Infrastructure Security Team Lead
US-VA-Alexandria
Careers (External)
Req #: 7010
Type: Full-Time
|
|
||||||||||
|
|||||||||||
Overview: GovCIO is currently hiring an Infrastructure Security Lead for our program with the US Coast Guard. This position will be located in Alexandria, VA and will be a hybrid remote position. Responsibilities: Oversee and mature our security posture across network security, security and compliance, identity, credentialing, and access management (ICAM), boundary protection services, and the Authority to Operate (ATO) program. The ideal candidate will partner with technology, governance, and operations teams to design, implement, and operate secure, compliant, and resilient infrastructure. * Lead the design, implementation, and ongoing operation of organizational security controls across: * Network Security (segmentation, firewalls, IDS/IPS, VPNs, WAF, secure remote access). * Security & Compliance programs (policy, standards, risk management, audit readiness, continuous monitoring). * ICAM (Identity, Credentialing, and Access Management) include IAM strategy, MFA, SSO, privileged access management, and lifecycle management. * Boundary Protection Services (perimeter defenses, DDoS protections, edge security). * Authority to Operate (ATO) lifecycle, ensuring systems achieve and maintain required authorizations. * Develop and execute a strategic security roadmap aligned with business goals and regulatory requirements. * Own security architecture reviews, threat modeling, and risk assessments for new and existing infrastructure. * Establish and maintain security incident response, detection, and recovery capabilities; lead major security incidents and post-incident reviews. * Define and enforce security policies, standards, and procedures; ensure alignment with compliance frameworks (e.g., NIST, CIS, ISO 27001, FISMA, FedRAMP as applicable). * Manage, mentor, and develop a high-performing security team (engineers, analysts, IAM specialists, boundary specialists). * Collaborate with IT, DevOps/DevSecOps, and cloud teams to implement secure-by-default infrastructure and automated controls. * Oversee vulnerability management, patch management, configuration management, and hardening baselines. * Monitor and report on security metrics, KPIs, and risk indicators to executives and stakeholders. * Maintain documentation, runbooks, playbooks, and runbooks for security operations and incident handling. Qualifications: Bachelor's with 12+ years (or commensurate experience) Required Skills and Experience * 12 years of progressive information security experience * 3-5 years in a leadership/lead role * Clearance Required: Must be clearable up to an active Secret clearance * Certification Required: CISSP (Certified Information Systems Security Professional) Clearance Required: US Citizenship is required to obtain and maintain active Secret clearance Preferred Skills and Experience * Additional relevant certifications (CISM, CISA, CCSP, CEH, CCIE Security) a plus * US Coast Guard experience highly preferred * Security Architecture & Engineering * Leadership & People Management * Risk Management & Compliance * Incident Response & Crisis Management * IAM/ICAM specialists and governance * Boundary/Perimeter Security * Communication & Stakeholder Engagement * Strategic Thinking & Roadmapping
Share this job:
