Senior Security Specialist

Senior Security Specialist

Indian Head, MD

Consulting Services - Engineering and Science / Full Time / On-site

apply for this job

ERG is a research and consulting firm that provides a wide range of support to federal, state, and commercial clients. ERG offers multidisciplinary teams with nationally recognized skills in engineering, science, economics, public health, informational technology, and communications. We hire people with the best minds and then provide them with a vibrant and flexible environment in which to develop their careers. The qualified individual must be highly motivated with the skills to prioritize, perform, and communicate effectively in a fast-paced environment.

ERG is seeking a Senior Security Specialist to oversee information assurance and cybersecurity compliance across Navy systems and environments. This role ensures that all systems adhere to DoD and Navy cybersecurity policy, Risk Management Framework (RMF) requirements, and established security best practices. The ideal candidate brings deep expertise in cybersecurity governance, auditing, and compliance within high security DoD environments.

This is a fulltime onsite position at the Naval Surface Warfare Center (NSWC) Indian Head. Indian Head, MD, is approximately 30 miles from Washington, DC, 25 miles from Alexandria, VA, and 60 miles from Fredericksburg, VA.

Job Description: Implement and enforce cybersecurity policies, procedures, and security controls across Navy systems

Conduct security audits, inspections, and compliance assessments to validate adherence to DoD and Navy cybersecurity requirements

Support RMF lifecycle activities, including control implementation, evidence collection, documentation updates, and stakeholder coordination

Contribute to ATO package development, POA&M management, and ongoing authorization efforts

Perform continuous monitoring of cybersecurity controls and system security posture

Ensure organizational alignment with DoD, Navy, and federal cybersecurity directives, standards, and best practices

Develop and maintain security documentation, including SSPs, assessment reports, and compliance artifacts

Provide cybersecurity guidance and mentorship to engineering and program teams

Required Qualifications and Skills: Bachelor's degree in Cybersecurity, Information Assurance, Information Technology, or related field

8+ years of professional experience in cybersecurity, information assurance, or security compliance

DoD‑approved IAM certifications (e.g., CAP, CISSP, GSLC, or similar)

Strong understanding of RMF, NIST SP 800‑53 controls, and ATO processes

Experience conducting audits, assessments, and security compliance reviews

Familiarity with eMASS, continuous monitoring tools, and federal compliance frameworks

Excellent communication, documentation, and organizational skills

Must currently hold or maintain a Department of Defense Top investigation/privileged access eligibility (T5 (SSBI) clearance)

Must be a U.S. citizen as this position is not eligible for Limited Access Authorizations

Preferred Qualifications and Skills: Experience supporting U.S. Navy systems or other DoD cybersecurity programs

Knowledge of system engineering, platform security, and secure configuration standards

$120,000 - $145,000 a year

ERG offers competitive salaries and excellent benefits, including health and dental insurance, life insurance, long-term disability, educational benefits, FSAs, a generous 401k plan, profit sharing, an EAP, 11-20 paid vacation days per year, 10 paid holidays per year, 56 hours or more of sick leave (based on the state you work in) per year (pro-rated for part-time) and more. The salary range for all positions depends on the years and type of experience.

ERG is an equal opportunity employer and complies with all applicable EEOC regulations. All qualified applicants will receive consideration for employment without regard to age, race, color, religion, sex, sexual preference, national origin, disability, or status as a protected veteran. Please be aware, the only authentic corporate domain for ERG is https://www.erg.com. ERG may, on occasion, screen applicants via telephone or video interviews via Skype, Teams, GoToMeeting, or another type of video platform. However, any candidate extended a job offer might be asked to meet in person with an ERG employee before providing confidential personal information associated with new employment.

If you're a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access ERG's online application process as a result of your disability. To request accommodation, please contact Human Resources via email at [emailprotected] or call (781) 674-7293.

ERG fosters a friendly, flexible work environment. ERGers are dedicated to serving clients who are committed to making the world a better place. We promote and recognize principles of fairness and respect in the work we do, the partnerships we foster, and the culture we value both within and outside of our organization.

apply for this job