S
Validator/Vulnerability Management Lead (4979)
full-time•Maryland•$93k - $156k
About this role
<div class="ui-form-item ui-form-item-horizontal" data-direction="horizontal">
<div class="ui-form-field lifesuite__rte--display">
<div class="ui-form-field lifesuite__rte--display">
<div class="m-b break-word ng-scope">
<div class="ng-scope">
<div class="m-b break-word ng-scope">
<div class="ng-scope">
<p>SMX is seeking a Validator/Vulnerability Management Lead to support the Unmanned Carrier Aviation Program Office (PMA-268) at Patuxent River Naval Air Station in Lexington Park, MD. PMA 268 is responsible for the MQ-25 Stingray unmanned air system. Telework available – Hybrid.</p>
<p><strong>Essential Duties & Responsibilities</strong></p>
<ul>
<li>Assess and validate PMA-268 RMF packages (Authorizations to Operate (ATOs) and Interim Authorizations to Test (IATTs), to include but not limited to:
<ul>
<li>Coordinate development of the Security Assessment Plan (SAP) with Integrated Product Team (IPT) SSE and system ISSO</li>
<li>Submit SAP for approval</li>
<li>Execute the SAP</li>
</ul>
</li>
<li>Provide a summary of failed controls in Enterprise Mission Assurance Support Service (eMASS) (Risk Assessment)</li>
<li>Complete the Security Assessment Report (SAR)</li>
<li>Provide POA&M update recommendations to the PMA/IPT based on assessment results</li>
<li>Ensure traceability of all vulnerabilities from raw assessment results to the POA&M</li>
<li>Support Continuous Monitoring (ConMon) activities (e.g. annual security reviews, system/changes/ Memorandums for the Record (MFRs))</li>
<li>Create consolidated list of mitigation statements for POA&Ms (unclassified) to assist ISSOs with established mitigation statements for common non-compliant security controls</li>
<li>Vulnerability Management Lead</li>
<li>Establish and execute a PMA-268 vulnerability management program, to include developing guidance for VRAM record creation and management</li>
<li>Develop a PMA Vulnerability and Patch Management Policy</li>
<li>Coordinate development of System level Vulnerability and Patch Management Plans (VPMP)</li>
<li>NAVAIR Rapid Response Lead for PMA-268 will:
<ul>
<li>Attend Rapid Response meetings</li>
<li>Coordinate consolidated PMA-268 responses to Orders received (ie EXORD, OPORD, TASKORD)</li>
<li>Monitor the NAVAIR Vulnerability Management Channel for notifications daily</li>
<li>Maintain the PMA-268 Cyber Directive Status tracker</li>
<li>Create and maintain a Cyber Directives tracker on SIPR to summarize the orders</li>
</ul>
</li>
<li>Manage PMA-268 Portfolio VRAM records</li>
</ul>
<p><strong>Required Skills & Experience</strong></p>
<ul>
<li>Clearance Required: Secret</li>
<li>Must have a bachelor’s degree in a technical or scientific field from an accredited college or university</li>
<li>Must have at least three (3) years of recent and relevant experience</li>
<li>Demonstrated experience in an area of engineering expertise is required</li>
<li>Must be a Navy Qualified Validator</li>
</ul>
</div>
</div>
</div>
</div>
<p><span data-contrast="auto">#cjpost #LI-HYBRID</span></p>
<p><span data-contrast="auto"><strong>Application Deadline: 2/9/2026</strong></span></p>
</div>
</div>
</div><div class="content-pay-transparency"><div class="pay-input"><div class="description"><p> </p>
<hr>
<p><span style="font-size: 16px;">The SMX salary determination process takes into account a number of factors, including but not limited to, geographic location, Federal Government contract labor categories, relevant prior work experience, specific skills, education and certifications. At SMX, one of our Core Values is to Invest in Our People so we offer a competitive mix of compensation, learning & development opportunities, and benefits. Some key components of our robust benefits include health insurance, paid leave, and retirement.</span></p></div><div class="title">The proposed salary for this position is:</div><div class="pay-range"><span>$93,700</span><span class="divider">—</span><span>$156,200 USD</span></div></div></div><div class="content-conclusion"><p> </p>
<p>At SMX®, we are a team of technical and domain experts dedicated to enabling your mission. From priority national security initiatives for the DoD to highly assured and compliant solutions for healthcare, we understand that digital transformation is key to your future success.</p>
<p>We share your vision for the future and strive to accelerate your impact on the world. We bring both cutting edge technology and an expansive view of what’s possible to every engagement. Our delivery model and unique approaches harness our deep technical and domain knowledge, providing forward-looking insights and practical solutions to power secure mission acceleration.</p>
<p>SMX is an Equal Opportunity employer including disabilities and veterans.</p>
<p><span data-teams="true"><span id="message-body-1758638857922" class="fui-ChatMyMessage__body rcngbzt ___eyw0iv0 f10pi13n ftqa4ok f2hkw1w f8hki3x f1d2448m f1bjia2o ffh67wi f1j6vpng f1pniga2 f987i1v f1ffjurs f15bsgw9 f14e48fq f18yb2kv fd6o370 ffwy5si f3znvyf f57olzd f4stah7 f480a47 fs1por5 fk6fouc figsok6 fkhj508 f19n0e5 f9ijwd5 fzqqayd f10ostut f1o0qvyv f9ggezi f1xp5gbu f150uoa4 ffyari3 fo7qwa0 f16xkysk fxowb0n f11ghf3q f13aoclr flypziy f10kwr27 fquw1qa fftr39l f13lathq f15hsm81 f2ss68y ffb60jq f8nuap2 f13nk4fk f7jacry fq08z5q fd9af6s fr74w9q fcl9uv6 f13sm7pj f1u6qqly f16wpxbl faim3u9 f6cs3qo fa2w2z3 fd39nx6 f10gn8j9 frcqmxy f1w9ws4k f1ddxkqj fd10euv fvuz61 f1nbc6gw"><span id="content-1758638857922" class="fui-Primitive ___16zla5h f1oy3dpc fqtknz5 fyvcxda"></span></span></span></p>
<div id="x_Signature"></div>
<p>Selected applicant may be subject to a background investigation and/or education verification.</p>
<p>SMX does not sponsor a new applicant for employment authorization or immigration related support for this position (i.e. H1B, F-1 OPT, F-1 STEM OPT, F-1 CPT, J-1, TN, E-2, E-3, L-1 and O-1, or any EADs or other forms of work authorization that require immigration support from an employer).</p></div>
What you'll do
- The Validator/Vulnerability Management Lead will assess and validate Risk Management Framework packages and establish a vulnerability management program for PMA-268. Responsibilities include executing security assessment plans, providing recommendations, and managing vulnerability records.
About SMX
SMX is a global technology and advanced engineering provider specializing in Cloud Solutions, C5ISR, and Advanced Engineering / IT. Our tradition of delivering innovative, technical solutions dates back to 1995, however, you may know us better by one of our legacy company names: Trident Technologies, Smartronix, Datastrong, C2S Consulting Group, Creoal Consulting, Outside Analytics, or cBEYONData. With the support of OceanSound Partners, our private equity investment sponsor, we began operating as one business starting in 2019 and became SMX in 2021. We operate in close proximity to our clients around the globe and have core locations in Alabama, California, the DC Metro, Florida, Hawaii, Maryland, and Massachusetts.
Today, as SMX, we are one team and together empower government and commercial enterprises to become more effective, innovative, and resilient, no matter what challenges they face.
SMX offers competitive benefits, excellent work environments, and growth opportunities for our employees while continuing to expand operations and support our communities. We have more than 25 years of rapid and consistent growth with continuous recognition as an employer-of-choice technology company. In addition, we have earned coveted industry quality and business certifications; have a strong commitment to business partnerships, ethics, compliance, and sustainability; and have a multitude of premier contracting vehicles. The combination of these attributes allows us to provide sound, repeatable business solutions yet remain flexible and agile to quickly adapt to specific customer requirements.
Committed to ensuring the highest levels of customer satisfaction, SMX is structured around the programs and technologies we support to provide optimal and seamless operations. We have maintained a reputation for excellence, helping to assure the missions of our Department of Defense, Public Sector, Fortune 1000, and other Government and commercial customers.
Ready to join SMX?
Take the next step in your career journey
Frequently Asked Questions
What does SMX pay for a Validator/Vulnerability Management Lead (4979)?
SMX offers a competitive compensation package for the Validator/Vulnerability Management Lead (4979) role. The salary range is USD 94k - 156k per year. Apply through Clera to learn more about the full compensation details.
What does a Validator/Vulnerability Management Lead (4979) do at SMX?
As a Validator/Vulnerability Management Lead (4979) at SMX, you will: the Validator/Vulnerability Management Lead will assess and validate Risk Management Framework packages and establish a vulnerability management program for PMA-268. Responsibilities include executing security assessment plans, providing recommendations, and managing vulnerability records..
Is the Validator/Vulnerability Management Lead (4979) position at SMX remote?
The Validator/Vulnerability Management Lead (4979) position at SMX is based in Maryland, United States. Contact the company through Clera for specific work arrangement details.
How do I apply for the Validator/Vulnerability Management Lead (4979) position at SMX?
You can apply for the Validator/Vulnerability Management Lead (4979) position at SMXdirectly through Clera. Click the "Apply Now" button above to start your application. Clera's AI-powered platform will help match your profile with this opportunity and guide you through the application process.