Secure Configuration Management SME/Technical Lead jobs in United States
cer-icon
Apply on Employer Site
company-logo

MBL · 3 months ago

Secure Configuration Management SME/Technical Lead

positionBethesda, MD
timeFull-time
remoteOnsite
senioritySenior Level
date5+ years exp

MBL Technologies, Inc. offers a diverse set of management and technology consulting services to Federal government and commercial markets. They are seeking a Secure Configuration Management (SCM) Subject-Matter Expert (SME) / Technical Lead to support a federal cybersecurity mission focused on strengthening enterprise security posture through standardized configuration management. The successful candidate will serve as the technical authority and program lead for the design, development, and implementation of secure configuration baselines across diverse operating systems, cloud services, and enterprise applications.

AdviceProject ManagementProperty ManagementReal Estate
check
Growth Opportunities

Responsibilities

Lead the development, validation, and implementation of agency-specific secure configuration baselines in alignment with federal standards and frameworks such as: CIS Benchmarks, NIST SP 800-53 Rev.5, NIST Baseline Checklist Repository, and CISA BOD 25-01 SCuBA Secure Configuration Baselines
Assess foundational standards, federal directives, and agency policies to develop tailored baselines supporting both mission and business objectives
Develop and maintain implementation resources such as Group Policy Objects (GPOs), BigFix fixlets, and configuration templates for Windows, macOS, and Linux operating systems, as well as enterprise platforms (e.g., Microsoft 365, AWS, Azure, GCP, web browsers, and databases)
Ensure secure configuration standards are consistently applied across all systems and environments, including on-premises, hybrid, and cloud infrastructures
Utilize and manage MDM and configuration management tools such as BigFix, Intune, and Jamf for baseline deployment, automation, and deviation tracking
Develop and maintain technical control sets, including compliance scanning policies and automated enforcement mechanisms
Integrate and operate enterprise scanning tools (e.g., Tenable.SC, Nessus, SCAP) for secure configuration validation and reporting
Conduct continuous compliance assessments and ensure baselines are aligned with evolving federal mandates, risk management frameworks, and agency cybersecurity objectives
Lead cross-organizational configuration management working groups that include cybersecurity, IT operations, and system administration stakeholders
Collaboratively develop and refine secure configuration standards that balance compliance with mission and operational requirements
Serve as the technical lead and advisor guiding stakeholders through the design, testing, and enforcement of configuration controls and enterprise hardening initiatives
Provide executive-level briefings, technical guidance, and recommendations to senior leadership on configuration management compliance and risk posture
Produce and maintain comprehensive documentation, including Standard Operating Procedures (SOPs), business justifications, risk assessments and mitigation plans, technical implementation guides, executive summaries, and progress reports
Create and deliver clear, actionable technical and programmatic guidance to multiple audiences, from engineers to executives

Qualification

Secure Configuration ManagementFederal Cybersecurity FrameworksGPO ManagementCompliance Scanning ToolsMDM ToolsTechnical DocumentationLeadership ExperienceTeam CoordinationCloud Platform ConfigurationContinuous MonitoringRisk Management FrameworkTechnical GuidanceCommunication Skills

Required

Demonstrated expertise in secure configuration management, hardening, and compliance across enterprise environments
Advanced knowledge of federal cybersecurity frameworks and standards, including CIS Benchmarks, NIST SP 800-53 Rev. 5, NIST Baseline Checklist Repository, and CISA SCuBA Secure Configuration Baselines
Proficiency in GPO management, configuration automation, and MDM tools (e.g., Jamf, BigFix, Intune)
Experience with enterprise compliance scanning and validation tools, including Tenable.SC, Nessus, or SCAP
Ability to develop, maintain, and track baseline compliance scanning policies and deviation reports
Exceptional written and verbal communication skills for developing technical documentation and executive briefings
Proven leadership experience guiding technical teams and coordinating with stakeholders to achieve enterprise-wide configuration compliance

Preferred

Bachelor's degree in computer science, Information Technology, Cybersecurity, or a related field (preferred)
5+ years of experience managing secure configuration management programs in large-scale enterprise or federal environments
Industry certifications such as CISSP, CISM, CAP, CompTIA Security+, or GCCC (GIAC Critical Controls Certification)
Experience with secure configuration of cloud platforms (AWS, Azure, GCP) and enterprise collaboration tools (Microsoft 365)
Familiarity with federal cybersecurity programs and continuous monitoring initiatives (e.g., CDM, FISMA, RMF)

Benefits

Medical
Dental
Vision
STD
Accident
Life
Hospital Insurance
FSA
HSA
401K match
Professional development stipend
Incentive plans with corporate and individual-based performance bonuses
PTO
Remote work
Health and wellness programs
Employee discounts
Learning and development reimbursement

Company

MBL

twittertwitter
company-logo
MBL is areal estate company that specializes in design, property, and project management, valuation, and advisory services.
dateFounded in 2007
location
Sofia, Grad Sofiya, BGR
people-size11-50 employees
web-link
https://www.mbl.bg

Funding

Current Stage
Early Stage
Company data provided by crunchbase