Cybersecurity Program Manager

T. White Parker is seeking a highly skilled and experienced Cybersecurity Program Manager to lead our cybersecurity client engagements. The successful candidate will lead and manage engagements responsible for ensuring the security and integrity of our federal clients' data and information systems, including the development and implementation of comprehensive cybersecurity programs. The ideal candidate will have extensive experience in designing, implementing, and operating cybersecurity programs and knowledge of cybersecurity practices. Prior experience working with senior leaders in a federal environment, strong oral and written communication skills, and the ability to lead and guide teams to success is a must. Experience and/or a familiarity with implementing Zero Trust Architecture is a big plus!

Primary job duties and responsibilities include, but are not limited to the following:

• Overseeing the execution of cybersecurity projects and initiatives, ensuring they are completed on time, within scope, and within budget
• Developing work plans and integrated project schedules
• Managing budgets and resources
• Serving as key point of contact for cybersecurity engagements (including both client POC and T. White Parker corporate POC)
• Managing and directing business and technical staff (includes day-to-day work, performance reviews, career development)
• Reporting project and engagement status
• Preparing for and participating in corporate Engagement Management Reviews
• Leading the establishment of cybersecurity programs and Program Management Offices
• Leading teams responsible for:
  • Developing and integrating Zero Trust solutions to protect federal agencies’ critical infrastructure, including identity, network, data, and application security.
  • Developing and implementing cybersecurity strategies, policies, and procedures to protect information systems.
  • Performing security assessments, vulnerability analyses, and risk management activities.
  • Implementing and maintaining strong authentication and authorization mechanisms, such as multi-factor authentication (MFA) and role-based access control (RBAC).
  • Conducting security risk assessments, identifying vulnerabilities, and developing mitigation strategies in line with Zero Trust.
  • Monitoring and responding to security incidents, conducting thorough investigations, and implementing corrective actions.
  • Implementing and managing security tools and technologies, including firewalls, intrusion detection/prevention systems (IDS/IPS), and security information and event management (SIEM) systems.
  • Designing and deploying strategies to isolate systems and limit unauthorized lateral movement within the network.
  • Implementing tools and processes for continuous security monitoring, analytics, and threat detection.
  • Designing and enforcing Zero Trust principles within cloud environments.
  • Collaborating with cross-functional teams to ensure cybersecurity measures are integrated into all aspects of IT operations and to ensure Zero Trust principles are embedded into all systems.
  • Preparing and presenting reports on the status of cybersecurity initiatives and risk management to senior management.
  • Staying current with the latest cybersecurity trends, threats, and technologies, and recommending appropriate measures to mitigate risks.
  • Contributing to the development of security awareness programs that educate staff about cybersecurity (including Zero Trust) policies and best practices.
  • Ensuring compliance with federal cybersecurity frameworks, policies, requirements, regulations, and compliance frameworks (e.g., FISMA, NIST, 800-207, Executive Orders, ISO 27001, CISA, FedRAMP, etc.).

• U.S. Citizens in the Metropolitan DC, Maryland, & Virginia Area Only
• Master’s degree in Cybersecurity, Information Technology, Computer Science, or a related field. NOTE: 15 years of relevant professional work experience as a Program Manager may be substituted for a Master’s degree
• 10 years of professional experience in cybersecurity or a related IT field.  NOTE: 15 years of relevant professional work experience as a Program Manager must be substituted if applicant does not have a Master’s degree
• Professional Management Professional (PMP) Certification required. Non-negotiable
• At least 5 years as a senior manager in a cybersecurity-related position
• At least 1 or more cybersecurity-related certifications
• Extensive experience managing cybersecurity program functions, tasks, projects, and engagements, including but not limited to:
  • incident response and cybersecurity-related investigations
  • risk assessments and vulnerability analyses
  • vulnerability assessments, penetration tests, and security audits
  • cross-functional teams
• Familiarity with cybersecurity frameworks, policies, procedures, processes, standards, requirements, regulations, and/or compliance frameworks (e.g., FISMA, NIST, ISO 27001, CISA, CIS Controls, FedRAMP)
• Understanding of cybersecurity principles, threats, and vulnerabilities
• Familiarity with Zero Trust solutions, roadmaps, and capabilities
• Understanding of network security, cloud security, and endpoint security
• Exceptional project management skills and ability to manage multiple workstreams simultaneously.
• Exceptional analytical and problem-solving skills
• Exceptional communication and interpersonal skills, with ability to effectively communicate complex concepts to non-technical stakeholders and senior leaders.
• Ability to effectively collaborate in both a virtual and in-person environment
• Self-starter, proactive, detail-oriented, organized, quality-focused, and team player
• Ability to obtain and maintain a Public Trust Security Clearance