Lead the global cyber security strategy, governance, and operations to protect clients, systems, data, and brand reputation across all regions.
Define and execute the Information Security Management System (ISMS) aligned to ISO 27001, SOC2, and TISAX, while managing enterprise risk and compliance.
Serve as the senior authority on cyber risk, advising the CTO, Board, and customers, and act as executive incident commander for major cyber events.
JD Power is a proven leader in business-critical data and intelligence, powering auto-related decisions with proprietary data, advanced analytics, and deep industry expertise. The company is a global corporation with a diverse workforce and a culture focused on innovation, collaboration, and trust.
Lead RMF authorization activities, including SSP, SAP, SAR, and POA&M development.
Conduct vulnerability assessments and enforce secure configurations using CIS Benchmarks and DISA STIGs.
Support cloud security initiatives in AWS GovCloud and advise on AI-enabled system security.
This company provides cybersecurity solutions for federal government systems. They are a mid-sized organization with a collaborative culture focused on security and compliance.
Monitor security alerts, vulnerabilities, and incidents across enterprise systems and assist in incident response.
Maintain compliance with standards such as NIST CSF, ISO 27001, and SOC 2 through audits and policy development.
Conduct security risk assessments, evaluate controls, and track remediation plans.
Mission Critical Group is an end-to-end power solutions and services provider that accelerates time-to-power for mission critical environments. With over 1.5 million square feet of U.S. manufacturing capacity, they support data centers, healthcare, and industrial facilities.
Lead and execute RMF compliance activities in accordance with DoD and NIST requirements, supporting system accreditation and ATO efforts.
Conduct STIG and SRG assessments across Windows, Linux, database, cloud, and application environments using tools such as SCC and STIG Viewer.
Analyze vulnerability scan results, develop and maintain POA&Ms, and track remediation activities to closure.
Peraton is a next-generation national security company that drives missions of consequence across land, sea, space, air, and cyberspace. As a leading mission capability integrator and enterprise IT provider, we deliver trusted solutions to protect our nation and allies, supporting essential government agencies and every branch of the U.S. armed forces.
Support the lifecycle management of cybersecurity offerings, including ideation, design, and launch.
Partner with leadership to standardize services and create go-to-market sales collateral.
Perform competitive analysis and pricing to inform packaging and growth strategies.
Coalfire is on a mission to make the world a safer place by solving clients' hardest cybersecurity challenges. They are a team of thought leaders and consultants headquartered in Chicago with offices across the U.S. and U.K., supporting clients worldwide.
Lead design and implementation of secure, scalable cloud architectures for a large federal civilian agency.
Direct all aspects of program performance including scope, schedule, cost, quality, and risk management.
Oversee compliance with federal cybersecurity frameworks such as FISMA, FedRAMP, NIST SP 800 53, and Zero Trust.
Peraton is a next-generation national security company that drives missions of consequence and serves as the world's leading mission capability integrator and transformative IT provider. It delivers trusted solutions to protect the nation and allies, supporting essential government agencies and all branches of the U.S. armed forces.
Collaborate with cross-functional teams to apply cybersecurity best practices across systems, applications, and cloud environments.
Lead portions of cybersecurity assessments across the technology stack, identifying vulnerabilities and recommending remediation strategies.
Assist in shaping cybersecurity risk management activities, helping prioritize and guide security initiatives to protect critical assets.
Rise8 builds custom, secure software for government organizations, measuring success by impact: lives saved, time returned, and missions advanced. Certified as a Great Place to Work® with 100% of employees saying they love working here, Rise8 offers a culture rooted in kindness, candor, and continuous learning.
Lead the security strategy, governance, and operational execution for enterprise platforms supporting mission-critical capabilities across the Department of Defense and USSOCOM.
Develop enterprise security strategies aligned to Zero Trust principles and oversee implementation of security controls across cloud, hybrid, and containerized environments.
Provide technical leadership for identity and access management, cloud security posture management, and security automation initiatives while ensuring compliance with DoD RMF.
LMI is a digital solutions provider dedicated to accelerating government impact with innovation and speed, delivering commercial-grade platforms and mission-ready AI to federal agencies. Headquartered in Tysons, Virginia, LMI serves the defense, space, healthcare, and energy sectors, focusing on agility and collaboration to help agencies navigate complexity.
Focus on developing and delivering compliance solutions and strategies for Commercial, Defense Industrial Base, and State/Local customers.
Conduct compliance audits, assessments, and gap analyses to identify areas for improvement.
Author policies, plans, and procedures in CJIS and FedRAMP environments while serving as a trusted advisor to customers.
Planet Technologies is the leading provider of Microsoft consulting services to public sector and commercial organizations, specializing in building custom solutions that transform business operations. They are a growing team with collaborative peers and caring leaders, focused on high-profile client projects.
Lead security operations including vulnerability management, incident response, and SIEM platform maturity.
Administer Microsoft security tools (Defender, Purview, Entra) and support compliance frameworks like SOC 2 and HITRUST.
Drive risk reduction through security awareness, risky user remediation, and cross-functional collaboration.
Sequel develops next-generation drug-delivery advancements, starting with the twiist Automated Insulin Delivery System for diabetes management. It is headquartered in New Hampshire and fosters a culture of hard work, fun, and support.
Design and implement enterprise security controls aligned with NIST SP 800-53 and Zero Trust Architecture principles.
Conduct continuous security monitoring, incident response, and vulnerability management across cloud, network, and endpoint environments.
Develop and maintain cybersecurity SOPs, security baselines, and asset inventories to support audit readiness.
DMI is a leading provider of digital services and technology solutions, headquartered in Tysons Corner, VA, supporting public sector agencies and commercial enterprises globally. Recognized as a Top Workplace, the company delivers secure, efficient, and cost-effective solutions through a culture guided by five core values.
Support cybersecurity efforts across multiple projects within the VA Health portfolio, including ATO remediation, system scans, and artifact development.
Communicate and provide consultative support on system security certification & accreditation, coordinating with internal and external project stakeholders.
Identify and mitigate risks, support team of cyber professionals, and build artifacts in accordance with NIST and VA guidelines.
LTS provides IT program management and cybersecurity support for the Department of Veterans Affairs Health Portfolio. The company values innovation, growth, collaboration, and quality, offering comprehensive benefits and a career path that rewards ambition and performance.
Serves as a cybersecurity SME for Assessment and Authorization (A&A) of information systems, applying NIST 800-53 security controls and the Risk Management Framework (RMF) process.
Possesses five years of relevant RMF, NIST, and A&A experience, including assessing security controls for large, complex organizations like DLA.
Briefs senior management on authorization progress and understands cybersecurity in emerging technology areas such as Cloud and Industrial Control Systems.
Horizon Industries Limited is a dynamic IT and Management Consulting firm based in the Washington, DC area, providing full-cycle IT consulting and management support to both private and public sectors. Founded in 1996, the company prides itself on a diverse, employee- and family-centric culture with a focus on professional growth.
Lead Risk Management Framework activities for a federal AI platform deployment in AWS GovCloud.
Own authorization artifacts and coordinate with ISSOs and Authorizing Officials for ATO.
Partner with platform engineers on cloud and container security, vulnerability management, and hardening.
LMI is a digital solutions provider dedicated to accelerating government impact with innovation and speed, bringing commercial-grade platforms and mission-ready AI to federal agencies. Headquartered in Tysons, Virginia, it serves the defense, space, healthcare, and energy sectors, with a culture more startup than traditional government contractor.
Develop and maintain the enterprise IT GRC strategy, framework, and roadmap, presenting updates to executive leadership.
Lead enterprise IT risk assessments, maintain risk registers, and oversee remediation efforts.
Ensure compliance with regulations like NIST, ISO 27001, SOC, PCI-DSS, HIPAA, GDPR, and SOX.
Mission Critical Group is an end-to-end power solutions and services provider that accelerates time-to-power for mission critical environments. With over 1.5 million square feet of U.S. manufacturing capacity, the company supports data centers, healthcare, and industrial facilities where uptime is non-negotiable.
Mentor a privacy team of four experienced lawyers, implementing Privacy/Security by Design across the platform.
Zscaler accelerates digital transformation, empowering customers to be more agile, efficient, resilient, and secure with its AI-forward, cloud-native Zero Trust Exchange platform. The company fosters a culture of execution, customer obsession, collaboration, and accountability, emphasizing impact over activity.
Maintain Risk Management Framework artifacts for DevSecOps pipeline inheritance of NIST SP 800-53 controls.
Complete and validate STIG/SRG checklists quarterly and provide monthly application STIG status reports.
Evaluate program risks, document mitigation strategies, and recommend courses of action to ensure continuous ATO compliance.
DecisionPoint is a company providing cloud services and DevSecOps solutions, supporting ARTRANS AWS environments. It is a regular full-time employer fostering a culture of security and compliance, with an active Secret clearance required for this role.
Lead global product marketing strategy for ServiceNow's Security & Risk portfolio, architecting positioning and messaging for the autonomous defense platform.
Drive differentiated narratives, market intelligence, and analyst relations to maintain a dominant 'Leader' position in cybersecurity.
Oversee cross-functional go-to-market strategies, content architecture, and sales enablement to exceed ARR growth objectives.
Armis from ServiceNow protects the entire attack surface and manages an organization’s cyber risk exposure in real time. ServiceNow, the AI control tower for business reinvention, helps 85% of the Fortune 500 work smarter, faster, and better with an AI-native culture.
Lead cybersecurity, operational resilience, and regulatory compliance initiatives across Indonesia.
Ensure adherence to OJK, Bappebti, PDP Law, and Bank Indonesia regulations while aligning with Binance's global security framework.
Act as primary advisor to executive leadership and engage directly with Indonesian regulators on security and data protection matters.
Binance is a leading global blockchain ecosystem behind the world's largest cryptocurrency exchange. We are trusted by over 300 million people in 100+ countries and offer a wide range of digital-asset products and services.
Monitors, investigates, and responds to cybersecurity events and alerts across various security platforms.
Manages data loss prevention and insider risk alerts, collaborating with IT and business stakeholders.
Supports continuous improvement of detection capabilities through alert tuning and process optimization.
USAP is a company that safeguards organizational data and technology assets through cybersecurity operations. The size and culture are not specified, but the job emphasizes collaboration, continuous improvement, and a secure technology environment.