Senior Cybersecurity/Chief Information Officer SME

SENIOR CYBERSECURITY/CHIEF INFORMATION OFFICER SME

Key Personnel Position Description

POSITION OVERVIEW

We are seeking an exceptional Senior Cybersecurity/Chief Information Officer Subject Matter Expert to serve as the Key Personnel lead supporting the DoD Military Community and Family organization. This is a critical leadership position requiring extensive DoD cybersecurity expertise and the ability to serve as an authoritative expert on Risk Management Framework, Zero Trust Architecture, and enterprise cybersecurity initiatives.

LOCATION

• Primary: Remote/Contractor Facility
• Secondary: Monthly onsite support in Alexandria, VA
• Travel: Occasional CONUS/OCONUS travel as required
  
  

SECURITY CLEARANCE

• Required: Active Secret (minimum)
• Preferred: Active Top Secret with eligibility for TS/SCI
  
  

REQUIRED QUALIFICATIONS

Experience Requirements

• Minimum 20 years of experience in DoD IT and Cybersecurity environments
• Minimum 20 years of experience supporting DoD C&A/A&A (Certification & Accreditation/Assessment & Authorization) activities, with demonstrated expertise across the evolution of DoD's risk management frameworks:
• DITSCAP (legacy)
• DIACAP (legacy)
• Current Risk Management Framework (RMF)
• Direct involvement in ATO processes including package development, control implementation, continuous monitoring, and coordination with Authorizing Officials
• Minimum 10 years supporting Department of Defense IT and Cybersecurity programs equivalent or Service Headquarters level
• Minimum 7 years serving in a DoD CIO and Authorizing Official (AO) or equivalent capacity

Required Certifications (must possess one):

• Global Security Leadership Certification (GSLC)
• Certified Information Systems Security Professional (CISSP)
• Certified Information Systems Manager (CISM)
• Another Level 3 authorized IAT/IAM certification per DoDD 8140.01 and DoD Cyber Workforce Management Program
  
  

PRIMARY RESPONSIBILITIES

Strategic Leadership

• Serve as principal cybersecurity advisor to CIO and Authorizing Official
• Lead enterprise-wide Zero Trust Architecture implementation
• Drive compliance with DoD cybersecurity mandates and DISA requirements
• Provide executive-level briefings on cybersecurity posture and risk management
  
  

Risk Management Framework:

• Oversee 6 active RMF packages in eMASS platform
• Serve as expert on NIST SP 800-53 Rev. 5.1.1 control families
• Develop and maintain System Security Plans (SSPs), Security Assessment Reports (SARs)
• Manage Plan of Action & Milestones (POA&M) remediation efforts
• Prepare ATO/ATO-C/IATT/dATO letters and appointment documentation
  
  

Technical Expertise:

• Lead cybersecurity architecture reviews aligned with DoDAF standards
• Oversee vulnerability assessments and penetration testing programs
• Direct STIG/SRG compliance initiatives across MC&FP enterprise
• Guide Software Assurance (SwA) and secure DevOps practices
• Implement continuous monitoring and threat hunting strategies
  
  

AI/ML Innovation:

• Oversee development of AI-powered SOP documentation system (90-day delivery)
• Direct creation of ML solution for automated RMF control validation (120-day delivery)
• Ensure AI implementations comply with Executive Order on Safe, Secure, and Trustworthy AI
  
  

Program Management:

• Lead team of cybersecurity professionals and technical specialists
• Coordinate with multiple stakeholders including DoD CIO, DISA, US Cyber Command
• Manage complex deliverable schedules with monthly and quarterly requirements
• Oversee transition activities and knowledge transfer processes
  
  

DESIRED QUALIFICATIONS

• Experience with AWS GovCloud environments (IL2, IL4, IL5)
• Familiarity with MC&FP mission and military family support programs
• Knowledge of Defense Business Systems certification processes
• Experience with DCIPS or casualty management systems
• Understanding of Section 508 accessibility requirements
• Previous experience as contractor Key Personnel on major DoD contracts
  
  

TECHNICAL ENVIRONMENT

• AWS GovCloud (Production, Pre-production, Test, Development environments)
• Technologies: Windows/.NET, Java J2EE, Angular, WordPress, Oracle APEX
• Databases: SQL Server, Oracle, MySQL, PostgreSQL
• Security Tools: eMASS, STIG Viewer, various SAST/DAST platforms
• Languages: PowerShell, Linux Bash, HTML/CSS, XML, PHP
  
  

KEY DELIVERABLES

This position will be responsible for ensuring timely delivery of:

• Monthly Status Reports and cybersecurity metrics
• Quarterly Technical Status Meeting presentations
• Annual RMF gap analyses and template updates
• Zero Trust architecture roadmaps and implementation plans
• AI/ML solution deployment and documentation
• Security assessment reports and remediation strategies
  
  

COMPENSATION

Competitive salary commensurate with experience and qualifications. This is a Key Personnel position with commitment requirements through the full period of performance.

Commitment Requirements

• Must be available to start on contract Project Start date (January 16, 2026 )
• Must commit to remain in position for duration of contract performance
  
  

About Blue Sky

Blue Sky Innovative Solutions (Blue Sky) assists its federal, state and local, and commercial clients with solving their toughest challenges in the areas of IT Infrastructure Support and Engineering; Application Development and Maintenance; Program and Project Management; and Management Consulting. Find out more about Blue Sky at www.bsis-llc.com. Blue Sky is an equal opportunity employer and recruits mission-oriented, proactive, skilled candidates from across the United States. As an SBA certified HUBZone small business, Blue Sky has a special interest in recruiting and hiring personnel who reside in HUBZones. To determine whether you reside in a HUBZone, visit http://map.sba.gov/hubzone/maps/ . All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or status as a protected veteran.