Corporate Cybersecurity Manager

About The Position

Requirements

• IAM Certification: At least an Information Assurance Manager (IAM) Level 3 certification as required by DoD 8140
• Experience: A minimum of 10 years of experience in cybersecurity management, risk management, or a related field
• Education: A bachelor’s degree in computer science, Information Technology, Cybersecurity, or a related field
• Demonstrated experience with U.S. Government cybersecurity compliance frameworks (NIST 800-171, CMMC 2.0, NIST 800-53/171, RMF, CSF, DFARS).
• Hands-on experience with SOC operations, threat intelligence, vulnerability management, and incident response.
• Strong understanding of enterprise IT, cloud security, and network architecture.
• Excellent communication skills and experience presenting to leadership and external partners.
• Working knowledge and experience with completing and submitting accreditation or assessment and authorization packages
• Ability to audit and verify security controls as part of industry standard system hardening or in accordance with customer or government requirements
• Ability to communicate complex concepts with senior management, technical personnel, and external entities including senior representatives of the US Government and teammates
• Ability to audit, scan for vulnerabilities, and continuously monitor mixed computer system environments using vulnerability scanners, SIEMs, and various scripting languages
• This position requires the ability to obtain a U.S. Security Clearance for which the U.S. Government requires U.S. Citizenship. An interim and/or final U.S. Security Clearance Post-Start is required.

Nice To Haves

• IAM Certification: CISSP preferred
• Experience: 15 years of experience in cybersecurity management, risk management, or a related field
• Education: A Master’s degree in computer science, Information Technology, Cybersecurity, or a related field
• Knowledge: Proficiency in cybersecurity frameworks, such as NIST RMF, and experience with CMMC.
• Compliance: Familiarity with industry standards and regulations, including those specific to Unclassified environments that process CUI such as DFARS 252.204-7012 and CMMC 2.0 requirements

Responsibilities

• Continuous Monitoring: Oversee continuous monitoring activities to detect and respond to security threats in real-time, enabling the business to operate securely and efficiently
• Policy Development and Implementation: Develop and implement cybersecurity policies and procedures tailored to the organization's needs, ensuring compliance with relevant laws, regulations, and standards
• Incident Response Management: Develop and implement incident response plans to handle security breaches and cyber incidents, coordinating response efforts and conducting post-incident reviews
• Team Leadership and Training: Lead and mentor cybersecurity teams, promoting a culture of cybersecurity awareness within the organization through regular training and awareness programs
• Regulatory Compliance & Governance: Ensure adherence to aerospace and defense cybersecurity requirements (NIST 800-171, CMMC 2.0, NIST 800-53/171, DFARS), maintain system security documentation (SSPs, POA&Ms), and oversee cybersecurity governance frameworks, standards, and audit readiness
• Risk Management & Incident Oversight: Lead enterprise cybersecurity risk assessments, supplier evaluations, audits, and authorization processes; oversee incident investigations, root-cause analysis, corrective actions, and security reporting
• Secure Architecture, Integration & Operations: Partner with engineering, IT, and manufacturing teams to embed cybersecurity into system design, cloud architectures, and other organizational processes; support vulnerability management, remediation planning, and technical risk mitigation
• Stakeholder Communication & Strategic Planning: Serve as a cybersecurity liaison to government customers, leadership, and suppliers; develop cybersecurity maturity roadmaps, support resource and budget planning, and deliver meaningful performance metrics and executive reports