Key skills
Project Management Professional (PMP)DoD 8570.01/8140 IAM Level IIIRisk Management Framework (RMF)Cybersecurity compliance frameworksTechnical performance managementLeadership experienceStakeholder engagementCybersecurity program managementContract managementEnterprise cybersecurity governanceIAMLeadershipProject ManagementRisk ManagementNetwork Security
About this role
BMA is an employee-owned small business that provides superior customer service. They are seeking a Task Order Project Manager to lead and oversee the execution of cybersecurity services for the DLA JETS Cybersecurity Assessment and Authorization Analyst Support Services program.
Responsibilities:
- Serves as the primary point of contact for all contract execution activities related to the CS AAA contract and supports the Program Manager in coordinating with the KO, COR, Task Order Managers, and DLA leadership on contractual, operational, and performance matters
- Provides overall contract management ensuring technical services are delivered in accordance with contract requirements and established schedules, while ensuring contractor personnel maintain required DoD certifications, security clearances, and workforce compliance requirements
- Provides leadership and oversight for contractor personnel supporting cybersecurity assessment, authorization, and compliance activities across DLA systems and programs
- Ensures staff effectively support Information System Security Managers (ISSMs), Security Control Assessors (SCAs), and Authorizing Officials in executing cybersecurity program requirements and ensures services align with RMF and DLA cybersecurity policies, including support for DLA IT systems, Platform IT (PIT), and Operational Technology / Facility Related Control Systems environments
- Oversees contractor support activities associated with the Risk Management Framework process, including system categorization, security control selection, implementation, assessment, authorization, and continuous monitoring
- Ensures timely development and submission of RMF artifacts including System Security Plans (SSP), Security Assessment Reports (SAR), Risk Assessment Reports, Continuous Monitoring Strategies, and Plans of Action and Milestones (POA&M) while ensuring compliance with NIST SP 800-53, CNSSI 1253, and DoD cybersecurity policies
- Develops and maintains project plans, schedules, and execution strategies supporting cybersecurity assessment and authorization activities
- Monitors performance to ensure technical deliverables are completed accurately and on schedule, conducts Integrated Program Reviews (IPRs) with stakeholders to review contract performance and cybersecurity program status, and provides oversight for risk management, issue resolution, and performance improvement initiatives
- Ensures all personnel maintain required DoD 8570/8140 cybersecurity certifications and workforce compliance requirements, tracks certification status through monthly compliance reporting, and ensures contractor personnel maintain appropriate security clearances and access credentials, including compliance with Common Access Card (CAC) requirements
Requirements:
- Current Project Management Professional (PMP) certification or an equivalent recognized project management certification
- Current DoD 8570.01/8140 IAM Level III certification that includes one or more of the following: CISM, CISSP, GSLC, or CCISO
- Bachelor's degree in Information Technology, Cybersecurity, Computer Science, Engineering, Business Administration, or a related field, or four additional years of relevant experience in lieu of a degree
- Five or more years of relevant professional experience in information technology, cybersecurity, or consulting environments
- Five or more years of leadership experience managing technical teams, programs, or contracts with progressively increasing responsibility
- At least one year of program or project management experience
- Demonstrated experience managing large and complex government task orders or projects involving cybersecurity or IT services
- Strong knowledge of DoD cybersecurity programs, Risk Management Framework (RMF) implementation, and cybersecurity compliance frameworks
- Proven ability to manage project schedules, technical performance, staffing, and contract deliverables
- Demonstrated experience in cybersecurity program management, RMF oversight, DoD cybersecurity policy compliance, task order leadership and contract management, stakeholder engagement and executive reporting, and enterprise cybersecurity governance and risk management
- Experience supporting DoD or DLA program offices
- Experience supporting DoD or DLA environments
- Familiarity with DLA-specific cybersecurity governance frameworks
- Familiarity with enterprise cybersecurity risk analysis and mitigation
- Familiarity with network security architecture and vulnerability assessment
- Familiarity with technical documentation and cybersecurity reporting
- Current Risk Management Professional certification such as PMP-RMP, CRISC, CISA, CISM, CGRC, or RIMS-CRMP