IT Security Lead

IT Security Lead:

Job Summary:

Gridiron IT is looking for a IT/Security Lead to join a contract with a federal government client in support of an important mission. We are seeking an IT/Security Lead to oversee and manage cybersecurity initiatives and ensure the security of IT systems. The ideal candidate will have a strong background in cybersecurity, information assurance, and vulnerability management, as well as experience leading security programs of similar scope and complexity.

Responsibilities

• Lead and manage cybersecurity programs, ensuring compliance with security policies, regulations, and best practices.
• Develop, maintain, and manage Security Authorization and Assessment packages to support organizational security requirements.
• Oversee and manage Plans of Action & Milestones (POA&Ms), ensuring timely remediation of security vulnerabilities.
• Conduct security assessments and risk analyses, providing recommendations for risk mitigation and system improvements.
• Review and analyze vulnerability scans, identifying threats and implementing effective mitigation strategies.
• Research and evaluate software and technologies for potential security vulnerabilities, providing recommendations for secure implementation.
• Collaborate with stakeholders to ensure system security compliance with organizational and regulatory standards.
• Stay updated on emerging cybersecurity threats and technologies, proactively addressing potential risks.

Required Skills

• Bachelor s degree in System Engineering, Computer Science, Information Systems, Engineering Science, Engineering Management, or a related discipline.
• Minimum of two (2) years of experience as a program lead in a program of similar scope, type, and complexity.
• At least three (3) years of experience in Information Security (Cybersecurity or Information Assurance), with demonstrated expertise in:
• Developing, maintaining, and managing Security Authorization and Assessment packages.
• Developing and managing Plans of Action & Milestones (POA&Ms).
• Conducting research and providing review recommendations on software and technologies for security vulnerabilities.
• Reviewing vulnerability scans and implementing mitigation techniques

Desired Skills

• Industry-recognized cybersecurity certifications (e.g., CISSP, CISM, CISA, Security ).
• Experience working with federal security compliance frameworks (e.g., NIST, FISMA, RMF).
• Strong analytical and problem-solving skills, with the ability to assess risks and develop security strategies.
• Excellent communication and leadership skills, with the ability to collaborate with cross-functional teams and stakeholders.

Security Clearance

• Active Top-Secret clearance

Clearance

Applicants selected will be subject to a security investigation and may need to meet eligibility requirements for access to classified information. Requires TOP SECRET

Compensation and Benefits

Salary Range: $120,000 - $140,000 (Compensation is determined by various factors, including but not limited to location, work experience, skills, education, certifications, seniority, and business needs. This range may be modified in the future.)

Benefits: Gridiron offers a comprehensive benefits package including medical, dental, vision insurance, HSA, FSA, 401(k), disability & ADD insurance, life and pet insurance to eligible employees. Full-time and part-time employees working at least 30 hours per week on a regular basis are eligible to participate in Gridiron s benefits programs.

Gridiron IT Solutions is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, pregnancy, sexual orientation, gender identity, national origin, age, protected veteran status or disability status.

Gridiron IT is a Women Owned Small Business (WOSB) headquartered in the Washington, D.C. area that supports our clients' missions throughout the United States. Gridiron IT specializes in providing comprehensive IT services tailored to meet the needs of federal agencies. Our capabilities include IT Infrastructure & Cloud Services, Cyber Security, Software Integration & Development, Data Solution & AI, and Enterprise Applications. These capabilities are backed by Gridiron IT's experienced workforce and our commitment to ensuring we meet and exceed our clients' expectations.