plus 10 years' experience for SME-level.


• Active Security Clearance Required: Secret


• DoD 8570 compliant certification: CompTia Sec+


• Relevant cybersecurity or IA experience for level being hired for


• Understanding of Zero Trust and modern DevSecOps concepts


• Knowledge of Windows operating environments


• Familiarity with RMF, NIST 800-53, STIGs, and cloud security principles

Desired Skills & Experience 

• Prior experience supporting United States Air Force cloud programs

Application Deadline:  September 29, 2025

#CJPOST

#LI-hybrid