Title: Cybersecurity Assessment and Authorization Subject Matter Expert (SME)
Location: Remote
Clearance Required: DoD Secret clearance
Position Type: Full-Time
About VivSoft:
At VivSoft, we aim to solve complex federal problems using emerging and open technologies in a collaborative and rewarding environment. VivSoft is a diverse team of strategists, engineers, designers, and creators experienced in building high performance effective softwares, with impactful organizational design and organizational dynamics for software delivery. We build secure Software Factories based on DoD reference designs and NIST Frameworks for Cloud and DevSecOps. These factories deliver AI/ML Applications, Data Science Platforms, Blockchain and Microservices for DoD, Healthcare and Civilian Agencies
Job Summary
The Defense Logistics Agency (DLA) is seeking an experienced Cybersecurity Assessment and Authorization (A&A) Subject Matter Expert (SME) to support the sustainment and security of the Contingency and Adaptive Planning Software Integration System (CAPSIS), a mission‑critical analytics platform operating on the classified SIPRNet.
This role serves as the technical authority for RMF/ATO activities, ensuring continuous compliance with DoD Information Assurance (IA) requirements, NIST 800‑53, DISA STIGs, and CCRI standards throughout the system lifecycle. The SME will work closely with DLA IA, cybersecurity, infrastructure, and program teams while briefing senior leadership on risk posture and authorization status.
Job Responsibilities
Skills Required
Certifications Required
Preferred Skills
Benefits
Location: Remote
Clearance Required: DoD Secret clearance
Position Type: Full-Time
About VivSoft:
At VivSoft, we aim to solve complex federal problems using emerging and open technologies in a collaborative and rewarding environment. VivSoft is a diverse team of strategists, engineers, designers, and creators experienced in building high performance effective softwares, with impactful organizational design and organizational dynamics for software delivery. We build secure Software Factories based on DoD reference designs and NIST Frameworks for Cloud and DevSecOps. These factories deliver AI/ML Applications, Data Science Platforms, Blockchain and Microservices for DoD, Healthcare and Civilian Agencies
Job Summary
The Defense Logistics Agency (DLA) is seeking an experienced Cybersecurity Assessment and Authorization (A&A) Subject Matter Expert (SME) to support the sustainment and security of the Contingency and Adaptive Planning Software Integration System (CAPSIS), a mission‑critical analytics platform operating on the classified SIPRNet.
This role serves as the technical authority for RMF/ATO activities, ensuring continuous compliance with DoD Information Assurance (IA) requirements, NIST 800‑53, DISA STIGs, and CCRI standards throughout the system lifecycle. The SME will work closely with DLA IA, cybersecurity, infrastructure, and program teams while briefing senior leadership on risk posture and authorization status.
Job Responsibilities
- Serve as the Cybersecurity A&A SME for CAPSIS and associated systems
- Lead and support RMF authorization and ATO sustainment activities
- Assess, validate, and implement NIST 800‑53 security controls across large, complex DoD environments
- Conduct and support CCRI inspections, vulnerability assessments, and penetration testing
- Develop, maintain, and validate RMF artifacts (SSP, SAR, POA&M, control evidence)
- Analyze vulnerabilities, determine severity levels, and assess authorization impact
- Track and manage POA&M entries, remediation actions, and milestone dates
- Ensure compliance with DISA STIGs, SCAP, IAVMs, and DoD cybersecurity policies
- Collaborate with DLA IA teams, CERT, system owners, and infrastructure teams
- Produce audit‑ready reports, risk assessments, and compliance dashboards
- Brief senior leadership on RMF progress, risks, and authorization status
- Support knowledge transfer to enable long‑term DLA system sustainment
Skills Required
- Must possess a active DoD Secret Clearance
- Minimum 7 years of IT experience, including 5+ years in RMF / NIST A&A
- Strong DoD cybersecurity experience supporting classified environments
- Expertise in RMF, ATO, NIST 800‑53, DISA STIGs, SCAP, CCRI
- Experience assessing security controls for large, complex enterprise systems
- Proficiency in POA&M management, vulnerability analysis, and risk assessment
- Experience documenting and developing STIGs, TCG configuration guides, IAVMs, and Task Orders
- Strong analytical and problem‑solving skills with attention to detail
- Proficiency with ACAS, Tanium, and vulnerability scanning tools
- Experience producing audit‑ready reports, dashboards, and trend analysis
- Strong written and verbal communication skills, including leadership briefings
- Ability to work independently with minimal oversight
Certifications Required
- CISSP and/or CISM
- Required training certifications in ACAS and Tanium
- DLA‑approved Computing Environment (D‑Account access)
Preferred Skills
- Prior experience supporting DLA or other DoD agencies
- Experience working in classified (SIPRNet) environments
- Familiarity with SAS platforms or enterprise analytics systems
- Experience supporting cloud or hybrid cloud environments
- Knowledge of ICS / OT security or emerging technologies
- Experience supporting logistics, supply chain, or contingency planning systems
- Advanced reporting and analytics using Excel, Power BI, Access, Power Platform
Benefits
- Comprehensive Medical, Dental, and Vision Plans (Healthcare benefits are 100% employer-paid for employees only)
- Life Insurance
- Paid Time Off (Flexible/Combined PTO, Bereavement Leave, 11 Company Paid Holidays)
- 401K Retirement Plan with employer match
- Professional Development Training Reimbursement.