Secure Configuration Management (SCM) Subject-Matter Expert/Technical Lead

Job Summary:
Our client is seeking a Secure Configuration Management (SCM) Subject-Matter Expert / Technical Lead to join their team! This position is located in Bethesda, Maryland. 
 
Duties:

• Develop, implement, and maintain agency-specific secure configuration baselines for operating systems: Windows, Linux, macOS, enterprise services, applications, and platforms including Microsoft 365 and cloud environments: AWS, GCP, Azure
• Assess and interpret federal regulations, compulsory directives, and agency policies to create secure configuration standards
• Create and manage technical control sets, such as baseline compliance scanning policies, and track deviations from established baselines
• Configure and manage Group Policy Objects (GPOs), Mobile Device Management (MDM) tools, and automation solutions to enforce security standards
• Utilize enterprise scanning tools to validate compliance and identify remediation opportunities
• Serve as technical lead, providing guidance to stakeholders on secure configuration implementation and ensuring enterprise-wide consistency
• Lead collaboration forums and working groups across broad stakeholder groups, including cybersecurity and IT operations communities
• Produce high-quality technical documentation, including SOPs, risk assessments, business justifications, executive summaries, and program guidance
• Ensure alignment of configuration baselines with mission and business requirements
• Mentor and advise technical teams on secure configuration best practices and compliance standards

Desired Skills/Experience:

• Demonstrated advanced knowledge of enterprise configuration standards and compliance frameworks, including CIS Benchmarks, NIST SP 800-53 rev 5, NIST Baseline Checklist Repository, and CISA BOD 25-01 SCuBA Secure Configuration Baselines
• Hands-on experience developing and implementing secure baselines for multiple operating systems and enterprise applications
• Proficiency in GPO management, MDM tools, configuration automation, and baseline deviation tracking
• Experience with enterprise scanning tools for compliance validation: Tenable.SC, Nessus, SCAP
• Strong technical writing skills for business justifications, risk assessments, SOPs, workflows, and executive briefings.
• Demonstrated ability to lead collaborative forums and working groups across broad stakeholder communities
• Proven experience guiding stakeholders in secure configuration implementation and ensuring enterprise-wide consistency
• Strong problem-solving and analytical skills for assessing configuration gaps and recommending effective remediation
• Excellent verbal and written communication skills, with the ability to convey complex security concepts to technical and executive audiences

Benefits:

• Medical, Dental, & Vision Insurance Plans
• Employee-Owned Profit Sharing (ESOP)
• 401K offered

The approximate pay range for this position is between $95.00 and $125.00. Please note that the pay range provided is a good faith estimate. Final compensation may vary based on factors including but not limited to background, knowledge, skills, and location. We comply with local wage minimums.