Program Manager / Cybersecurity Subject Matter Expert (SME)

About The Position

Requirements

• Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, Engineering, Business Management, or a related field.
• Twelve (12)+ years of experience managing large scale cybersecurity programs with multiple concurrent packages, schedules, budgets, deliverables, and stakeholder requirements within DoW, Federal Government, or similarly regulated environments.
• Extensive expertise in the Risk Management Framework (RMF), including security authorization processes, ATO lifecycle management, continuous monitoring, and compliance validation, with demonstrated proficiency using eMASS and Department of War (DoW) workflow tools to manage authorization packages, cybersecurity artifacts, and compliance activities.
• Extensive knowledge of DoW cybersecurity policies, directives, frameworks, and standards, including RMF, NIST 800-53, NIST 800-207, DoDI 8500.01, DoDI 8510.01, JSIG, FISMA, SOC II, and ISO 27001
• Exceptional leadership, organizational, analytical, communication, and technical writing skills.
• Project Management Professional (PMP).
• DoW 8570/8140 IAM Level III Baseline Certification.
• Certified Information Systems Security Professional (CISSP).
• US Citizen
• Must be able to pass a NACI background check

Nice To Haves

• Master’s degree in Cybersecurity, Information Assurance, Information Systems, Business Administration, or a related discipline.
• Certified Information Security Manager (CISM).
• Active DoW Secret Security Clearance.

Responsibilities

• Provide overall leadership, management, and strategic direction for cybersecurity and information technology programs, ensuring successful execution of contractual requirements, mission objectives, and customer expectations.
• Manage program cost, schedule, staffing, technical performance, risk, and quality across multiple concurrent projects and task areas.
• Serve as the primary point of contact for Government stakeholders, including Contracting Officers (CO), Contracting Officer Representatives (COR), Authorizing Officials (AO), and senior leadership.
• Lead program planning, resource allocation, staffing, performance management, and execution activities to ensure timely delivery of all contract requirements and program deliverables.
• Coordinate cross-functional teams consisting of cybersecurity engineers, system administrators, network engineers, developers, vendors, and government personnel to achieve program objectives.
• Oversee program reporting, performance metrics, executive briefings, risk registers, corrective actions, and continuous process improvement initiatives.
• Provide direct leadership and oversight of Cybersecurity Engineers, Cybersecurity Analysts, and Project Managers, ensuring effective execution of program objectives, personnel development, and delivery of contract requirements.
• Prepare and deliver corporate and program-level reports, executive briefings, performance metrics, staffing updates, risk assessments, and customer status reports while identifying, tracking, and communicating program risks, issues, dependencies, and mitigation strategies to stakeholders, senior leadership, and government customers.
• Ensure compliance with contractual requirements, organizational policies, and applicable Federal and DoW regulations.
• Provide senior-level cybersecurity subject matter expertise supporting Risk Management Framework (RMF), cybersecurity compliance, and security authorization activities.
• Lead the development, review, assessment, and maintenance of cybersecurity authorization packages supporting IATTs, IATOs, ATOs, ATCs, and continuous monitoring requirements.
• Direct cybersecurity engineering, security architecture, vulnerability management, incident response, and risk management activities to maintain and improve the organization’s security posture.
• Review and assess cybersecurity artifacts including SSPs, Security Assessment Reports, Risk Assessments, POA&Ms, Security Control Traceability Matrices, Contingency Plans, Incident Response Plans, and Configuration Management Plans.
• Ensure compliance with DoW cybersecurity policies, NIST standards, JSIG requirements, FISMA, Zero Trust principles, and applicable security regulations.
• Lead vulnerability assessment and remediation efforts utilizing enterprise security monitoring solutions.
• Provide expertise in systems security engineering, supply chain risk management (SCRM), cyber resiliency, information protection, and secure infrastructure modernization initiatives.
• Support cybersecurity governance activities, security reviews, audits, assessments, and authorization decision processes.
• Develop cybersecurity strategies, policies, procedures, and training initiatives to enhance organizational awareness, compliance, and operational resilience.

Benefits

• health
• dental
• vision
• 401K
• life insurance
• short-term and long-term disability plans
• vacation time
• holidays