(C) Subject Matter Expert – Program Protection/Cybersecurity jobs in United States
info-icon
This job has closed.
company-logo

TMMG, LLC · 3 weeks ago

(C) Subject Matter Expert – Program Protection/Cybersecurity

positionWashington,DC,US
timeFull-time
remoteHybrid
senioritySenior Level, Lead/Staff
date8+ years exp

TMMG, Inc. is seeking a Subject Matter Expert in Program Protection and Cybersecurity to support investment decisions and major systems acquisition processes. The role involves advising on cybersecurity strategies, conducting risk assessments, and ensuring compliance with federal standards while engaging with stakeholders and supporting incident response efforts.

Asset ManagementIndustrial EngineeringProject Management
check
Work & Life BalancebadNo H1BnoteU.S. Citizen Onlynote

Responsibilities

Advise on cybersecurity strategies, policies, and best practices to safeguard systems and data
Ensure compliance with federal cybersecurity standards (e.g., NIST SP 800 series, RMF, FISMA)
Conduct risk assessments and vulnerability analyses for systems and programs
Identify potential threats and develop mitigation strategies to protect critical assets
Support development and review of secure system architectures and designs
Ensure integration of cybersecurity requirements throughout the system lifecycle
Assist with security authorization and accreditation processes under RMF
Prepare documentation for compliance audits and certification activities
Develop and maintain Program Protection Plans (PPP) and related security documentation
Ensure protection of critical technologies, intellectual property, and sensitive information
Provide expert input during technical reviews, briefings, and working groups
Communicate cybersecurity requirements and risks to stakeholders effectively
Support incident response planning and execution
Recommend tools and processes for continuous monitoring and threat detection

Qualification

Cybersecurity ExpertiseRisk ManagementSecurity ArchitectureCompliance & AccreditationProgram Protection PlanningIncident ResponseStakeholder EngagementNIST RMFFISMACISSPCISMAnalytical SkillsPMPINCOSE CSEPProblem-Solving SkillsCommunication SkillsCollaboration SkillsDocumentation SkillsPresentation Skills

Required

Background check, US citizenship, and a CAC are requirements for this position
10% travel
Cybersecurity & Program Protection Expertise: Advise on cybersecurity strategies, policies, and best practices to safeguard systems and data. Ensure compliance with federal cybersecurity standards (e.g., NIST SP 800 series, RMF, FISMA)
Risk Management & Threat Assessment: Conduct risk assessments and vulnerability analyses for systems and programs. Identify potential threats and develop mitigation strategies to protect critical assets
Security Architecture & Design: Support development and review of secure system architectures and designs. Ensure integration of cybersecurity requirements throughout the system lifecycle
Compliance & Accreditation: Assist with security authorization and accreditation processes under RMF. Prepare documentation for compliance audits and certification activities
Program Protection Planning: Develop and maintain Program Protection Plans (PPP) and related security documentation. Ensure protection of critical technologies, intellectual property, and sensitive information
Stakeholder Engagement: Provide expert input during technical reviews, briefings, and working groups. Communicate cybersecurity requirements and risks to stakeholders effectively
Incident Response & Continuous Monitoring: Support incident response planning and execution. Recommend tools and processes for continuous monitoring and threat detection
Education: Bachelor's degree in Cybersecurity, Information Assurance, Computer Science, or related field
Experience: Minimum 8–10 years of experience in cybersecurity and program protection for complex systems. Experience with federal acquisition programs and DoD/DHS security requirements. Minimum 5 years of experience on ACAT 1 acquisitions programs as defined by the Major Systems Acquisition Manual (MSAM)
Skills: Expertise in NIST RMF, FISMA, and related cybersecurity frameworks. Strong knowledge of encryption, secure communications, and vulnerability management. Excellent analytical, problem-solving, and communication skills
Certifications: CISSP, CISM, or equivalent required
Clearance: None required
Other Requirements: Ability to work collaboratively with multidisciplinary teams. Strong documentation and presentation capabilities

Preferred

Master's degree preferred
PMP or INCOSE CSEP a plus

Company

TMMG, LLC

twittertwitter
company-logo
TMMG is a systems engineering and logistics company, serving the public and private sectors.
dateFounded in 2008
location
Chesapeake, Virginia, USA
people-size201-500 employees
web-link
https://tmmg.us.com

Funding

Current Stage
Growth Stage
Total Funding
unknown
Key Investors
Artinia Group
2025-12-15Private Equity

Leadership Team

leader-logo
Shane Dowling
Chief Executive Officer; Owner
linkedin
leader-logo
Richard Cunningham
COO
linkedin

Recent News

Washington Technology
TMMG receives private equity backing
2025-12-18
Company data provided by crunchbase