[Contingent] Cybersecurity Program Manager (Executive Advisor)

• Advise senior federal executive leadership (CISO, CIO, and above) on enterprise-wide cybersecurity strategy, risk management, and compliance priorities aligned with FISMA, FedRAMP, the Privacy Act, NIST frameworks, and CISA guidance.
• Act as the senior cybersecurity program advisor, providing executive-level decision support on policy, governance, technology investments, and modernization initiatives including zero trust architecture adoption and cloud migration security.
• Oversee the development and implementation of enterprise cybersecurity policies, standards, and procedures to ensure mission resilience and regulatory compliance.
• Manage the phia program: serve as the primary point of contact for all contract actions, oversee all contractor activities and deliverables, manage cost, schedule, and technical performance, and provide regular program status reporting.
• Guide incident response and crisis management efforts, briefing senior leadership during significant security events and coordinating with federal law enforcement and interagency partners.
• Direct enterprise risk assessments and security posture evaluations; identify systemic risks and prioritize remediation across critical systems.
• Lead and advise on Insider Threat program activities: maintain compliance with applicable federal Insider Threat policies, perform program assessments, develop annual program reports, maintain interagency liaison relationships, and research advanced analytic tools for insider threat detection.
• Represent the client organization in interagency cybersecurity working groups and task forces.
• Deliver regular executive briefings to senior leadership, translating complex technical risks into actionable, mission-impact terms.
• Mentor senior security managers and technical staff; build organizational cybersecurity capacity and support succession planning for key security leadership roles.

• CISO Advisor: You have advised CISOs, CIOs, and senior executive leaders and given them guidance they could act on. You understand what they need to hear and how to communicate effectively.
• Federal Policy Expert: You have 15+ years of experience with FISMA, FedRAMP, NIST frameworks, CISA guidance, the Privacy Act, and OMB A-130 and understand how these frameworks interact in a large federal agency environment.
• Executive Communicator: You can transform a complex, multi-dimensional cybersecurity risk into a concise, decision-ready brief. You are comfortable presenting to the most senior levels of government leadership.
• Program Manager: You have successfully managed large, multi-task federal cybersecurity programs: you understand EVM, integrated master scheduling, staffing management, and what it takes to sustain a high-performing technical team.
• Insider Threat Leader: You have led or advised federal Insider Threat programs and understand the legal, privacy, and civil liberties sensitivities involved in operating such a program.
• Zero Trust Champion: You understand zero trust architecture principles and have advised on or overseen ZTA adoption in a federal enterprise setting.
• Mentor: You invest in developing the people around you. You elevate your team.

• Prior experience advising a federal agency CISO or CIO on enterprise cybersecurity strategy
• Experience with interagency cybersecurity coordination
• Familiarity with Executive Order 14028 (Improving the Nation's Cybersecurity) and its implementation requirements for federal agencies
• Experience with ISO 27001 and HIPAA governance frameworks in addition to FISMA/NIST
• Prior experience supporting or leading a National Insider Threat Task Force member organization
• Experience with advanced analytic tools for insider threat detection and behavioral analysis

• Project Management Professional (PMP) - required
• Certified Information Security Manager (CISM - ISACA) - required
• Minimum one (1) of: CISA (ISACA), CRISC (ISACA), CISSP (ISC2), CGRC (ISC2)

Clearance: Public Trust / Suitability clearance required