Cybersecurity Lead

The Cybersecurity Lead provides technical leadership for cybersecurity operations and compliance activities supporting Agency information systems. This role leads continuous monitoring, risk management, incident response coordination, and cybersecurity documentation to maintain a secure, compliant, and audit-ready environment under the strategic oversight of the Agency CIO/PMO. The Cybersecurity Lead partners with IT operations, systems engineering, and governance stakeholders to implement security controls, drive remediation, and improve security posture across the system lifecycle.

• Lead continuous cybersecurity monitoring activities, including alert triage coordination, use-case tuning recommendations, and tracking detection and response actions to closure.
• Coordinate incident response processes and communications, including severity assessment, escalation, stakeholder updates, after-action reviews, and lessons learned integration.
• Manage risk management activities across the system lifecycle, including identification of vulnerabilities, prioritization of remediation, and tracking corrective actions.
• Provide technical leadership for Security Assessment & Authorization (RMF/SA&A) support, including development and maintenance of SSPs, control implementation evidence, risk assessments, and POA&Ms.
• Support FISMA reporting and CDM data quality by validating inputs, maintaining supporting evidence, and ensuring metrics align to required reporting timelines.
• Lead audit readiness and documentation efforts by maintaining audit-ready artifacts, responding to evidence requests, and preparing technical narratives for assessors and reviewers.
• Develop, update, and maintain cybersecurity policies, procedures, and governance documentation aligned to federal requirements (e.g., NIST and OMB guidance).
• Support insider threat and privileged access oversight activities, including coordination of access reviews, monitoring recommendations, and control implementation evidence.
• Collaborate with IT operations on configuration management and change control to ensure changes are evaluated for security impact and appropriately documented and traceable.
• Plan and coordinate security training and awareness support, including role-based training recommendations and compliance tracking inputs.
• Partner with systems engineering and enterprise architecture stakeholders to integrate security requirements into modernization planning and technical designs.

Required Qualifications

• Bachelor’s degree in Cybersecurity, Computer Science, or a related field.
• 7+ years of experience in cybersecurity operations.
• Certification: CISSP, CISM, or equivalent.
• Familiarity with NIST SP 800-53, FISMA, and FedRAMP.
• Demonstrated ability to lead technical teams and coordinate across stakeholders to drive remediation and improve security posture.
• Strong written and verbal communication skills, including experience preparing audit-ready evidence and briefing technical and non-technical audiences.

Preferred Qualifications

• Hands-on experience supporting RMF/ATO package development and sustainment in a federal environment.
• Experience with vulnerability management programs (e.g., scanning coordination, validation of remediation, exception tracking).
• Familiarity with security tooling for monitoring, endpoint protection, and log analysis (tool-specific experience a plus).
• Experience preparing for or supporting independent assessments/audits (e.g., OIG/GAO) and managing evidence workflows.
• Knowledge of IT service management and change control practices in regulated environments.

Core Competencies and Deliverables

• Security operations runbooks and standard operating procedures aligned to policies and federal guidance.
• Incident response records, after-action reports, and tracked corrective actions.
• RMF/ATO artifacts (e.g., SSP updates, control evidence, risk assessments, POA&M management).
• Audit evidence packages and documentation repositories maintained in an audit-ready state.
• Vulnerability and remediation tracking (e.g., prioritized backlog, exceptions, and closure evidence).
• Security metrics inputs supporting FISMA reporting and CDM submissions.

Physical Demands: The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• While performing the duties of this job, the employee is regularly required to talk or hear.

• Possess the ability to fulfill any and all office activities normally expected in an office setting, to include, but not limited to:  remaining seated for periods of time to perform computer entry, participating in filing activity, lifting and carrying office supplies.
• The employee must occasionally lift and/or move up to fifteen (15) pounds.
• May require more than 40 hours per week to perform the essential duties of the position.
• Fine hand manipulation (keyboarding).

Work Environment:  The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job.  Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• May work prolonged or irregular hours.
• Frequent local travel; occasional statewide or out-of-state travel.
• The noise level in the work environment is usually moderate.
• Exposure to general office conditions while conducting office duties.

Working at Edgewater Federal Solutions:

Edgewater Federal Solutions is a privately held government contracting firm located in Frederick, MD. The company was founded in 2002 with the vision of being highly recognized and admired for supporting customer missions through employee empowerment, exceptional services, and timely delivery. Edgewater Federal Solutions is ISO 9001, 20000-1, 270001 certified, appraised at CMMI Level 3 Maturity for Development and Services, and has been named in the Top Workplaces in the Greater Washington Area Companies since 2018.

Edgewater Federal Solutions is an Equal Opportunity Employer. It has been and continues to be our policy to provide equal employment to all employees and applicants for employment without regard to race, color, religion, gender,  national origin, age, disability, marital status, veteran status and/or other status protected by applicable law.