Apply on Employer Site

TekSynap · 2 days ago

Cyber Operations Readiness Assessment Reviewer

Fort Belvoir, VA

Full-time

Onsite

Senior Level, Lead/Staff

8+ years exp

TekSynap is a fast-growing high-tech company that understands both the pace of technology today and the need to have a comprehensive well planned information management environment. We are seeking a Cyber Operations Readiness Assessment (CORA) Senior Reviewer to join our team supporting the Defense Threat Reduction Agency (DTRA) in Fort Belvoir, VA. This role involves conducting advanced cybersecurity inspections, uncovering vulnerabilities across networks, and supporting real-time decision-making to strengthen national security.

ComputerInformation ServicesInformation Technology

Growth Opportunities

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Serve as a senior technical Reviewer across one or more assessment domains including Boundary Security, Network Infrastructure, DNS, Virtualization, Vulnerability Scanning, Cross Domain Solutions (CDS), Endpoint Security, Mobility, VoIP, Databases, Windows/UNIX, Web Services, Traditional Security, or Releasable Reviews

Perform in-depth technical assessments in accordance with SRGs/STIGs, DODIN Inspection guidance, DoDI 8530.01, DoDI 8510.01, and all governing publications

Participate in on-site and virtual Cybersecurity Reviews, conduct technical interviews, log analysis, configuration inspections, and system evaluations

Identify, analyze, and document vulnerabilities and configuration deviations, providing prioritized recommendations and mitigation strategies

Maintain expertise in primary assessment areas while actively cross-training into adjacent domains to support flexible, multi-skill review teams

Participate in internal knowledge-sharing sessions, walkthroughs, and cross-check ride events to broaden technical capability across CORA mission needs

Mentor junior reviewers and provide technical coaching during inspections and internal training cycles

Prepare, assemble, and execute vulnerability scanning packages using ACAS and DoD-mandated tools

Validate scan results, correlate findings with applicable STIGs, IAVMs, Cyber Tasking Orders, and mission risk, and assist in POA&M generation and remediation tracking

Conduct post-scan validation to verify vulnerability mitigation and ensure accuracy of lifecycle data

Support Traditional Security Reviews by applying SPēD-aligned security fundamentals, assessing personnel, physical, information, industrial, and overall security management practices

Conduct Releasable Reviews ensuring proper classification markings, content sanitization, foreign disclosure handling, and compliance with DoD information protection policies

Contribute to Executive Summaries, in/out-briefs, and detailed inspection reports, ensuring technical accuracy and alignment with classification requirements

Maintain accurate and complete data in DODIN Inspection systems, ensuring traceability, lifecycle accuracy, and audit readiness

Support development, review, and updates of SOPs, TTPs, checklists, and guides that enhance standardization and repeatability across the CORA mission

Support scheduling coordination, lifecycle data management, portal content maintenance, and end-user assistance across NIPR, SIPR, and JWICS

Assist in verification of POA&M actions, ensuring findings are tracked and properly documented through closure in accordance with DoD 30/60/90-day standards

Coordinate with portfolio managers, tool developers, and inspection teams to resolve data discrepancies, improve workflow efficiencies, and support continuous process improvement

Ensure all activities comply with DoD, DISA, and DTRA directives, particularly STIG/SRG requirements, DODIN Governance, IAVM processes, and RMF-aligned security controls

Maintain required IA certifications (IAT/IAM/CSSP/IASAE) per DoD 8140/8570 and obtain Reviewer Certification Program (RCP) credentials within required timelines

Adhere to all TS/SCI security requirements, classification handling procedures, and facility/operational security standards

Qualification

Vulnerability ScanningCybersecurity ReviewsSecurity CertificationsTechnical LeadershipDocumentation SkillsCross-TrainingTechnical CoachingMentoring

Required

Clearance Level: Top Secret with SCI eligibility

Certifications Required: DoD 8140/8570 requirements for IAM Level II or III (e.g., CISSP, CISM, GSLC, CAP, CASP+). Security Fundamentals Professional Certification (SFPC) within 90 days

Must have 8 - 10 years of experience

Education: BS (or 4 additional years of experience)

U.S Citizenship