Senior Secure Configuration Management (SecCM) Specialist
Security Configuration Management Lead
Criterion Systems is seeking an experienced Security Configuration Management Lead to manage and optimize security configuration management (SCM) processes at the U.S. National Science Foundation (NSF). This role involves coordinating across teams to ensure NSF systems remain secure, compliant with federal regulations, and align with cybersecurity best practices. This position will report to the Cybersecurity Oversight and Compliance Team Lead.
The ideal candidate will have a strong background in IT security, configuration management, and federal environments, with expertise in customizing Security Technical Implementation Guides (STIGs) and Center for Internet Security (CIS) benchmarks using NASL (Nessus Attack Scripting Language) for integration with Tenable.sc and Nessus.
Key Responsibilities:
- Lead enterprise Secure Configuration Management in alignment with NIST, DHS/CISA, and OMB requirements.
- Configure, manage, and optimize credentialed scans in Tenable Security Center (Dev environment) for OS, databases, network devices, applications, and cloud‑hosted systems.
- Customize and maintain DISA STIG and CIS audit files to align with NSF‑approved baselines and documented deviations.
- Validate findings, reduce false positives, and coordinate remediation with system owners and administrators.
- Develop, maintain, and govern secure configuration baselines for Windows, Linux, databases, network devices, and cloud platforms.
- Support RMF activities and control assessments for CM and RA domains (e.g., CM‑2, CM‑6, RA‑