Cyber Subject Matter Expert

at  Amentum

The Cyber Security SME will lead the evaluation and implementation of advanced security technologies, including zero trust architectures and cloud security controls. Responsibilities include driving risk management strategies, overseeing large-scale incident response exercises, and ensuring compliance with regulatory requirements. The ideal candidate will have 10+ years of experience, extensive knowledge of cybersecurity frameworks, and strong communication skills for advising executive leadership on security strategies.

Responsibilities:

• Provide expert guidance on strategic cybersecurity initiatives, helping the organization develop and implement long-term security strategies and frameworks.
• Serve as a trusted advisor to senior management, offering insights on advanced security technologies, threat mitigation strategies, and risk management practices.
• Lead the evaluation and implementation of cutting-edge security solutions, including zero trust architectures, cloud security controls, and advanced threat detection systems.
• Conduct system vulnerability and compliance assessments and remediation across OS, Cloud, and Infrastructure as Code environments, with a strong emphasis on these areas over network scanning.
• Drive the development and execution of a comprehensive risk management strategy, prioritizing the protection of critical assets against emerging cyber threats.
• Collaborate with legal, compliance, and audit teams to ensure alignment with regulatory requirements (e.g., HIPAA, PCI-DSS, GDPR).
• Oversee large-scale incident response exercises and simulations, ensuring readiness to handle sophisticated attacks such as nation-state cyber campaigns or ransomware incidents.
• Mentor and develop internal cybersecurity talent, fostering a culture of continuous improvement and learning.

Qualifications:

• 10+ years of experience in cybersecurity, with a proven track record in risk management, threat mitigation, and security strategy development.
• Extensive knowledge of cybersecurity frameworks (e.g., NIST, ISO 27001), compliance regulations, and industry best practices.
• Exceptional communication skills with the ability to convey complex security topics to executive leadership and non-technical stakeholders.
• Experience in leading cybersecurity teams and advising C-level executives on security investments and risk management priorities.
• Advanced knowledge of emerging security technologies, cloud security, and threat intelligence.

Amentum is proud to be an Equal Opportunity Employer. Our hiring practices provide equal opportunity for employment without regard to race, religion, color, sex, gender, national origin, age, United States military veteran’s status, ancestry, sexual orientation, gender identity, marital status, family structure, medical condition including genetic characteristics or information, veteran status, or mental or physical disability so long as the essential functions of the job can be performed with or without reasonable accommodation, or any other protected category under federal, state, or local law. Learn more about your rights under Federal EEO laws and supplemental language at EEO including Disability/Protected Veterans and Labor Laws Posters

• Provide expert guidance on strategic cybersecurity initiatives, helping the organization develop and implement long-term security strategies and frameworks.
• Serve as a trusted advisor to senior management, offering insights on advanced security technologies, threat mitigation strategies, and risk management practices.
• Lead the evaluation and implementation of cutting-edge security solutions, including zero trust architectures, cloud security controls, and advanced threat detection systems.
• Conduct system vulnerability and compliance assessments and remediation across OS, Cloud, and Infrastructure as Code environments, with a strong emphasis on these areas over network scanning.
• Drive the development and execution of a comprehensive risk management strategy, prioritizing the protection of critical assets against emerging cyber threats.
• Collaborate with legal, compliance, and audit teams to ensure alignment with regulatory requirements (e.g., HIPAA, PCI-DSS, GDPR).
• Oversee large-scale incident response exercises and simulations, ensuring readiness to handle sophisticated attacks such as nation-state cyber campaigns or ransomware incidents.
• Mentor and develop internal cybersecurity talent, fostering a culture of continuous improvement and learning