Conduct security risk assessments, gap analyses, and vulnerability remediation planning
Collaborate with engineering, infrastructure, and compliance teams to enforce secure-by-design principles
Manage security documentation, policies, procedures, and control evidence
Support security audits, penetration testing coordination, and incident response planning
Serve as a subject matter expert for data protection, encryption, and identity and access management (IAM)
Employees in this role are responsible for safeguarding sensitive information and must adhere to all organizational security and privacy policies, ensuring the protection, proper handling, and confidentiality of data at all times.
Requirements
U.S. Citizen
Bachelor’s or master’s degree in Cybersecurity, Information Systems, or a related field
Active Secret security clearance or the ability to obtain one
10+ years of cybersecurity architecture experience in federal or large enterprise environments
Deep expertise in DoD Instructions (DoDI), CNSSI 1253, NIST SP 800-53, DoD CC SRG
Proven experience implementing STIGs and developing ATO packages, including leading security authorization activities
Strong knowledge of system hardening, network security, encryption protocols, and secure SDLC practices
Experience securing cloud platforms such as AWS, Azure, and/or GCP in regulated environments
One or more of the following certifications: CAP, CASP, CISM, CISSP GSLC
Experience with DoD-specific security requirements and IT systems
Strong written and verbal communication skills with the ability to produce audit-ready documentation
Experience coordinating with ISSOs, ISSEs, and federal security teams