Job DescriptionFrontgrade is seeking an experienced Chief Information Security Officer (CISO) to lead and mature our enterprise cybersecurity program in support of U.S. Department of Defense contracts. Operating within a CMMC Level 2 environment, the CISO is accountable for safeguarding Controlled Unclassified Information (CUI), ensuring regulatory compliance, and strengthening cyber resilience across IT, engineering, manufacturing, and cloud systems.
This role serves as the executive owner of cybersecurity strategy, risk management, compliance, and incident response.
Responsibilities- Lead enterprise cybersecurity strategy aligned to business and DoD/DIB requirements
- Manage Governance, Risk, and Compliance (GRC) program/personnel, ensuring alignment with NIST 800-171 Rev. 2, CMMC, and Cyber Supply Chain Risk Management (C-SCRM) requirements for Defense Industrial Base (DIB).
- Serve as the stakeholder for cybersecurity audits, assessments, and regulatory engagements, including CMMC and NIST-based assessments.
- Set the strategic direction for cybersecurity compliance maturity.
- Provide oversight and approval for enterprise risk, policy, and control frameworks.
- Maintain accountability for Plans of Action and Milestones (POA&Ms) and System Security Plan.
- Direct incident response, including reporting obligations
- Solid understanding of threat detection, security monitoring, and response workflows.
- Experience providing leadership and oversight for Security Operations Center (SOC) functions.
- Report on cyber risk posture to executive leadership and the Board
Qualifications- Bachelor's degree in Cybersecurity, Computer Science/Engineering, Information Technology
- 10+ years in cybersecurity, including leadership experience
- Demonstrated ownership of CMMC Level 2 implementation and assessment preparation
- Direct experience within a DoD contractor/DIB organization leading information risk, security and governance teams.
- Experience establishing and overseeing a C-SCRM program aligned with NIST SP 800-161
- Experience overseeing risk management, compliance governance, and audit readiness within DIB
- Experience providing security and risk governance across on-premises and cloud-based environments
- Strong working knowledge of CMMC certification processes, including control intent, assessment objectives, and POA&M governance
- Experience scaling GRC programs to support organizational growth
- Project management skills and technology acumen
- Experience with emerging AI governance frameworks
- Deep expertise in NIST SP 800-171 and DFARS cybersecurity clauses
- Experience securing hybrid enterprise and cloud environments
- CISSP (Certified Information Security Systems Professional) and CISM (Certified Information Security Manager) certifications
- Active Secret clearance or the ability to obtain and maintain
Additional Information This position may require access to technology, materials, software or hardware that is controlled by either ITAR or EAR U.S. export laws. As a condition of any job offer, in order to be employed in this position, you may need to obtain a U.S. Government export license(s), as required by law.
Other benefits include: - Immediate Medical (FSA and HSA), Dental, and Vision
- 401K Match with 100% immediate vesting
- 9X80 compressed work schedule for qualifying roles
- Career Opportunity and Growth
- Tuition Reimbursement/Student Loan Repayment
- Generous PTO and 11 paid Holidays per year (9 designated holidays and 2 floating holidays)
- 8 weeks of 100% Paid Family Leave