Cyber Security Specialist

Title: Cyber Security Specialist
Location: Remote
Clearance Required: Top Secret with SCI eligibility
Position type: Full-time

About VivSoft:
At VivSoft, we aim to solve complex federal problems using emerging and open technologies in a collaborative and rewarding environment. VivSoft is a diverse team of strategists, engineers, designers, and creators experienced in building high-performance, effective software, with impactful organizational design and organizational dynamics for software delivery. We build secure Software Factories based on DoD reference designs and NIST Frameworks for Cloud and DevSecOps. These factories deliver AI/ML Applications, Data Science Platforms, Blockchain and Microservices for DoD, Healthcare and Civilian Agencies

Job Summary
The Cyber Security Specialist will support a mission-critical program for the Defence Counterintelligence and Security Agency (DCSA), contributing to the security, operations, and continuous enhancement of the OPIS (OPM PIPS Imaging System) within the National Background Investigation Services (NBIS) environment. This role focuses on maintaining a strong security posture for systems operating in a secure AWS IL5 cloud environment, ensuring compliance with DoD cybersecurity requirements and supporting the full Risk Management Framework (RMF) lifecycle.
The ideal candidate will bring deep experience in federal cybersecurity operations, authorization processes, and collaboration with engineering and DevSecOps teams to ensure secure, resilient systems that support national security missions.

Job Responsibilities

• Perform security assessments of applications and infrastructure to identify vulnerabilities and ensure compliance with DoD cybersecurity standards
• Support RMF activities, including system authorization (ATO), control validation, and continuous monitoring
• Develop, review, and maintain security documentation such as System Security Plans (SSP), POA&Ms, SARs, and accreditation artifacts
• Collaborate with ISSOs, ISSMs, cybersecurity teams, and system engineers to ensure security controls are properly implemented and maintained
• Manage and maintain eMASS packages for system authorization and compliance tracking
• Conduct vulnerability assessments and coordinate remediation activities aligned with STIGs and NIST SP 800‑53 controls
• Monitor systems for security incidents and support incident response activities, including analysis, reporting, and mitigation
• Ensure compliance with DoD cybersecurity policies, including DoDI 8530.01 and related guidance
• Support DevSecOps initiatives by integrating security best practices into CI/CD pipelines and Agile development workflows
• Participate in security audits, inspections, and continuous process improvement activities
• Contribute to maintaining a compliant, secure, and auditable cybersecurity posture across the system lifecycle

Required Skills & Qualifications

• Active Top-Secret clearance with SCI eligibility
• CISSP or CISM certification (DoD 8570 / 8140 compliant)
• 10+ years of cybersecurity experience supporting DoD or federal systems
• Strong hands‑on experience with RMF and ATO processes
• Proven experience managing eMASS security authorization packages
• In‑depth knowledge of NIST SP 800‑53, STIGs, and DoD cybersecurity policies
• Experience with vulnerability management tools and remediation processes
• Familiarity with AWS cloud environments, with preference for IL5 or other secure cloud environments
• Experience working in Agile and DevSecOps environments
• Strong communication skills and ability to work with cross‑functional technical and government teams

Preferred Skills

• Experience supporting NBIS, OPIS, or other federal background investigation systems
• Familiarity with container security, CI/CD pipeline security, and automation tools
• Experience supporting continuous monitoring (ConMon) programs
• Knowledge of cloud security tools and services within AWS
• Prior experience supporting mission‑critical or classified DoD programs
• Ability to contribute to cybersecurity process maturity and best‑practice implementation

Benefits

• Comprehensive Medical, Dental, and Vision Plans (Healthcare benefits are 100% employer-paid for employees only)
• Life Insurance
• Paid Time Off (Flexible/Combined PTO, Bereavement Leave, 11 Company Paid Holidays)
• 401K Retirement Plan with employer match
• Professional Development Training Reimbursement
• Flexible/remote work schedules