Cybersecurity Lead

About The Position

Requirements

• Active Top Secret / Sensitive Compartmented Information (TS/SCI) clearance.
• Bachelor’s degree in Cybersecurity, Information Assurance, Computer Science, or a related field (or equivalent experience).
• 8+ years of experience in Information Assurance (IA) or Cybersecurity supporting Department of Defense (DoD) programs.
• Current cybersecurity certification such as CISSP, CEH, or Security+ CE (or equivalent DoD 8570/8140 compliant certification).
• Demonstrated experience with the Risk Management Framework (RMF) and development of Authorization to Operate (ATO) packages.
• Strong knowledge of DoD cybersecurity policies, standards, and compliance requirements.
• Experience supporting secure environments involving COMSEC and EMSEC requirements.
• Proven ability to coordinate with system owners, engineers, and government stakeholders to achieve cybersecurity compliance.
• Strong documentation, communication, and leadership skills in support of security and compliance initiatives.

Responsibilities

• Lead cybersecurity and information assurance activities to support DoD system security and compliance requirements.
• Manage and support the RMF lifecycle, including system categorization, control selection, implementation, assessment, and authorization.
• Develop, maintain, and submit ATO packages and supporting documentation to ensure systems meet authorization requirements.
• Coordinate cybersecurity efforts across engineering, operations, and program teams to ensure alignment with security controls and policies.
• Support cyber defense operations, including identifying risks, implementing mitigation strategies, and ensuring compliance with DoD cybersecurity standards.
• Ensure compliance with COMSEC and EMSEC policies and procedures within the operational environment.
• Monitor system security posture and support vulnerability management, security assessments, and remediation activities.
• Serve as a key cybersecurity advisor to program leadership and government stakeholders, ensuring systems maintain authorization and meet all security requirements.