Technical Lead - Cybersecurity Operations

About The Position

Requirements

• Minimum of ten (10) years of experience supporting cybersecurity programs within federal or large enterprise environments.
• Demonstrated expertise in Governance, Risk, and Compliance functions, including Risk Management Framework, Assessment and Authorization, and continuous monitoring.
• Proven experience supporting and managing ATO processes, including development and maintenance of security documentation such as SSPs, POA&Ms, ISAs, and MOUs.
• Experience interpreting and implementing federal cybersecurity requirements and guidance, including FISMA, NIST SP 800-37, NIST SP 800-53, and OMB directives.
• Demonstrated experience performing vulnerability management oversight, risk assessment, and compliance reporting.
• Experience coordinating with Chief Information Security Officers, Information System Security Officers, and system owners in regulated environments.
• Strong understanding of cloud and hybrid environments and associated security considerations, including FedRAMP and Zero Trust.
• Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or a related field is required.
• ITIL® v3 or ITIL® 4 Foundation certification required.
• Excellent verbal and written communication skills, with the ability to communicate cybersecurity risks, compliance requirements, and technical findings to Government leadership, technical teams, and stakeholders.
• Ability to write clear and concise documentation, reports, and responses in a highly confidential manner.

Nice To Haves

• Relevant certifications such as CISSP, CISM, or equivalent are preferred.

Responsibilities

• Lead Governance, Risk, and Compliance activities, ensuring alignment with federal cybersecurity requirements and agency policies across all supported systems.
• Oversee the full Risk Management Framework lifecycle, including Assessment and Authorization processes, ATO maintenance, and continuous monitoring activities.
• Provide independent validation and oversight of security controls implemented within hosting platform environments, ensuring separation from operational responsibilities.
• Manage and track Plans of Action and Milestones, risk acceptance decisions, and remediation progress in coordination with system owners and stakeholders.
• Coordinate with the agency Information Security Program, CISO, ISSOs, and system owners to ensure timely escalation, resolution, and reporting of security risks and incidents.
• Oversee vulnerability management reporting, metrics, and compliance dashboards, ensuring accurate tracking and alignment with customer requirements.
• Advise stakeholders on security policies, compliance requirements, and best practices, supporting implementation of federal guidance including NIST, OMB, and Zero Trust.
• Assist in planning, staging, and facilitating forums, working groups, and technical exchange meetings.
• Support security aspects of system acquisition and architecture reviews, including supply chain risk management and evaluation of new technologies.
• Provide cybersecurity support during audits and assessments, including preparation of documentation, responses to findings, and remediation tracking.
• Assist in the planning, coordination, and execution of enterprise and external cybersecurity exercises, as approved.
• Serve as the primary cybersecurity advisor to Government leadership, ensuring objective oversight and compliance across the hosting platform.

Benefits

• Willing to travel as needed.