Cloud Cybersecurity Manager, CCM

Job Description: • Deliver comprehensive cybersecurity services to comply with DoD, Defense Information Systems Agency (DISA), U.S. Cyber Command, and agency directives. • Ensure continuous compliance with all cybersecurity mandates. • Provide National Institute of Standards and Technology (NIST) Risk Management Framework (RMF) support. • Implement advanced security architectures for predictive threat detection and response. • Conduct vulnerability assessments. • Manage Configuration Management (CM) and control. • Maintain compliance with all cybersecurity policies. • Provide continuous monitoring and reporting of security controls. • Ensure compliance with the DoD Zero Trust Architecture (ZTA). • Ensure the secure operation of the agency’s IT enterprise, which enables the primary objective of O&E operations to function. • Maintain the active Authorization to Operate (ATO) status, which supports DoD Cloud Computing Security Requirements Guide (CC SRG) Impact Level (IL) 2, IL4, and IL5 information system operations 24 hours a day, seven days a week (24/7). • Manage a team of up to 30 cybersecurity professionals. Requirements: • Must be a U.S. Citizen (Required) • Active Top Secret Clearance / Favorably Adjudicated Tier 5 Investigation (Required) • Must be in the National Capital Region and available to support on-site as required (Required) • Bachelor’s degree in computer science, IT, information systems, or cybersecurity (Required) • 8+ years of experience in managing cybersecurity projects of $100M+ within a Cloud environment (Required) • 8+ years of experience with the NIST RMF, NIST SP 800-53, STIGs, Security Content Automation Protocol (SCAP), Information Assurance Vulnerability Alerts (IAVAs), and Federal Information Security Management Act (FISMA) Certified Information Systems Security Professional (CISSP), and relevant certifications in NIST RMF or ZTA • 8+ years of experience analyzing, assessing, and implementing corrective actions based on vulnerability management and penetration testing • 8+ years of experience supporting DoD defensive cyber operational activities, including, but not limited to, information system protection, defense, response (incident handling), reporting, and recovery (Required) • Deep understanding of cloud operations and cybersecurity compliance within a DoD environment (e.g., AWS GovCloud, ZTA, NIST RMF) (Required) • Expert knowledge of DoD CC SRG Impact Levels (IL) 2, 4, and 5. Demonstrated experience with cloud security postures in AWS GovCloud (Required) • Experience managing large-scale Agile development teams and programs (Required) • Possess one of the following certifications: CISM, Certified Information Systems Security Officer (CISSO), Federal IT Security Professional-Manager (FITSP-M), GIAC Certified Intrusion Analyst Certification (GCIA), GIAC Cloud Security Automation (GCSA), GIAC Certified Incident Handler (GCIH), GIAC Security Leadership Certification (GSLC), Global Industrial Cyber Security Professional Certification (GICSP), CISSP-ISSMP, or CISSP (Required) Benefits: • Medical, Dental, and Vision insurance • Retirement savings 401K plan provided by an industry leading provider with 3% employer contributions of the employee’s gross salary • Paid Time Off and Standard Government Holidays • Life Insurance, Short- and Long-Term disability benefits • Training Benefits Apply tot his job Apply tot his job