Join IsI as our Vice President of Cybersecurity and take the helm in safeguarding our computing environments and client systems within the Defense Industrial Base. This critical role focuses on driving our cybersecurity operations across cloud and on-premise platforms, including intelligence, response, vulnerability management, and advanced threat hunting—all while adhering to NIST SP 800-171 and CMMC standards. You'll spearhead the development and leadership of a top-tier national cybersecurity team, utilizing your skills to inspire and drive excellence. We're seeking a visionary leader proficient in strategic thinking, clear communication, and effective team management. If you're ready to lead high-impact projects from inception to completion and elevate our security posture in the defense sector, we invite you to apply.
Duties/Responsibilities:
Support IsI clients and internal IsI cybersecurity needs
Advise senior management on risk levels and security posture
Create, manage, and maintain a robust enterprise level security control policies and procedures for IsI and its clients
Identify information technology (IT) security program implications of new technologies or technology upgrades
Manage the monitoring of information security data sources to maintain organizational situational awareness
Acquire and manage the necessary resources, including leadership support, financial resources, and key security personnel, to support IT security goals and objectives and reduce overall organizational risk
Develop and maintain a cybersecurity strategy that aligns with business objectives and compliance mandates
Develop, and maintain a robust cybersecurity strategy that aligns with secured application design & development
Collaborate internally with product engineering teams to provide security guidance for the cloud-based software platforms ensuring enterprise scale security standards
Institute a cybersecurity governance framework that includes program oversight and a clear reporting structure
Ensure that cybersecurity requirements are integrated into the continuity planning for that system and/or organization(s)
Evaluate and approve development efforts to ensure that baseline security safeguards are appropriately installed
Liaise with external regulators and advisors to ensure compliance with external standards and legal requirements
Implement an integrated cyber risk management framework that encompasses vendor (supply chain) risk and cyber insurance policies
Oversee policy standards and implementation strategies to ensure procedures and guidelines comply with cybersecurity policies
Ensure compliance with all relevant NIST and CMMC guidelines, with a specific focus on maintaining readiness for audits and inspections
Develop and maintain a defense-focused cybersecurity strategy that addresses the unique threats and regulations of the DiB
Lead efforts to achieve and maintain CMMC certification levels required for business operations and potential contracts
Provide necessary support for the product engineering teams to achieve and maintain FedRamp certification levels required for the cloud-based subscription platform
Evaluate and approve development efforts to ensure that baseline security safeguards are appropriately installed and tested, emphasizing solutions compliant with DoD standards
Coordinate with federal oversight entities and maintain proactive communications concerning cybersecurity policies and practices
Design and implement training programs for all employees to understand their role in maintaining compliance with DiB security requirements
Promote awareness of security issues and ensure sound security principles are reflected in the organization's vision and goals
Provide system-related input on cybersecurity requirements to be included in statements of work and other appropriate procurement documents
Develop and maintain an Incident Response Program that integrates seamlessly with the organization’s cybersecurity strategy and objectives
Possess strong problem-solving and analytical skills, with the ability to remain composed and effective under high-pressure situations
Qualifications:
United States Citizenship required
Active TS/SCI clearance
BS Degree in Computer Science, Information Security, or related field, or equivalent work or military experience
8+ years in an advanced management role within IT or cybersecurity, specifically in the Defense Industrial Base or with DoD contractors
15+ years’ experience relevant to Information Technology and Cybersecurity
CISSP, CISM, or other relevant certifications preferred
Direct experience in implementing and managing cybersecurity frameworks like NIST SP 800-171, NIST SP 800-172 and CMMC 2.0
Experience with federal contracting and understanding of relevant DoD cybersecurity requirements
Strong understanding of NIST 800-53, NIST 800-37, NIST 800-171, NIST 800-172, and CMMC Levels 1, 2, and 3, PCI, HIPAA
Strong understanding of infrastructure technology including public and private cloud concepts
Expertise in advanced persistent threats, forensic investigations, and mitigating nation-state cyber-attacks
Experience in developing and implementing security incident response programs and breach management processes
Experience specifically in environments subject to Federal Acquisition Regulation (FAR) and Defense Federal Acquisition Regulation Supplement (DFARS)
Demonstrated ability to interface with U.S. government auditors and inspectors (3PAO and C3PAO, DIBCAC, JSP) regarding cybersecurity measures and compliance
Strong leadership skills with a proven track record of decision-making and policy implementation
Experience in managing cross-functional teams and multi-disciplinary projects
Advanced understanding of cyber threat landscape, including emerging threat vectors and mitigation strategies
Exceptional knowledge of change management principles and performance evaluation processes
Familiarity with cloud security frameworks and hybrid IT environments
Proven ability to build security programs that meet or exceed NIST and CMMC requirements
Strong knowledge of risk management processes including specifically tailored to federal defense contracts
Strong knowledge of risk management processes including quantitative and qualitative risk assessments
Knowledge of information technology (IT) supply chain security and supply chain risk management policies, requirements, and procedures
Knowledge of laws, policies, procedures, or governance relevant to cybersecurity for critical infrastructures
Expertise in DiB sector compliance and security measures required by the Department of Defense, including DFARS, CMMC, ITAR, EAR
In-depth understanding of Controlled Unclassified Information (CUI) protections
Knowledge of applicable laws, statutes (e.g., in Titles 10, 18, 32, 50 in U.S. Code), Presidential Directives, executive branch guidelines, and/or administrative/criminal legal guidelines and procedures
Knowledge of network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth)
Knowledge of business continuity and disaster recovery continuity of operations plans
Knowledge of data backup and recovery specific to environments under stringent regulatory requirements
Knowledge of penetration testing principles, tools, and techniques
Knowledge in creating policies that reflect system security objectives
Exhibit professionalism in the workplace
Excellent customer relationship skills
Excellent organizational skills, and attention to detail
Excellent interpersonal and networking skills
Comfortable working in a high-paced environment
Ability to solve challenging strategic business problems
Preferred Qualifications:
Master's Degree in Cybersecurity, focusing on government security requirements
What we offer:
The salary range for this role is $150,000-$175,000
A competitive salary and benefits package
Generous PTO and flexible schedule
Hybrid orremote work schedules
Professional growth encouragement and support
Industrial Security Integrators, LLC (“IsI”) is an equal opportunity employer committed to affirmative action and diversity in the workplace. It is the policy of IsI to provide Equal Employment Opportunities (EEO) to Employees and Applicants, without regard to race, color, religion, sex, age, marital status, citizenship status, national origin, sexual orientation, gender identity, veteran status or disability or any other factor protected by law and to provide advancement opportunities for minorities, women, disabled individuals, and veterans. IsI is stronger and more effective when our workforce includes highly qualified individuals with diverse backgrounds, cultures, and traditions.
IsI Enterprises does not accept unsolicited resumes from individual recruiters or third party recruiting agencies in response to job postings or otherwise. Placement fees will not be paid to any recruiter unless IsI has an active agreement in place with the recruiter and such a request has been made by the IsI hiring team and such candidate was submitted to the IsI hiring team via our Applicant Tracking System. Any unsolicited resumes or other data submitted to IsI in violation of this policy may be used by IsI without obligation to pay any fees of any kind to the recruiter.
Powered by JazzHR
Xwvxplr8Et
Seniority level
Director
Employment type
Full-time
Job function
Other, Information Technology, and Management
Industries
Internet Publishing
Referrals increase your chances of interviewing at IsI Enterprises by 2x