SME Information System Security Officer Lead

About The Position

Requirements

• Bachelor’s degree or higher from an accredited college or university OR offerings listed in DoD 8140 Training Repository, CISM, CASP or GSLC certification.
• Minimum of 10 years of experience in cybersecurity, with at least 5 years in a leadership role.
• Experience with NIST RMF, FedRAMP, FISMA, and DoD cybersecurity policies and standards.
• Proven track record of developing and executing cybersecurity plans and strategies.
• Strong understanding of security controls and risk management processes.
• Experience conducting security assessments and audits.
• Excellent communication and leadership skills.
• Ability to manage and mentor a team of cybersecurity professionals.
• TS/SCI with CI Poly clearance.

Nice To Haves

• Master’s degree in Cybersecurity, Information Technology, or a related field.
• Additional certifications such as CISSP, CISM, CEH, or CRISC.
• Experience with cloud security and AI/ML security practices.
• Familiarity with DoD information systems and environments.
• Experience with cybersecurity incident response and management.
• Strong analytical and problem-solving skills.
• Experience with cybersecurity tools and technologies.

Responsibilities

• Develop, maintain, and execute the Cybersecurity Operations Plan (CYP) for the program.
• Ensure compliance with NIST Risk Management Framework (RMF), FedRAMP, FISMA, and DoD cybersecurity policies and standards.
• Collaborate with Information System Owner (ISO), Information System Security Engineer (ISSE), and Information System Security Manager (ISSM) to implement and validate security controls.
• Monitor and oversee the security posture of DoD information systems to ensure confidentiality, integrity, and availability.
• Maintain and update security policies, procedures, and documentation to align with DoD requirements.
• Conduct regular security assessments and audits to identify vulnerabilities and ensure compliance.
• Provide expert guidance on RMF processes and cybersecurity best practices.
• Lead and manage a team of 8-15 direct reports, providing mentorship and performance evaluations.
• Develop and deliver cybersecurity training and awareness programs for staff.
• Coordinate with external stakeholders to ensure cybersecurity requirements are met.
• Prepare and present cybersecurity reports and metrics to senior leadership.
• Respond to and manage cybersecurity incidents and breaches.
• Ensure timely updates and delivery of the CYP based on government feedback.
• Support the development and implementation of cybersecurity strategies and initiatives.
• Enhance customer success and outreach to support the warfighter.
• Manage a team of 8-15 direct reports, providing guidance, mentorship, and performance evaluations.
• Develop and implement team goals and objectives aligned with organizational priorities.
• Foster a collaborative and inclusive team environment.
• Ensure team members have the necessary resources and training to perform their duties effectively.
• Conduct regular team meetings and one-on-one sessions to provide feedback and support.
• Address and resolve any team conflicts or issues promptly.
• Promote professional development and growth opportunities for team members.

Benefits

• Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement.