• Administer the policy lifecycle, including drafting, coordinating reviews, publishing, and updating security policies. • Collaborate with Legal, IT, and Security to ensure policies align with business and regulatory requirements. • Maintain centralized documentation for audits, assessments, and regulatory reviews. • Assist in preparing and organizing policy and evidence documentation for internal and third-party audits. • Monitor regulatory developments and assist in aligning internal practices accordingly. • Assist in monitoring organizational adherence to internal policies and procedures. • Track and report on compliance and policy enforcement metrics. • Arranges, conducts and monitors compliance testing, audits, and investigations. • Provides ongoing monitoring of compliance information systems and processes. • Informs supervisor of any compliance violations. • Reviews internal systems, controls, and processes and identifies ways to resolve regulatory gaps and deficiencies. • Assists with the implementation of new and updated compliance systems, standards, processes, procedures, and policies. • Ensures compliance with all local, state, and federal laws and regulations as well as company policies, procedures and internal controls. • Support compliance initiatives across departments by providing guidance and training. • Generates analyses and reports containing results of compliance testing to management. • Develops, maintains, and delivers compliance training content and programs. • Performs other duties as required to support the business and evolving organization.

• Build, manage, and grow a high-value pipeline of cyber-related opportunities, leveraging relationships, market insights, and understanding of mission priorities across the DoD. • Drive the identification, shaping, and capture of new business opportunities in support of DoD Cyber Security. • Collaborate with operational, technical, and functional leaders across FTI to align internal capabilities with external customer demands, bringing forward differentiated and competitive solutions. • Assist in guiding potential customers by demonstrating technology solutions, architectures, capabilities, and potential acquisition paths for early-stage opportunities, working with internal technical and program management teams to develop responses for requests for information (RFI), market surveys, white papers, presentations, briefings, and major event demonstrations. • Support bid/no bid decisions, proposal strategy development, resource planning, and overall capture execution. • Maintain a clear understanding of customer funding profiles, acquisition strategies, and emerging requirements to proactively position FTI. • Contribute to internal growth planning efforts including strategic planning and market analysis relevant to the cyber domain. • Help foster a culture of growth, accountability, and high performance within the BD team. • Develop and deliver reports and briefs as required.

• Lead and manage the GRC and Security Engineering teams, including strategy, objectives, staffing, coaching, and performance management. • Own governance, risk, and compliance programs. Maintain ISO 27001 and related controls. Drive audit readiness for HIPAA and other frameworks. Coordinate policy lifecycle management and control testing. • Run vendor assessment and qualification program. Oversee third party risk management, due diligence, contractual security requirements, and continuous monitoring. • Provide AI related security assessments and guidance. Establish acceptable use guardrails for AI, assess model and data risks, and advise on controls for AI enabled solutions. • Oversee security architecture for cloud environments and enterprise platforms. Partner with engineering on secure design for AWS, Azure, identity, network, and data protection. • Direct security engineering operations. Manage EDR and threat detection with CrowdStrike, SIEM operations, CSPM posture management, vulnerability management, and SOAR automation. • Lead incident response readiness and execution. Run tabletop exercises, coordinate investigations, and deliver root cause and lessons learned. • Own and manage security budgets, multiyear planning, vendor contracts, and cost optimization while meeting control objectives. • Report program status and risk posture to executives and the board. Define and track KPIs and KRIs. Communicate clearly with technical and non technical stakeholders. • Establish and enforce secure software development practices and SDLC controls with engineering leadership. • Maintain a current security roadmap and maturity plan aligned to business priorities. • Oversee metrics, dashboards, and reporting for program performance and risk reduction. • Coordinate with Legal, Privacy, and Compliance on regulatory obligations and customer security assessments. • Champion security awareness training and culture, sponsor targeted training for engineering and high risk roles. • Evaluate, select, and manage strategic security vendors and platforms, drive successful implementations and integrations. • Represent security in customer meetings and due diligence, provide credible technical and compliance answers.

• Create and execute standout content and campaigns • Own creative content initiatives end-to-end • Produce high-quality written content • Build and manage executive thought leadership programs • Own the production and rollout of content • Turn insights into creative opportunities • Specialize in social, especially LinkedIn, X, and Instagram • Collaborate to make ideas real • Inject creativity into growth campaigns • Keep the brand feeling alive