Cybersecurity Lead

Germantown, MD, Oak Ridge, TN, Or Chicago, IL
Full Time
Experienced

Job description: Cybersecurity Lead

Location: Germantown, MD, Oak Ridge, TN, or Chicago, IL

Employment Type: Full Time

Who We Are

Management Solutions LLC (MSLLC) is an award-winning management consulting firm delivering solutions for our partners’ most complex challenges. Since 2002, we have supported federal and commercial clients through expertise in project and program strategy, delivery and implementation, engineering and technical advisory services, workforce solutions, and digital solutions.

We are distinguished by our reputation for managing mission-critical projects and helping organizations improve performance through innovative, people-centered solutions. MSLLC has been recognized as Small Business of the Year by the U.S. Small Business Administration, the Department of Energy, and Oak Ridge National Laboratory and has been named one of the Top Employers in the Greater Knoxville area.

Why Join Our Team

At Management Solutions, we believe our people are the foundation of our success. We are committed to fostering a collaborative and caring culture where employees feel valued, supported, and empowered to grow. We seek professionals who think critically, solve complex problems, and are dedicated to building and sustaining a high-performing, people-centered organization.

Position Overview

The Cybersecurity Lead will serve as the primary technical and managerial authority overseeing all cybersecurity implementation support services. This role ensures the effective planning, execution, and monitoring of IT cybersecurity policy, operations, vulnerability management, and compliance across mission-critical systems. The Lead will coordinate with federal stakeholders and contractors to safeguard organizational assets and maintain resilience against evolving threats.

Role Scope and Opportunity

A Cybersecurity Lead will set strategic directions and oversight for the entire Assessment & Authorization and Vulnerability Management teams, including A&A Analysts, A&A Specialists, A&A SMEs, A&A Security Engineers, A&A Architects, Vulnerability Management Analysts, and Vulnerability Management Engineers to deliver the cyber authorization services. A Cybersecurity Lead will develop project management plans such as Work Breakdown Structure, mentor and guide team members on the preparation of technical deliverables and resolve project issues, prepare progress/status reports on technical deliverables, and monitor contractual requirements bringing in help from outside the project as needed to mitigate risks. A Cybersecurity Lead will also serve as a primary interface for the client and ASM leadership to answer questions, address concerns, and provide status/updates. Additionally, a Cybersecurity Lead will have at least five years of working knowledge and experience with one or more of the following Federal security frameworks (FedRAMP, FISMA, Zero Trust Maturity Model, RMF, and NIST SP 800 series and NIST SP 800-53) and GRC tools (e.g. XACTA, ArchAngel, eMASS, CSAM).

A Cyber Security Lead is the manager of all SOC analysts and is the primary representative of the SOC to external stakeholders. The SOC Lead's primary responsibilities include managing the shift work analysts, developing training plans, developing and approving SLA monitoring solutions, ensuing ongoing analyst certification, conducting employee performance evaluations, and providing overall strategic direction for the SOC.

Key Responsibilities:

Cybersecurity Performance Management

· Implement and oversee baseline security configurations and controls.

· Monitor and report on cybersecurity metrics, ensuring compliance with the client and federal requirements.

· Review and update processes to align with OIM guidance, policy, and best practices.

· Lead the implementation of the OIM cybersecurity metrics program plan, including data collection, reporting, and oversight.

Cybersecurity Operations

· Direct daily cybersecurity operations for SC GSS domains, including detection, analysis, containment, eradication, and recovery.

· Manage SIEM, IDS/IPS, EDR, DLP, ICAM, CDM, and cloud security tools.

· Provide daily cyber health and status reports to leadership.

· Lead proactive threat hunting and incident response, coordinating with the client iJC3.

· Establish and maintain SOPs for incident response, escalation, and after-action reporting.

· Ensure compliance with US-CERT requirements, and federal directives.

Continuous Diagnostics and Mitigation (CDM)

· Oversee CDM program activities, including tool maintenance, upgrades, and analysis.

· Coordinate with contractors and vendors to ensure compliance with orders and regulations.

· Provide continuous monitoring for unauthorized hardware/software and applied risk controls.

Vulnerability Management and Mitigation

· Lead vulnerability identification, risk assessment, and mitigation across IT infrastructure and cloud environments.

· Direct patch management, configuration updates, and corrective actions.

· Establish continuous monitoring processes leveraging automated tools and threat intelligence feeds.

· Ensure compliance with FISMA, NIST 800-53, and evolving regulatory requirements.

· Deliver regular vulnerability management reports with metrics, compliance status, and recommendations.

Required Qualifications:

· Bachelor’s degree in Cybersecurity, Computer Science, or related field (Master’s preferred).

· 8+ years of progressive experience in cybersecurity operations, incident response, and vulnerability management.

· Strong knowledge of federal cybersecurity policies, federal directives, and industry best practices.

· Hands-on expertise with SIEM, IDS/IPS, EDR, DLP, ICAM, CDM, and cloud security platforms.

· Proven leadership in managing cross-functional teams.

· NIST 800-53 Rev 5

· Risk Management Framework

· NIST Cybersecurity Framework (CSF)

· FedRAMP Authorization

· Tenable Nessus (ACAS)

· DISA STIGs

Preferred Qualifications:

· Strategic thinker with ability to align cybersecurity initiatives to mission priorities.

· Excellent communication skills for reporting to leadership and coordinating with stakeholders.

· Strong analytical and problem-solving skills, especially in incident response and forensic analysis.

· Ability to adapt to emerging technologies and evolving threat landscapes.

· Able to build advanced alerts in SIEM.

· Team leader with capability to train basic and advanced skills.

· Able to translate events into incident response ticket with full information for SOC lead and provide briefings to leadership.

· Advanced knowledge of security tools.

· Assist Tier 2 and Tier 3 Analyst in incident response.

· Has above basic Window and Linux CLI skills.

· Has built understanding of multiple security tools i.e. EDR, IDP, IDS, Firewalls, etc.

· Built full incident response and provides mitigation steps.

· Leads and writes Tabletop Exercises.

· Certifications such as CISSP, CISM, CEH, or equivalent.

· GIAC Certified Intrusion Analyst (GCIA)

· GIAC Certified Incident Handler (GCIH)

· Certified Information System Security Professional or Associate (CISSP or Associate)

· ISC2 Certified Information Security Manager (CISM)

· Certified Information Systems Auditor (CISA)

· Project Management Professional (PMP)

· Certified Associate in Project Management (CAPM)


Work Authorization:

U.S. Citizenship required due to federal contract requirements.
 

Working Conditions:

This position is primarily performed in an office environment or in a home office setting. Employees will be required to use a computer and other office equipment for extended periods.

What We Offer:

Management Solutions offers a comprehensive benefits package including Medical, Rx, Dental and Vision Insurance, company paid short-term disability and life insurance, 401k plan with up to a 5% match with immediate vesting, Flexible Spending Accounts, PTO, paid holidays, and more!

Management Solutions is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status. We encourage applications from individuals of all backgrounds and experiences.

Disclaimer:

This job description is intended to convey information essential to understanding the scope of the position and is not a complete list of skills, efforts, duties, responsibilities, or working conditions associated with it.

Management Solutions LLC is an Equal Employment Opportunity (EEO) employer. It is the policy of the Company to provide equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.

Share

Apply for this position

Required*
We've received your resume. Click here to update it.
Attach resume or Paste resume
Attach resume as .pdf, .doc, .docx, .odt, .txt, or .rtf (limit 5MB) or Paste resume

Paste your resume here or Attach resume file

Invitation for Job Applicants to Self-Identify as a U.S. Veteran
  • A “disabled veteran” is one of the following:
    • a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or
    • a person who was discharged or released from active duty because of a service-connected disability.
  • A “recently separated veteran” means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.
  • An “active duty wartime or campaign badge veteran” means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.
  • An “Armed forces service medal veteran” means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.
Veteran status


Voluntary Self-Identification of Disability
Voluntary Self-Identification of Disability Form CC-305
OMB Control Number 1250-0005
Expires 05/31/2026
Why are you being asked to complete this form?

We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.

Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp.

How do you know if you have a disability?

A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability. Disabilities include, but are not limited to:

  • Alcohol or other substance use disorder (not currently using drugs illegally)
  • Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDS
  • Blind or low vision
  • Cancer (past or present)
  • Cardiovascular or heart disease
  • Celiac disease
  • Cerebral palsy
  • Deaf or serious difficulty hearing
  • Diabetes
  • Disfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disorders
  • Epilepsy or other seizure disorder
  • Gastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndrome
  • Intellectual or developmental disability
  • Mental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSD
  • Missing limbs or partially missing limbs
  • Mobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supports
  • Nervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS)
  • Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilities
  • Partial or complete paralysis (any cause)
  • Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysema
  • Short stature (dwarfism)
  • Traumatic brain injury
Please check one of the boxes below:

PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.

You must enter your name and date
Human Check*