OverviewSteampunk is seeking aSeniorProjectManager to advance the Risk Operations (RiskOps)implementationfor a large-scale federal cybersecurity and compliance program. You will drive program management activities across the Continuous Threat Exposure Management (CTEM) pipeline, thedata lakehouse, and a multi-year security maturity roadmap.In this role, you will coordinate a cross-functional team ofRisk Managers,SecurityEngineers, SecDevOps, AI,GRCSupport, and Change Managementspecialiststokeep workstreams aligned,and the RiskOpsprojectmoving from strategy to results.
Contributions
As aSeniorProject Manager, you will lead project delivery in a government consulting environment, serving as client liaison, team coach, and mentor. You will also:
- OverseeRiskOpsroadmap execution, driving phase transitions to completion and resolving key dependencies across maturity milestones.
- Maintain the master program schedule, backlog, and PI plans across all workstreams.
- Facilitate Scrum of Scrums, sprint planning, and PI planning events tomaintainenterprise-wide risk awareness.
- Coordinate across Security Engineers,SecDevOps, AI,GRCSupport, Change Management, and Service Design to keep delivery aligned.
- Identifyand resolve dependencies, blockers, and integration risks acrossRiskOpsand CTEMpipelines.
- Align technical delivery schedules with program milestones acrossdataand automation workflows.
- Serve as the primary point of contact for government stakeholders and program leadership.
- Prepare and deliver status reports, risk registers, milestone dashboards, and executive briefings.
- Support recurring program cadences tomaintainenterprise-wide awareness of risk posture and emerging capabilities.
- Maintain risk and issue logs; develop mitigation plans and escalate appropriately.
- Drive process improvements aligned to the security maturity roadmap, including compliance workflow automation and POA&M lifecycle management.
- Work withourchangemanagertoimplementaneffective change management strategy tosupporttheadoption of new tools, workflows, and operating model changes.
- Establish andtrackprogram datapoints, contract performance metrics, and KPIs.
- Maintain Security Playbooks, SOPs, and related program documentation as living references covering services, processes, tools, and governance.
- Work withtheProgram Managerandgovernment toidentifyresourcingneedsand managefinancialsfor theRiskOpsproject.
Qualifications
Required
-
- Local to the Washington, DC Metro area; required to be onsite1dayper week
- Ability to obtain a U.S. government Public Trust security clearance.
- Master's degree in a related field and 7 years of relevant experience; OR Bachelor's degree and 10 years of relevant experience; OR 16 years of relevant experience without a degree.
- At least one active certification in project management: PMP, PRINCE2 Practitioner, PMI-ACP, CSM, orSAFeSPC (or equivalent).
- Experience supporting federal government IT programs within a national security agency environment.
- Familiarity withGovernance, Risk,and Compliance (GRC),FISMA, FedRAMP, and continuous ATO (cATO) processes
- Knowledge of cybersecurity frameworks including NIST 800-53, CTEM, and vulnerability management lifecycle.
- Familiarity with GRCtools.
- Experience managing programs with data analytics, dashboard development, or automation components.
- FamiliaritywithDevSecOpsandthesoftware factory concept.
About
steampunk
Steampunk relies on several factors to determine salary, including but not limited to geographic location, contractual requirements, education, knowledge, skills, competencies, and experience. The projected compensation range for this position is $150,000 to $190,000. The estimate displayed represents a typical annual salary range for this position. Annual salary is just one aspect of Steampunks total compensation package for employees. Learn more about additional Steampunk benefits here.
Identity Statement
As part of the application process, you are expected to be on camera during interviews and assessments. We reserve the right to take your picture to verify your identity and prevent fraud.