Senior Cybersecurity Lead

The Senior Cybersecurity Lead is responsible for overseeing security operations compliance and risk management for one or more secure enclaves. This role provides technical leadership while serving as a trusted security advisor to customers and program leadership. The Senior Cybersecurity Lead ensures systems meet federal security requirements throughout their lifecycle and that security activities are executed consistently efficiently and in alignment with organizational and customer expectations.

• Provide technical leadership to ensure consistent execution of security processes and adherence to standards
• Serve as the primary security point of contact for assigned enclaves customers and program leadership
• Ensure security requirements for assigned information systems are implemented maintained and continuously monitored
• Oversee authorization and reauthorization activities (ATO) including preparation and review of SSPs SAPs SARs POA&Ms and other RMF artifacts
• Guide and support risk management activities including vulnerability management incident response coordination and risk acceptance processes
• Collaborate with system owners architects engineers and program teams to integrate security into system design and operations
• Monitor and report on enclave security posture risks and compliance status to leadership and stakeholders
• Support audits assessments and inspections conducted by internal and external entities
• Drive continuous improvement in enclave security processes tools and documentation

• Ability to obtain and maintain a U.S. government security clearance
• Bachelors degree
• 5 years of technical experience supporting federal IT projects including at least 2 years serving as a task lead or technical lead
• Demonstrated experience supporting secure enclaves or enclave-based security environments
• Strong working knowledge of the Risk Management Framework (RMF) and NIST 800-53 controls
• Experience supporting system authorization (ATO) and continuous monitoring activities
• Experience coordinating security activities across multiple systems or environments
• Experience working in multi-cloud or cloud-agnostic security environments including familiarity with cloud security architectures across one or more major cloud platforms.
• Strong written and verbal communication skills including the ability to brief technical and non-technical stakeholders
• Must have one or more of the following active certifications:
  • Certified Information Systems Security Professional (CISSP)
  • Certified Information Security Manager (CISM)
  • Certified Authorization Professional (CAP)
  • GIAC Security Leadership Certification (GSLC)

Identity Statement

As part of the application process you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.

Steampunk is a Change Agent in the Federal contracting industry bringing new thinking to clients in the Homeland Federal Civilian Health and DoD sectors. Through our Human-Centered delivery methodology we are fundamentally changing the expectations our Federal clients have for true shared accountability in solving their toughest mission challenges. As an employee owned company we focus on investing in our employees to enable them to do the greatest work of their careers and rewarding them for outstanding contributions to our growth. If you want to learn more about our story visit .

We are an equal opportunity employer and all qualified applicants will receive consideration for employment without regard to race color religion sex national origin disability status protected veteran status or any other characteristic protected by participates in the E-Verify program.