Security Lead with Security Clearance

The contract supports the Air Force in delivering cloud-based, software-intensive capabilities that enhance warfighter effectiveness. The scope encompasses software development, operations and support, system and security engineering, agile coaching, DevSecOps enablement, configuration and release management, system integration, cyber compliance, and cloud platform management. Services are delivered using agile software development principles and a continuous integration/continuous delivery (CI/CD) approach within a government-authorized cloud environment. Responsibilities:

• The Security Lead is responsible for overseeing and coordinating all cybersecurity activities across cloud platforms, DevSecOps pipelines, and mission applications. This role ensures that systems comply with DoD cybersecurity standards, supports risk management efforts, and leads the security posture across environments in support of Authority to Operate (ATO) processes. The Security Lead works collaboratively with engineering, development, and platform teams to embed security into every phase of the software lifecycle.
o Lead the implementation of security policies, controls, and technical safeguards across cloud-native and hybrid systems.
o Oversee execution of Risk Management Framework (RMF) processes including control selection, documentation, assessment, and continuous monitoring.
o Coordinate and support ATO packages and compliance with NIST 800-53, CNSSI 1253, and DoD STIG requirements.
o Conduct risk assessments, vulnerability scans, and system audits to identify and remediate security risks.
o Serve as the primary point of contact for all security-related activities and interface with government Authorizing Officials (AOs), ISSMs, and cybersecurity leadership.
o Guide security integration into CI/CD pipelines, ensuring secure software delivery practices are implemented and maintained.
o Mentor junior cybersecurity personnel and promote a culture of security awareness across development and platform teams.

• Required Experience:

• 8-10+ years of cybersecurity experience, with 3+ in a leadership role.

• Extensive experience with RMF, NIST, FedRAMP, and DoD security compliance.

• Strong knowledge of cloud security (e.g., AWS GovCloud, Azure Government), identity and access management (IAM), and secure DevOps practices.

• Proficiency with security tools and platforms (e.g., Tenable, ACAS, Nessus, Splunk, STIG Viewer).

• Experience leading security teams or efforts across Agile/DevSecOps environments.

• Education Requirements:

• Bachelor's or Master's degree in Cybersecurity, Computer Science, or a related field. Certification Requirements:

• CISSP, CISM, Security+, or GSLC Preferred Skills:

• Experience supporting security in DoD software factories or large-scale enterprise IT environments.