We are seeking a highly skilled and motivated Cybersecurity Program Manager to lead and manage our federal customer's cybersecurity initiatives, with a focus on Assessment & Authorization (A&A) and Security Operations Center (SOC) responsibilities. This role requires a strategic thinker with a deep understanding of cybersecurity principles, excellent leadership skills, and the ability to manage complex projects. The Cybersecurity Program Manager will be responsible for ensuring the security and compliance of our information systems and managing our SOC team to proactively detect, respond to, and mitigate security threats. This position is hybrid-remote and on-site at the client site in Rockville, MD.

Key Responsibilities:

• Develop and Manage Assessment &Authorization (A&A) Processes: Oversee the development, implementation, and management of the organization's A&A processes, ensuring compliance with relevant standards and regulations (e.g., NIST, ISO 27001, FISMA).
• Conduct Risk Assessments: Lead comprehensive risk assessments to identify vulnerabilities and ensure that appropriate security controls are in place.
• Prepare Security Documentation: Develop and maintain security documentation, including System Security Plans (SSPs), Risk Assessment Reports (RARs), and Plans of Action and Milestones (POA&Ms).
• Coordinate with Stakeholders: Work closely with system owners, developers, and other stakeholders to ensure understanding and adherence to security requirements.
• Perform Continuous Monitoring: Implement and manage a continuous monitoring program to maintain the security posture of the organization's information systems.
• Manage SOC Operations: Oversee the daily operations of the SOC, ensuring effective monitoring, detection, and response to cybersecurity incidents.
• Incident Response: Develop and implement incident response procedures, leading the SOC team in the identification, containment, eradication, and recovery from security incidents.
• Threat Intelligence: Stay informed about emerging threats and vulnerabilities, ensuring the SOC team is updated and prepared to handle new challenges.
• SOC Metrics and Reporting: Develop and track key performance indicators (KPIs) for the SOC, providing regular reports to senior management on SOC activities, incident trends, and overall security posture.
• Team Leadership and Development: Lead, mentor, and develop the SOC team, fostering a culture of continuous improvement and professional growth.

• Education: Bachelor’s degree in Cybersecurity, Information Technology, Computer Science, or a related field. Master’s degree preferred.
• Certifications: Relevant certifications such as CISSP, CISM, CISA, CRISC, CEH, or GIAC are preferred but not required.
• Minimum of 10 years of experience in cybersecurity, with at least 5 years in a leadership role, ideally in support of a federal agency.
• Proven experience in managing A&A processes and leading a SOC team.
• Strong understanding of cybersecurity frameworks and standards (e.g., NIST, ISO 27001, FISMA).
• Experience with security tools and technologies used in SOC environments (e.g., SIEM, IDS/IPS, EDR).
• Knowledge of risk management and incident response methodologies.
• Ability to manage multiple teams consisting of Project Managers and Subject Matter Experts in the design and delivery of cybersecurity solutions.
• Strong analytical and problem-solving abilities.
• Ability to manage multiple projects and priorities in a fast-paced environment.