Serving as a security subject matter expert (SME), providing guidance and oversight for the end-to-end security architecture.
Engaging with multiple system owners across multiple networks to interpret, negotiate, and refine system and security requirements.
Defining and driving security strategy, including risk assessment and management, security control assessment, continuous monitoring, service design, and broader cybersecurity program support.
Identifying and analyzing security issues across complex, highly integrated systems and environments, and develop clear, actionable remediation recommendations.
Designing, developing, and executing static and dynamic application security testing, as well as penetration testing activities.
Partnering with development teams to improve understanding of vulnerabilities, attack vectors, and effective remediation techniques.
Leading and mentoring program security engineers in day-to-day security engineering activities.
Collaborating with the program security team to ensure STE/STN and continuous monitoring requirements are met for Test, Integration, and Development environments.
Clearly articulating program security requirements, risks, and compliance challenges to multiple customer points of contact.
Coordinating with internal cross-functional teams to plan, prioritize, and execute remediation and other security-related activities.

Requirements

Bachelor of Science degree in Information Technology, Information Assurance, or related field
At least 12 years of relevant experience
At least 10 years of experience leading diverse Security Engineering teams including ISSO and ISSE teams
At least 5 years of experience working on an Agile program in a leadership role
Extensive hands-on experience with modern security tools; hardware and software security implementation; communication protocols; encryption technologies; and web services
Current active CISSP certification
In-depth understanding of security vulnerabilities and remediation techniques, including risk assessment, risk management, and security strategy/design
Extensive experience formulating, implementing, and assessing IT security policy
Solid understanding of ATOs, SSPs, and STE/STN requirements
Direct experience collaborating with software developers, software testers, and integration, deployment, and sustainment teams
Strong communication and interpersonal skills, with a proven ability to clearly convey program requirements and system compliance challenges to multiple customer stakeholders
Demonstrated ability to coordinate across multiple internal teams for planning and remediation activities
Solutions-oriented team player with a high level of self-initiative.

Benefits

Paid Time Off
11 paid Holidays
401K with a 6% company match and immediate vesting
Flexible Schedules
Discounted Stock Purchase Plans
Technical Upskilling
Education and Training Support
Parental Paid Leave

Applicant Tracking System Keywords

Tip: use these terms in your resume and cover letter to boost ATS matches.

Hard Skills & Tools

security architecturerisk assessmentsecurity control assessmentapplication security testingpenetration testingvulnerability analysisremediation techniquesIT security policy implementationAgile methodologysecurity strategy

Soft Skills

leadershipmentoringcommunicationinterpersonal skillscollaborationproblem-solvingcoordinationplanningnegotiationarticulation

Certifications

CISSP