Validator/Vulnerability Management Lead (5165)

Описание вакансии

SMX is seeking a Validator/Vulnerability Management Lead to support the Unmanned Carrier Aviation Program Office (PMA-268) at Patuxent River Naval Air Station in Lexington Park, MD.  PMA 268 is responsible for the MQ-25 Stingray unmanned air system. Telework available – Hybrid.

Essential Duties & Responsibilities

• Assess and validate PMA-268 RMF packages (Authorizations to Operate (ATOs) and Interim Authorizations to Test (IATTs), to include but not limited to:

+ Coordinate development of the Security Assessment Plan (SAP) with Integrated Product Team (IPT) SSE and system ISSO

+ Submit SAP for approval

+ Execute the SAP

• Provide a summary of failed controls in Enterprise Mission Assurance Support Service (eMASS) (Risk Assessment)
• Complete the Security Assessment Report (SAR)
• Provide POA&M update recommendations to the PMA/IPT based on assessment results
• Ensure traceability of all vulnerabilities from raw assessment results to the POA&M
• Support Continuous Monitoring (ConMon) activities (e.g. annual security reviews, system/changes/ Memorandums for the Record (MFRs))
• Create consolidated list of mitigation statements for POA&Ms (unclassified) to assist ISSOs with established mitigation statements for common non-compliant security controls
• Vulnerability Management Lead
• Establish and execute a PMA-268 vulnerability management program, to include developing guidance for VRAM record creation and management
• Develop a PMA Vulnerability and Patch Management Policy
• Coordinate development of System level Vulnerability and Patch Management Plans (VPMP)
• NAVAIR Rapid Response Lead for PMA-268 will:

+ Attend Rapid Response meetings

+ Coordinate consolidated PMA-268 responses to Orders received (ie EXORD, OPORD, TASKORD)

+ Monitor the NAVAIR Vulnerability Management Channel for notifications daily

+ Maintain the PMA-268 Cyber Directive Status tracker

+ Create and maintain a Cyber Directives tracker on SIPR to summarize the orders

• Manage PMA-268 Portfolio VRAM records

Required Skills & Experience

• Clearance Required: Secret
• Must have a bachelor’s degree in a technical or scientific field from an accredited college or university
• Must have at least three (3) years of recent and relevant experience
• Demonstrated experience in an area of engineering expertise is required
• Must be a Navy Qualified Validator

#cjpost #LI-HYBRID

Application Deadline: 4/13/2026

The SMX salary determination process takes into account a number of factors, including but not limited to, geographic location, Federal Government contract labor categories, relevant prior work experience, specific skills, education and certifications. At SMX, one of our Core Values is to Invest in Our People so we offer a competitive mix of compensation, learning & development opportunities, and benefits. Some key components of our robust benefits include health insurance, paid leave, and retirement.

The proposed salary for this position is:

$93,700—$156,200 USD

At SMX®, we are a team of technical and domain experts dedicated to enabling your mission. From priority national security initiatives for the DoD to highly assured and compliant solutions for healthcare, we understand that digital transformation is key to your future success.

We share your vision for the future and strive to accelerate your impact on the world. We bring both cutting edge technology and an expansive view of what’s possible to every engagement. Our delivery model and unique approaches harness our deep technical and domain knowledge, providing forward-looking insights and practical solutions to power secure mission acceleration.

SMX is an Equal Opportunity employer including disabilities and veterans.

Selected applicant may be subject to a background investigation and/or education verification.

SMX does not sponsor a new applicant for employment authorization or immigration related support for this position (i.e. H1B, F-1 OPT, F-1 STEM OPT, F-1 CPT, J-1, TN, E-2, E-3, L-1 and O-1, or any EADs or other forms of work authorization that require immigration support from an employer).