Cybersecurity Lead

Now is a great time to join Redhorse Corporation. We are a solution-driven company delivering data insights and technology solutions to customers with missions critical to U.S. national interests. We’re looking for thoughtful, skilled professionals who thrive as trusted partners building technology-agnostic solutions and want to apply their talents supporting customers with difficult and important mission sets.

Redhorse transforms the way government uses data and technology. To support this mission, we are seeking a Cybersecurity Lead to oversee the end-to-end Risk Management Framework (RMF) lifecycle for critical FBI IT systems. In this role, you will not just check boxes; you will lead a team of experts in securing the infrastructure that protects our nation. You will serve as a principal technical advisor, ensuring that data-driven innovation at the FBI is built on a foundation of robust, compliant, and resilient security engineering. 

• Lead, mentor, and supervise a team of contractor security professionals responsible for the end-to-end implementation of the RMF lifecycle for FBI IT systems.
• Oversee and coordinate activities within the Prepare step, ensuring roles, responsibilities, and risk management strategies are clearly defined and maintained.
• Guide system categorization efforts to ensure all information systems are appropriately classified based on mission/business impact and regulatory requirements.
• Advise on the selection, tailoring, and documentation of security controls aligned with system categorizations, Bureau risk appetite, and compliance requirements.
• Oversee the implementation of technical, operational, and management controls throughout system and application lifecycles, focusing on the quality and completeness of all deliverables.
• Ensure comprehensive security control assessments are planned, executed, and documented to validate the effectiveness of implemented safeguards.
• Prepare risk management documentation for system authorization and executive decision-making.
• Direct ongoing monitoring and continuous assessment activities, collecting metrics to adjust security strategies and ensure sustained compliance.
• Serve as a principal technical advisor on cybersecurity, bringing subject-matter expertise to risk analysis, incident response, system remediation, and audit support efforts.
• Foster a culture of security awareness, providing technical guidance and training to both team members and stakeholders.
• Track, report, and communicate status, risks, and improvement opportunities related to security engineering activities to leadership and stakeholders.
• Maintain up-to-date knowledge of RMF, NIST guidance, and industry best practices in support of continuous process improvement.

• An active Top Secret (TS) security clearance.
• 10+ years of experience in secure design, analysis, and test of information security systems and products.
• 10+ years of experience applying methods, standards, and approaches for ensuring baseline security safeguards are appropriately implemented and documented.
• 10+ years of experience creating and updating security test plans for detecting and mitigating risk to information systems.
• Certified Information Systems Security Professional (CISSP) or Certified Ethical Hacker (CEH) certification.

• Active Cloud Certification (e.g., AWS Certified Security, Azure Security Engineer).
• Experience using Jira or GitLab for tracking security engineering tasks and documentation.
• Experience working directly with FBI or Department of Justice (DOJ) security standards.
• Advanced degree in Cybersecurity, Information Technology, or a related STEM field.