Chief Cyber Security Officer (Hybrid Onsite-Remote)

Who We Are

TheIncLab is the first human-centered artificial intelligence experience (AI+X) lab. TheIncLab’s award-winning, multi-disciplinary team is focused on designing and developing AI-enabled systems that learn and collaborate with humans. The company offers its clients comprehensive capabilities for rapid ideation, software development, and the building of smart systems and hardware solutions. Its open, scalable AI architecture approach, combined with years of experience in interactive engineering and emerging technology innovation, allows for rapid prototyping and deployment of transformational concepts, products and solutions designed to work with meaningful human interaction, effectively bridging the gap between humans and intelligent systems.

Job Description

The Chief Cyber Security Officer is a senior-level role responsible for implementing and enforcing the security compliance directives to protect company data and systems using sophisticated tools, instrumentation, and knowledge of government compliance documents/regulations (NISPOM, DFARS, DAAPM, JSIG, etc.), to monitor, evaluate, and manage IT risk. You will identify current threats, mitigate vulnerabilities, and anticipate future cybersecurity challenges. Utilizing new technologies, you will increase the security of our existing and emerging IT systems.  You will lead business areas/activities and be responsible for managing a diverse range of cybersecurity projects. You will ensure the development, deployment, operations, implementation, and support of component information systems that are consistent with cyber security policies and procedures. 

Requirements

As the Chief Cyber Security Officer, your responsibilities will include but not be limited to:

• Lead existing specialists and teams composed of highly skilled Cybersecurity Analysts, Information System Security Managers (ISSMs), and Information Systems Security Officers (ISSOs) across the organization, in both unclassified and classified environments. 
• Ensure company compliance with cybersecurity and privacy frameworks (FedRamp, DoD CC SRG, NIST, CMMC, HIPPA, etc). 
• Collaborate regularly with the company’s Officers and Information Technology (IT) team to ensure a robust cybersecurity posture while delivering information and network services. 
• Lead the strategy, planning, and implementation of cybersecurity requirements across our corporate functional support programs areas, in a way that seamlessly connects all components of the organization. 
• Maintain Information Security and cybersecurity-related policies, standards, procedures, and guidelines, and conduct policy updates as necessary for the company. 
• Oversee System Security Plan (SSP) to include information security controls at the networking, computing, and enclave levels for multiple programs, including those with multiple enclaves and differing data protection/classification requirements. 
• Lead Risk Management and Incident Response actions and/or teams to safeguard the company from active and emerging cyber threats. Can independently self-triage incidents or attacks, or make control changes directly within a system. 
• Perform audit and security compliance checks, including network penetration testing, vulnerability scans, and other configuration analysis. 
• Investigate reported security activities, including forensic analysis and review and assessment of security events and logs via sophisticated cyber security /event management tools. 
• Develop threat models and security risk assessments and recommend mitigations and countermeasures to address risks, vulnerabilities, and threats. 
• Implement systems and support network defense, identification/authentication/access control, data protection mechanisms, and data transfer mechanisms. 
• Serve as a key contributor within the organization’s Change Management process and ensure security controls are dynamically managed to ensure a strong cybersecurity posture is maintained. 
• Assists systems architects, engineers, and developers in the identification and implementation of appropriate information security functionality to ensure uniform application of security policy and federal government requirements. 
• Analyze existing and future systems across the company and projects, review security architectures, and develop engineering solutions that integrate information security requirements to proactively protect information. 
• Work collectively with the Security Team to support business continuity needs, disaster recovery programs, and incident or insider risk responses, as necessary. 
• Develop means for the collection and representation of cybersecurity metrics and be able to present findings on a recurring cadence to senior management and executive leaders within the company. 
• Identify and execute the company’s cybersecurity-related annual budget. 
• Identify and manage vendor relationships that provide cybersecurity tools, capabilities, or response elements that can supplement the company‘s posture in defending against network attacks. 
• Develop cybersecurity educational training curriculums and oversee regular exercises that measure and test user behaviors within the network. And then develop metrics related to the testing and any strategies for improvement as necessary. 
• Ability to travel (up to 20%).

Qualifications  

• Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or related field. 
• Must have a minimum of 10 years experience in Cybersecurity, with at least 6 or more years as a manager. 
• Hold current Industry or vendor certifications (CISSP, CEH, CISO, OSCP, AWS, Azure, or other). 
• Proven expert in the understanding, deployment, and manipulation of security controls and technologies; including but not limited to SIEM, ZTA, DLP, EDR, Identity, and firewalls. 
• Experience with Software Factory (SSF).  
• Experience with supporting ATOs or SCAs within DoD and/or Intelligence Community (IC) programs. 
• Experience in securing cloud workloads (AWS Gov, Azure Gov, etc). 

Eligibility Requirements 

• Applicants must possess and have the ability to maintain a Top-Secret clearance.  

Benefits

Medical, Dental, and Vision Insurance  

100% company-paid Short-Term and Long-Term Disability  

100% company-paid Basic Life Insurance  

Paid Time Off  

Paid Holidays  

401(k) with employer matching and immediate vesting  

No relocation assistance is offered for this position.  

This is a direct hire position. We do not accept indirect resumes, recruiters, or Third Parties.