Washington DC

Information Security SME

Job Specs

Cyber Defense
District of Columbia, United States

Job Description: Information Security Subject Matter Expert

XOR Security is currently seeking several talented Information Security SME to support an Agency-level Advanced Cyber Analytics team.


  • Travel to labs and participate in site assessments, which may include IC partners
  • Read and implement IA regulations and requirements per DOE-IN CISO’s direction; develop and maintain managerial, operational, and technical IA skillset
  • Comment on new ODNI/NIST standards / regulations as applies to client environment
  • Review A&A documentation (BOE) to assess whether system is deployed as designed and approved
  • Ensure best practices of security requirements are deployed for an information system
  • Analyze scan results, and document findings for compliance
  • Develop assessment programs
  • Respond to cyber incidents as defined in DOE-IN Incident Response and local SOP
  • Act as principle interface to IC-SCC with respect to exercise planning and execution
  • Maintain forensics and analysis environment
  • Integrate with CYSOC watch team in support of incident response
  • Comment on new ODNI/NIST standards / regulations as applies to client environment
  • Employ best practices when implementing security requirements and working on or in a system
  • Participate in IC Community exercises and working groups as applicable
  • Serve as a technical team or task leader
  • Maintain current knowledge of relevant technology as assigned
  • Respond to cyber incidents as defined in DOE-IN Incident Response and local SOP
  • Participates in special projects as required.

Required Qualification:

  • Must possess 15 years of information assurance experience with a bachelor’s degree in a technical field. Five of the 15 years must be technical experience effectively providing network and/or system administration, information assurance security testing, and evaluation duties
  • Familiar/proficient in all security domains
  • Experience in support to or development of cyber exercises is preferred
  • Knowledge of and experience supporting the IC, and national level system security initiatives and secure Information/Local Area Network (LAN)/Wide Area Network (WAN) technologies
  • Effective interpersonal and presentation skills, and the ability to communicate in written and oral form; publication or presentation experiences a plus
  • Experience reporting IT Security events/incidents in the time prescribed based on policies and procedures
  • Knowledge of cloud architecture
  • Preferred technical experience effectively provided network and/or system administration, and/ or computer operations
  • Knowledge of virtualization
  • Experience with forensics tools, Encase, IDA PRO, Wireshark, or similar capabilities, is preferred.
  • Must possess CISSP, CISA or CISM certification
  • Active Top-Secret Clearance required

Closing Statement:

XOR Security offers a very competitive benefits package including health insurance coverage from the first day of employment, 401k with a vested company match, vacation and supplemental insurance benefits.

XOR Security is an Equal Opportunity Employer (EOE). M/F/D/V.

Citizenship Clearance Requirement
Applicants selected may be subject to a government security investigation and must meet eligibility requirements - US CITIZENSHIP and TOP SECRET/SCI CLEARANCE REQUIRED.