Cybersecurity Lead

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Computer Science, or a related field.
• 7+ years of experience in cybersecurity operations.
• Certification: CISSP, CISM, or equivalent.
• Familiarity with NIST SP 800-53, FISMA, and FedRAMP.
• Demonstrated ability to lead technical teams and coordinate across stakeholders to drive remediation and improve security posture.
• Strong written and verbal communication skills, including experience preparing audit-ready evidence and briefing technical and non-technical audiences.

Nice To Haves

• Hands-on experience supporting RMF/ATO package development and sustainment in a federal environment.
• Experience with vulnerability management programs (e.g., scanning coordination, validation of remediation, exception tracking).
• Familiarity with security tooling for monitoring, endpoint protection, and log analysis (tool-specific experience a plus).
• Experience preparing for or supporting independent assessments/audits (e.g., OIG/GAO) and managing evidence workflows.
• Knowledge of IT service management and change control practices in regulated environments.

Responsibilities

• Lead continuous cybersecurity monitoring activities, including alert triage coordination, use-case tuning recommendations, and tracking detection and response actions to closure.
• Coordinate incident response processes and communications, including severity assessment, escalation, stakeholder updates, after-action reviews, and lessons learned integration.
• Manage risk management activities across the system lifecycle, including identification of vulnerabilities, prioritization of remediation, and tracking corrective actions.
• Provide technical leadership for Security Assessment & Authorization (RMF/SA&A) support, including development and maintenance of SSPs, control implementation evidence, risk assessments, and POA&Ms.
• Support FISMA reporting and CDM data quality by validating inputs, maintaining supporting evidence, and ensuring metrics align to required reporting timelines.
• Lead audit readiness and documentation efforts by maintaining audit-ready artifacts, responding to evidence requests, and preparing technical narratives for assessors and reviewers.
• Develop, update, and maintain cybersecurity policies, procedures, and governance documentation aligned to federal requirements (e.g., NIST and OMB guidance).
• Support insider threat and privileged access oversight activities, including coordination of access reviews, monitoring recommendations, and control implementation evidence.
• Collaborate with IT operations on configuration management and change control to ensure changes are evaluated for security impact and appropriately documented and traceable.
• Plan and coordinate security training and awareness support, including role-based training recommendations and compliance tracking inputs.
• Partner with systems engineering and enterprise architecture stakeholders to integrate security requirements into modernization planning and technical designs.