Job Description

Protect and Strengthen Federal Systems with TechFlow Inc!

TechFlow is seeking an experienced IT Security Manager to lead cybersecurity efforts for a high-impact federal program. In this critical role, you'll oversee the implementation, documentation, and continuous monitoring of security controls to safeguard applications that support governmentwide IT portfolio management. You'll ensure compliance with federal security standards such as FISMA and NIST SP 800-53, coordinate with key stakeholders, manage POA&Ms, and support Authorization to Operate (ATO) activities. If you're driven by the mission of securing vital government systems and ensuring operational resilience, TechFlow offers an opportunity to lead meaningful cybersecurity initiatives that make a difference.

*This is a remote position but will require support on site at client location Washington DC on occasion.

Key Responsibilities

• Serve as the primary cybersecurity lead for the program, overseeing implementation, assessment, and continuous monitoring of security controls for applications managed by the CPIC PMO.
• Ensure compliance with federal cybersecurity standards and frameworks, including FISMA, NIST SP 800-53, and the Risk Management Framework (RMF).
• Coordinate with the customer's Information System Security Officer (ISSO), system owners, and other stakeholders to maintain security authorization and compliance.
• Manage and track Plans of Action and Milestones (POA&Ms) to ensure timely remediation of identified vulnerabilities and audit findings.
• Lead preparation, documentation, and submission activities to support system Authorization to Operate (ATO) and ongoing authorization processes.
• Oversee incident response procedures, ensuring rapid identification, investigation, and mitigation of cybersecurity events.
• Conduct risk assessments, vulnerability scans, and security reviews to proactively identify and address potential threats.
• Maintain system security documentation, including System Security Plans (SSPs), Security Assessment Reports (SARs), and Continuous Monitoring Plans.
• Provide cybersecurity guidance to development and operations teams to ensure secure design, configuration, and deployment of applications.
• Monitor compliance with change management and configuration control procedures to maintain system integrity.
• Prepare and deliver regular security status reports, dashboards, and briefings to leadership and the customer.
• Champion a culture of cybersecurity awareness and continuous improvement across the program team.

Job Tags

Similar Jobs