Cybersecurity Program Manager (SOC)

Qualifications:

• Minimum of 12 years of progressive experience in cybersecurity program management, cyber operations leadership, or delivery oversight roles supporting federal government or enterprise clients, with at least 5 years managing multi-functional cyber teams.
• Bachelor s degree in Information Security, Computer Science, Information Technology, or a related field from an accredited institution; Master s degree preferred.
• PMP (Project Management Professional) or PgMP (Program Management Professional) certification, demonstrating mastery of program and project delivery standards in federal contracting environments.
• At least 7 years of experience serving as a senior cybersecurity advisor or subject matter expert (SME), including leadership of enterprise detection, response, vulnerability management, and cyber threat intelligence programs.
• Top-tier cybersecurity certifications, including one or more of the following:

• CISSP (Certified Information Systems Security Professional)
• GIAC GCIA (Intrusion Analyst), GCIH (Incident Handler), FA (Forensic Analyst)
• OSCP (Offensive Security Certified Professional) or OSCE/OSWA (advanced red/purple team)
• CISM (Certified Information Security Manager)
• CRISC (Certified in Risk and Information Systems Control)
• CDPSE (Certified Data Privacy Solutions Engineer)
• AWS/Google Cloud Platform/Azure Security Certifications for cloud security leadership

• Extensive experience with NIST SP 800-53, 800-61, 800-137, and the CDM framework, with proven ability to apply these standards to enterprise-level cybersecurity operations and federal compliance programs.
• Demonstrated experience overseeing large-scale 24x7x365 Cybersecurity Operations Centers (SOCs) and leading cyber disciplines including CTI, Threat Hunting, Incident Response, Forensics, Vulnerability Management, and Security Engineering.
• Experience managing high-sensitivity environments handling Controlled Unclassified Information (CUI), PII, PHI, and supporting systems designated High Impact per FIPS 199.
• Proven ability to influence and engage with C-level and SES federal stakeholders, including CIOs, CISOs, GS-15 Division Directors, and security leadership across agencies.
• Strong understanding of cybersecurity toolsets, including SIEM, SOAR, EDR, vulnerability scanners, threat intelligence platforms, forensic toolkits, and cloud-native security controls.
• Demonstrated ability to manage multiple concurrent task orders and delivery teams, including the development and execution of Task Order Management Plans, Quality Assurance Plans, and Incident Response Playbooks.
• Familiarity with federal security incident reporting requirements (e.g., US-CERT, HHS CSIRC) and experience coordinating high-impact incident response efforts, including chain-of-custody and forensic investigations.
• Strong knowledge of and hands-on leadership with DevSecOps, infrastructure as code (IaC), and security automation and orchestration initiatives to modernize cybersecurity operations.
• Demonstrated experience with NIH, HHS, or other federal health science agencies is highly desirable, including experience navigating complex multi-IC or multi-agency governance structures.
• Excellent verbal and written communication skills, with a proven ability to prepare and deliver executive briefings, status reports, and technical documentation for government stakeholders.