Job Type
Full-time
Description
* This position is contingent upon a future opening with Gunnison.
Salary: $160,000-$185,000
Work location: Hybrid, 2-3 days per week on-site in Alexandria, VA. The first 30 days of work will be full-time on-site.
- Lead and oversee enterprise cybersecurity program management activities to ensure alignment with federal cybersecurity standards, agency objectives, and contract requirements.
- Develop, implement, and maintain cybersecurity program management plans, strategic roadmaps, and governance frameworks to support long-term program maturity and operational effectiveness.
- Manage cybersecurity program cost, schedule, performance, deliverables, risks, and resource allocation across multiple task areas and stakeholders.
- Provide leadership and oversight for cybersecurity initiatives, ensuring compliance with OMB, NIST, DHS/CISA, FISMA, and other federal cybersecurity requirements and directives.
- Direct the development and execution of a Continual Service Improvement (CSI) program focused on cybersecurity operational resilience, performance optimization, and risk reduction.
- Establish and manage cybersecurity performance management processes, including development of KPIs, KRIs, dashboards, metrics, trend analysis, and executive reporting.
- Oversee enterprise Governance, Risk, and Compliance (eGRC) activities, including policy integration, risk tracking, POA&M management, and compliance reporting.
- Lead enterprise cybersecurity risk management activities, including annual risk assessments, risk identification, mitigation planning, and tracking of corrective actions.
- Manage Assessment and Authorization (A&A) activities for enterprise systems and services, including continuous monitoring, ATO/ATU support, security control validation, and compliance documentation.
- Direct the development, review, and maintenance of cybersecurity policies, standards, procedures, security documentation, and governance artifacts to ensure alignment with evolving federal and agency requirements.
- Provide strategic cybersecurity advisory services related to emerging technologies, zero trust architecture, regulatory changes, cybersecurity trends, and agency-wide security initiatives.
- Coordinate and support cybersecurity awareness, communications, and training programs to strengthen organizational security posture, stakeholder engagement, and user compliance.
Requirements
- US Citizenship required
- Master's degree in Management or related field
- 10+ years managing information security teams (cloud, network, application)
- Experience leading IT strategy, architecture, and security solution engagements
- Federal agency experience of similar size/complexity
- Certifications: PMP, ITIL, CRISC (mandatory); CISSP (preferred)
Clearance Requirement: Ability to obtain and maintain a Public Trust.
The salary range for this position depends upon multiple factors including location, the individual's knowledge, skills, competencies, and experience, and contract-specific budget constraints and organizational requirements.
Gunnison Consulting Group's total compensation package also includes bonus and profit-sharing opportunities, depending on company and employee performance. Available employee benefits include:
- 3 weeks of Personal Leave your first year
- 11 paid Holidays each year
- 5 days of Flexible Time Off each year for approved training or certifications (self-study is ineligible)
- 401(k) company match at 50% up to 10% of your salary
- Medical, Dental and Vision Insurance
- Life and Disability Insurance
- Public Transportation Subsidies
- Certifications and Training Allowance - Up to $5,000/year!
Salary Description
$160,000 - $185,000/year
