Demo

Senior Secure Configuration Management (SecCM) Specialist

Cherokee Federal
Independence, KS Full Time
POSTED ON 4/1/2026 CLOSED ON 6/6/2026

What are the responsibilities and job description for the Senior Secure Configuration Management (SecCM) Specialist position at Cherokee Federal?

Security Configuration Management Lead

Criterion Systems is seeking an experienced Security Configuration Management Lead to manage and optimize security configuration management (SCM) processes at the U.S. National Science Foundation (NSF). This role involves coordinating across teams to ensure NSF systems remain secure, compliant with federal regulations, and align with cybersecurity best practices. This position will report to the Cybersecurity Oversight and Compliance Team Lead.

The ideal candidate will have a strong background in IT security, configuration management, and federal environments, with expertise in customizing Security Technical Implementation Guides (STIGs) and Center for Internet Security (CIS) benchmarks using NASL (Nessus Attack Scripting Language) for integration with Tenable.sc and Nessus.

Key Responsibilities

  • Lead enterprise Secure Configuration Management in alignment with NIST, DHS/CISA, and OMB requirements.
  • Configure, manage, and optimize credentialed scans in Tenable Security Center (Dev environment) for OS, databases, network devices, applications, and cloud‑hosted systems.
  • Customize and maintain DISA STIG and CIS audit files to align with NSF‑approved baselines and documented deviations.
  • Validate findings, reduce false positives, and coordinate remediation with system owners and administrators.
  • Develop, maintain, and govern secure configuration baselines for Windows, Linux, databases, network devices, and cloud platforms.
  • Support RMF activities and control assessments for CM and RA domains (e.g., CM‑2, CM‑6, RA‑5); contribute to continuous monitoring.
  • Produce metrics, dashboards, and executive reports that show configuration posture, risk trends, and remediation progress.
  • Provide technical guidance and secure build standards; supply audit evidence, scan artifacts, and documentation.
  • Maintain a master tracker of NSF baselines and deliver weekly status reports on baseline progress to management.

Required Qualifications

  • Bachelor’s degree in Cybersecurity, Information Technology, or related field, or equivalent experience.
  • 7 years in vulnerability management and/or secure configuration management.
  • Hands‑on administration of Tenable Security Center (Tenable.sc) for credentialed scans.
  • Proven experience customizing and troubleshooting STIG and CIS audit files.
  • Deep knowledge of DISA STIGs, CIS Benchmarks, and federal configuration requirements.
  • Strong hardening expertise across Windows, Linux, and network devices; database experience (e.g., MS SQL, PostgreSQL).
  • Experience supporting RMF and continuous monitoring programs.
  • Ability to analyze scan data, prioritize risk, and communicate clearly to technical and non‑technical stakeholders.

Preferred Qualifications

  • Experience in federal government environments.
    • Relevant certifications: Security , CISSP, CEH, or Tenable certifications.
    • Scripting skills (PowerShell, Bash, Python) to automate compliance validation and reporting.
    • Familiarity with enterprise change and configuration management processes.
Key Competencies

  • Deep technical knowledge of OS, database, and network hardening.
  • Strong analytical and problem‑solving skills; bias for action.
  • Ability to translate policy and control requirements into practical technical configurations.
  • Clear, concise written and verbal communication for audit and executive audiences.

Work Environment

  • Collaborative, mission‑driven team environment across federal and contractor personnel.
  • Remote position; reports to the Cybersecurity Oversight and Compliance Team Lead at NSF (Alexandria, VA).
  • Enterprise scope; frequent coordination with system owners, administrators, ISSOs, and other security stakeholders.

#AppC

Salary.com Estimation for Senior Secure Configuration Management (SecCM) Specialist in Independence, KS
$85,650 to $105,632
If your compensation planning software is too rigid to deploy winning incentive strategies, it’s time to find an adaptable solution. Compensation Planning
Enhance your organization's compensation strategy with salary data sets that HR and team managers can use to pay your staff right. Surveys & Data Sets

What is the career path for a Senior Secure Configuration Management (SecCM) Specialist?

Sign up to receive alerts about other jobs on the Senior Secure Configuration Management (SecCM) Specialist career path by checking the boxes next to the positions that interest you.
Income Estimation: 
$96,909 - $123,624
Income Estimation: 
$123,547 - $153,210
Income Estimation: 
$87,093 - $107,335
Income Estimation: 
$111,725 - $147,313
Income Estimation: 
$112,673 - $137,290
Income Estimation: 
$140,233 - $181,029
Income Estimation: 
$161,209 - $233,553
This job has expired.
Employees: Get a Salary Increase
View Core, Job Family, and Industry Job Skills and Competency Data for more than 15,000 Job Titles Skills Library

Job openings at Cherokee Federal

Defense Trade Analyst III
Apply
  • Cherokee Federal Washington, DC
  • This position requires an active Secret clearance*** The Defense Trade Analyst III will be responsible for reviewing, analyzing, and evaluating cases in va... more
  • 1 Day Ago
Compliance Analyst II
Apply
  • Cherokee Federal Washington, DC
  • This position requires an active SECRET clearance to be considered. *** The Compliance Analyst II will ensure compliance with U.S. export laws and regulati... more
  • 1 Day Ago
Program Manager
Apply
  • Cherokee Federal Pryor, OK
  • As required by our governmental client, this position requires being a US Citizen. Manages and maintains various facets of assigned programs, including tim... more
  • 1 Day Ago
Senior Proposal Manager
Apply
  • Cherokee Federal Tulsa, OK
  • Senior Proposal Manager Interpret solicitation requirements or source selection regulations and coordinate Tier 1 proposal response strategy for large ($30... more
  • 1 Day Ago
View More Jobs at Cherokee Federal

Not the job you're looking for? Here are some other Senior Secure Configuration Management (SecCM) Specialist jobs in the Independence, KS area that may be a better fit.

Configuration Management Specialist
Apply
  • Mid Continent Controls, Inc Derby, KS
  • Job Summary: Under the direct supervision of the Operations Support Manager, the Configuration Control Coordinator performs general duties pertaining to co... more
  • 1 Month Ago
Onsite Specialist
Apply
  • Adams Brown Technology Specialist LLC Wichita, KS
  • Description Position Summary We are looking for IT professionals with an entrepreneurial drive to support our clients and contribute to a fast-paced team a... more
  • 1 Month Ago
View More Jobs

AI Assistant is available now!

Feel free to start your new journey!