Cybersecurity SME

Odyssey Systems has an exciting opportunity for a Cybersecurity SME (Principal) supporting the Air Force Life Cycle Management Center/PEO Electronic Systems Directorate (AFLCMC/HB) within the HBU Force Protection Division at Hanscom AFB.

Cybersecurity support will ensure all system and application deliverables comply with DoD and Air Force cybersecurity policies, including DoDI 8500.01, DoDI 8510.01 (RMF for DoD IT), DISA STIG requirements, DoDI 8520.02 (PKI/PK Enabling), DoD 8140.02, and DoD 8570.01-M certifications for cybersecurity workforce compliance. Responsibilities include implementing cybersecurity policy across acquisition programs, guiding RMF activities, managing cyber risks, securing systems, ensuring classified information accountability, and providing acquisition security support across the program lifecycle.

In this Advisory and Assistance Services (A&AS) role, you will provide expert-level cybersecurity support to Department of Defense (DoD) programs by assisting government leadership with decision-making, planning, and execution throughout the acquisition lifecycle. You will apply your technical and/or professional expertise to ensure compliance with applicable DoD and Air Force cybersecurity policies and regulations, contribute to mission success, and help deliver secure, mission-ready capabilities to the warfighter.

Duties include, but not limited to:

Ensure all systems, applications, and deliverables comply with DoD cybersecurity policies, RMF accreditation requirements, and DISA STIG application security standards.

• Support development of security documentation, including System Security Management Plans, Program Protection Plans, Security Risk Analyses, OPSEC Plans, and Security CONOPS.

• Assess and guide quality and completeness of RMF A&A activities and artifacts for DoD and Air Force compliance.

• Update, monitor, and manage program cybersecurity data, system user accounts, PKI access, ports/protocols, and security configurations.

• Recommend cybersecurity policies, procedures, and security controls to prevent unauthorized access and ensure system integrity, confidentiality, and availability.

• Conduct risk and vulnerability assessments, system security evaluations, contingency planning, and disaster recovery procedures.

• Promote cybersecurity awareness and ensure security principles are applied throughout program planning and execution.

• Provide leadership in analyzing and testing cybersecurity requirements across system design, development, integration, and implementation.

• Develop risk-based mitigation strategies and assess security controls implementation in open systems architecture designs.

• Support acquisition security tasks, including source selection security, review of Contractor deliverables, security surveys, and updates to security classification guides.

• Provide classified information protection, including inventory management, access control verification, security education, FMS case management support, and compliance with System Security Classification Guides (SSCG).

• Maintain security databases for classified materials, conduct audits of holdings, and support security awareness training.

• Support development and implementation of communications security programs, acquisition security policies, and operational security practices.

• Collaborate with Authorizing Officials and stakeholders to ensure system approval through the RMF A&A process.

• Prepare and review acquisition program documentation for cybersecurity compliance.

• Conduct security assessments, evaluations, and hardware reviews throughout the program lifecycle.

Citizenship: Must be a US citizen

Clearance: Must have an Active Secret Clearance

Education: Bachelor's Degree in a related field and 25 years of experience, with 15 years in the DoD

• OR 30 years of directly related experience with proper certifications, with 20 years in the DoD

Education: Master's or Doctorate Degree in a related field and at least 20 years of experience, with 12 years in the DoD

• Understanding of DoD cloud infrastructure cybersecurity

• Familiarity with Agile, CI/CD, DevSecOps, and DevOps methods

• Strong written and verbal communication skills on highly technical cybersecurity topics

• Cybersecurity policy compliance (DoDI 8500.01, 8510.01, 8520.02)

• RMF A&A process implementation and accreditation artifact development

• Risk and vulnerability assessments, mitigation strategies, and contingency planning

• DISA STIG application security scanning and remediation

• Classified information protection, security classification guide development, and FMS case management support

• Ability to collaborate with Authorizing Officials, stakeholders, and system developers

• Strong communication and briefing skills for technical cybersecurity documentation

• Ability to provide leadership and guidance on security policy implementation across multiple systems

Additional Information

Location: Onsite, Hanscom AFB, Bedford, MA

Travel: Travel may be required for cybersecurity assessments or incident response

#LI-DD1

Odyssey Systems is a world-class technical, engineering, and integration company serving the warfighting ecosystem with airborne integration, ISR, C2, and warfighter readiness capabilities. Odyssey meets the military's operational needs by integrating layered defense systems from equipment, technology, and services to data, information, and business operations. We streamline defense acquisition and sustainment, engineering the technical battlefield with domain-specific proficiency to ensure lethality. Odyssey is dedicated to excellent contract execution, peak organizational performance, and fostering a workplace built on employee care.

Odyssey is proud to live out our core values of commitment, ambition, and respect in our work and communities through OdysseyCares, a philanthropic group focused on giving back through direct donations, an employer match program, and volunteering events.

Please note: Final compensation for this position will be determined by various factors such as the Federal Government contract labor categories and contract wage rates, relevant work experience, specific skills and competencies, geographic location, education, and certifications.

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities