Information Assurance Manager (Clearance Required)

SciTec, a wholly owned subsidiary of Firefly Aerospace, is a dynamic non-traditional defense contractor that delivers advanced technologies in support of U.S. National Security and Defense. For the past forty-five plus years, we have supported Department of Defense customers by developing innovative remote sensing algorithms, tools, and techniques to deliver world-class data exploitation capabilities supporting missile defense; intelligence, surveillance, & reconnaissance; space domain awareness; and aircraft survivability missions.Important Notice: SciTec exclusively works on U.S. government contracts that require U.S. citizenship for all employees. SciTec cannot sponsor or assume sponsorship of employee work visas of any type. Further, U.S. citizenship is a requirement to obtain and keep a security clearance. Applicants that do not meet these requirements will not be considered.SciTec has an immediate opening for an Information Assurance Manager to lead, build, and mentor the team responsible for ensuring that all information systems and associated data meet the required security, compliance, and risk management standards mandated by federal law and agency-specific regulations.Responsibilities:The Information Assurance Manager will lead and manage the cybersecurity and compliance activities in support of our programs and will be responsible for ensuring all information systems maintain compliance with applicable cybersecurity policies, including RFP, NIST SP 800-53, DoD 8500.01/8522.02, and other customer directed requirements. The Information Assurance Manager will serve as a key interface between security, engineering, IT, operations, and customer stakeholders.Lead the implementation and maintenance of cybersecurity policies, standards, and procedures to ensure compliance with DoD, NIST, and FISMA requirementsManage and lead a diverse, multi-location Information Assurance team while supporting their optimal performance and growthManage system accreditation processes under RMF, including development of System Security Plans (SSPs), POA&Ms, Security Assessment Reports (SARs), and continuous monitoring strategiesLead the design and oversee the implementation of secure network architecturesCoordinate with system owners, engineers, ISSM/ISSO, IT, and other stakeholders to manage security controls and system authorizationsCollaborate with IT, DevOps, and physical security to remediate findings from security assessments and continuously improve the organization's security posture. Support incident response activities and ensure timely reporting of cybersecurity incidents per government policyLead tabletop exercises simulating incident response, simulating cyber incidents, identifying procedural gaps, evaluate response capabilities, and improve cross-functional readinessConduct threat modeling to identify and assess cybersecurity ricks, prioritize mitigation efforts, and advise stakeholders on protective strategiesManage and lead red-teaming and penetration testing activities, including planning, execution, and reporting to uncover vulnerabilities and ensure network resilienceEnsure system configurations comply with DISA STIGs and DoD Security Technical Implementation GuidesConduct security impact assessments and risk assessments on proposed system changesProvide regular status reports and briefings to senior management and government stakeholdersParticipate in internal and external security audits and assessmentsStay current on emerging threats, vulnerabilities, and technologies relevant to government cybersecurityOther duties as assignedRequirementsActive DoD Secret or higher security clearanceBachelor's degree in Computer Science, Cybersecurity, Information Technology, or other other related field. Equivalent experience may be considered.At least 10 years of relevant experience in information assurance, cybersecurity compliance, or risk management within a federal or DoD contracting environment, including prior experience directly managing teams Demonstrated ability to directly manage, lead, and mentor teams, develop skills, set goals and drive accountability, and effectively manage and engage stakeholdersA CISSP, CAP, CISM, GSLC, or an alternate qualifying certification satisfying DoD 8570.01M requirements for an Information Assurance Manager Level IIDemonstrated knowledge of RMF, NIST 800-171, NIST 800-53, FISMA, and other federal cybersecurity frameworksHands-on experience with eMASS, ACAS, HBSS, and other DoD security toolsStrong written and verbal communication skills, including the ability to interface with technical and non-technical stakeholdersIncident response and reporting experience, including experience with DCSADirect experience with CMMC Level 2 implementationCandidates who have one or more of the following qualifications will be preferred:Prior experience as an ISSM or Security Control Accessor (SCA)Resumes, Cover Letters, and Applications which are generated by AI will not be considered for employment.Colorado Residents: In any materials you submit, you may redact or remove age-identifying information such as age, date of birth, or dates of school attendance or graduation. You will not be penalized for redacting or removing this information.BenefitsSciTec, Inc. offers a highly competitive salary and benefit package, including:4% Safe Harbor 401(k) match100% company paid HSA medical insurance, with a choice of 2 buy-up options80% company paid dental insurance100% company paid vision insurance100% company paid live insurance100% company paid long-term disability insurance100% company paid hospital indemnity insuranceVoluntary accident and critical illness insuranceShort-term disability insuranceAnnual profit-sharing planDiscretionary performance bonusPaid parental leaveGenerous Paid Time Off (PTO), including holidays, vacation, and sick payFlexible work hoursThe pay range for this position is $160,000-200,000/ year. SciTec, Inc. considers several factors when extending an offer of employment, including but not limited to the role and associated responsibilities, a candidate's work experience, education/training, and key skills This is not a guarantee of compensation.SciTec is proud to be an Equal Opportunity employer. VET/Disabled.