This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description Seeking an RMF Sr. Information Security Systems Manager (ISSM) and Subject Matter Expert to support mission critical Office of the Undersecretary of War for Research and Engineering (OUSW (R&E) capabilities within all facets of the RMF. This pioneering domain presents unique challenges, necessitating skilled ISSMs to maintain system security and oversee cyber implementation. - Accountability for upholding security standards across the organization. - Navigating the evolving landscape of defense technology and safeguarding sensitive information crucial to national security. - Possess a firm understanding of statutory guidance including: - 570.01 (Information Assurance Workforce Improvement Program) - DoWI 8500.01 (Cybersecurity) - DoW Directive 8140.03 (Information Systems Security Manager – DoW Cyber Exchange) - NIST 800-37 r2 (Risk Management Framework for Information Systems and Organizations) Successful candidates should be able to: - Expertly implement and manage cybersecurity controls across all system lifecycle phases. - Develop and implement security policies, procedures, and guidelines. - Conduct risk assessments and identify potential vulnerabilities and threats. - Collaborate with stakeholders to plan and implement security measures. - Develop and implement incident response procedures. - Ensure compliance with relevant security standards, regulations, and frameworks. - Maintain accurate and up-to-date security documentation. - Provide regular reports to management on the status of information security. Qualifications - Must have an active Top Secret with SCI eligibility. - Bachelor’s degree in computer science/information technology, or other related degree fields (master’s degree is preferred or at least 10 years of related experience). - At least 10+ years of cybersecurity experience including a senior technical or management role. - Project or Program Management experience a plus. - At least one IAT/IAM or equivalent security certification (e.g., CISSP, CCSP, CISM, CISA, or CASP). - Experience working with OSD leadership or Military component or branch. - Excellent communication/presentation skills briefing senior military and government civilian leadership. - Experienced with writing policies, guides, procedures. - Experience in hands-on with eMASS, Xacta and/or other GRC tools. - Experience with Federal and FedRamp A&A Processes. - Experienced and comfortable advising at the Senior Executive Service (SES) level of customers. Requirements - Utilize expert knowledge and experience regarding risk management strategies in support of a major DoW program. - Collaborate between the Cyber Risk Assessor/Security Control Assessor and the program as well as DoW senior leadership. - Reporting of status and metrics for body of evidence and authorization conditions. - Manage multiple priorities in a high-paced and fast-changing environment. - Perform other duties as assigned or required. Benefits - Full-Time REMOTE. Candidates in the Washington DC Metropolitan area preferred. - Travel requirements will vary with location, expect approximately 10% to 25%. Company Description We are proud to be an Affirmative Action and Equal Opportunity Employer and as such, we evaluate qualified candidates in full consideration without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, national origin, age, disability status, protected veteran status, and any other protected status.

• Manage and optimize security tools such as email security, DLP, SIEM, IDS/IPS, EDR, threat intelligence platforms, and other tooling • Design and implement AI-enabled workflows to scale enterprise security and threat operations • Monitor and manage security alerts and incidents, analyze data, and respond to security events • Conduct in-depth analysis of security events and vulnerabilities to identify root causes and recommend corrective actions • Assist in vulnerability assessments and penetration testing activities including remediating security vulnerabilities • Collaborate with other teams to ensure the effective integration of security controls across the organization including IT infrastructure and applications • Develop, implement, and enforce security policies, standards, and procedures to ensure the confidentiality, integrity, and availability of systems and data • Support operational activities including security reviews, vendor security, issue remediation, security awareness and training, and other processes • Support audit and compliance activities for various security domains

This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description In this fully-remote role, you’ll lead an Identity & Access Management Systems team. Your charter will include designing, implementing, and managing enterprise identity, access, and privileged-access controls—spanning authentication, federation, lifecycle governance, automated provisioning, and PAM—to ensure secure, compliant, least-privilege access across the organization. You’ll proactively identify access-related improvements, drive decisions, and take charge of initiatives you own. Job Responsibilities - Manages the day-to-day operations of a team with a focus on the monitoring of systems, fulfillment of requests, and process optimization. - Assigns, monitors, and reviews progress and accuracy of work. - Provides staff management oversight including hiring, promoting, or making recommendations for staff. - Conducts performance reviews and assessments, manages performance, engages in skills assessment, and promotes professional development of staff. - Directs, motivates, and develops staff, maximizing their individual contribution, professional growth, and ability to function effectively with their colleagues as a team. - Ensures adherence to policies, plans, objectives, budgets, and staffing allocations. - Actively participates in project teams, manages and tracks team-level project details, and provides leadership during periods of transition. - Employees may be required to participate in a weekly on-call rotation. Qualifications - Bachelor's Degree in a Computer Sciences related field or equivalent work experience. - 5 years of experience in Information Technology or applicable industry experience required. - Knowledge of information technology concepts, methodology, terminology, and standards. - Strong interpersonal and organizational skills. - Microsoft Office and email skills are required. - Ability to adapt in a high pace and regularly changing environment. - Must be able to communicate effectively with both technical and non-technical co-workers. - Must be willing to adjust schedule to participate in maintenance and upgrades outside of business hours and be part of an on-call rotation. Requirements - Expertise with identity federation standards (SAML 2.0, OAuth 2.0, OpenID Connect). - Knowledge of directory services (LDAP, Active Directory, Azure AD) and identity attribute management. - Strong understanding of IGA concepts such as joiner-mover-leaver workflows, role-based access control (RBAC), attribute-based access control (ABAC), and access review/certification processes. - Experience with enterprise PAM technologies including credential vaulting, automated password rotation, and session monitoring/recording. - Deep understanding of enterprise authentication architectures, including MFA, adaptive authentication, and session management. - Experience implementing automated provisioning/deprovisioning through APIs or connectors to enterprise applications. - Knowledge of governance models, access request workflows, and separation of duties (SoD) controls. - Strong understanding of least privilege principles, privileged elevation workflows, and just in time (JIT) access. - Knowledge of securing privileged access across servers, databases, networks, and cloud platforms. - Familiarity with integrating PAM solutions with authentication/authorization systems and audit/compliance requirements. - Excitement around (and experience experimenting with) leveraging AI for efficiency and problem-solving. - At least 2 years of management experience and will prioritize the coaching, growth, and development of their teams. Benefits - Sponsorship is not available for this role. - Travel to our Chattanooga, Tennessee headquarters for final interviews will be required.

• Support the development and documentation of the security program during compliance and audit cycles • Build and maintain security program documentation in Confluence, including SOPs and standards • Translate security roadmap initiatives into audit-ready documentation • Research security frameworks and regulatory requirements and develop decision trees • Assist with compliance preparation, including organizing audit evidence and mapping controls • Support infrastructure and security reviews through documentation and risk identification • Collaborate closely with Security leadership and gain exposure to security program structure and maintenance.