Icf
Manager,CyberSecurity
Neural analysis suggests this role is
optimal for Manager candidates.
“Manager, Cyber Security at Icf. Skills: Cybersecurity governance, Risk management, Compliance coordination, Security integration. Lead cybersecurity governance. Lead RMF coordination”
Industry & Context.
Risk management judgment
U. S. Citizenship, Federal Public Trust clearance
What They're Looking For.
Must Have
Bachelor's Degree, U. S. Citizenship required, Federal Public Trust clearance, 10+ years cybersecurity experience, Active CISSP, CISM, CAP, Security+, GSEC, or equivalent certification
Nice to Have
7+ years federal cybersecurity experience, 5+ years assessment documentation experience, 5+ years coordinating with stakeholders, 5+ years vulnerability management experience, 3+ years evaluating cybersecurity risks, 3+ years supporting cloud cybersecurity governance, Experience supporting HHS, NIH, FDA, CMS, CDC, Experience with Zero Trust, Experience with identity and access management, Experience with endpoint security, Experience with secure cloud architecture, Experience with secure SaaS governance, Experience with TIC 3. 0, Experience with continuous monitoring, Experience integrating cybersecurity requirements into Agile, Experience integrating cybersecurity requirements into DevSecOps, Experience integrating cybersecurity requirements into CI/CD, Experience integrating cybersecurity requirements into product delivery, Experience integrating cybersecurity requirements into application modernization, Experience supporting ATO packages, Experience supporting security assessment activities, Experience supporting security control validation, Experience supporting audit responses, Experience supporting independent verification reviews, Experience with POA&M tracking tools, Experience with vulnerability management tools, Experience with audit evidence tools, Experience with incident coordination tools, Experience with SIEM/SOAR tools, Experience with continuous monitoring tools, Experience aligning with NIST 800-53 Rev. 5, Experience aligning with NIST 800-37, Experience aligning with NIST 800-61, Experience aligning with NIST 800-34, Experience aligning with FedRAMP, Experience aligning with FISMA, Experience aligning with CISA guidance, Experience aligning with HHS security policy, Experience developing cybersecurity dashboards, Experience developing executive risk reporting, Experience developing compliance scorecards, Experience developing metrics-based security governance, Additional cybersecurity certification, Additional cloud security certification, Additional Agile certification, Additional ITIL certification, Additional AWS certification, Additional Azure certification, Additional Google Cloud certification, Additional project management certification
What You'll Do.
Lead cybersecurity governance
Lead RMF coordination
Develop assessment documentation
Maintain assessment documentation
Coordinate assessment documentation
Support product teams
Support security assessors
Support client stakeholders
Evaluate cybersecurity risks
Track system security deficiencies
Track remediation activities
Track Plans of Action and Milestones
Lead contingency plan development
Support contingency plan development
Maintain contingency plans
Test contingency plans
Develop cybersecurity SOPs
Maintain cybersecurity SOPs
Coordinate cybersecurity inputs
Support vulnerability management
Support incident response coordination
Support control evidence collection
Support security-related data calls
Partner with service operations teams
Partner with identity teams
Partner with device teams
Partner with network teams
Partner with platform teams
Partner with application teams
Monitor cybersecurity risks
Monitor cybersecurity issues
Monitor cybersecurity dependencies
Monitor compliance gaps
Translate cybersecurity requirements
Translate cybersecurity risks
How You'll Work.
Team & Collaboration
Engineering teams; Product delivery teams; Architecture teams; DevSecOps teams; Cloud teams; Data teams; Service operations teams; System owners; Security assessors; Federal cybersecurity stakeholders; Cross-functional teams
Communication Scope
Executive reporting; Technical guidance
Process & Methodology
Agile, DevOps, CI/CD, Product delivery, Application modernization
Full Job Description
**_This role is contingent upon a contract award_.** ICF is seeking an experienced Cybersecurity Manager to lead cybersecurity governance, risk management, compliance coordination, and security integration for a complex federal technology services program. This role will be responsible for ensuring cybersecurity requirements are addressed across systems, applications, integrations, cloud services, product delivery, and operational support functions. The ideal candidate has demonstrated experience supporting federal cybersecurity programs that require RMF alignment, assessment documentation, POA&M management, contingency planning, vulnerability coordination, cybersecurity reporting, and integration with engineering and product delivery teams. This role requires strong knowledge of federal cybersecurity requirements, practical risk management judgment, and the ability to coordinate across technical, program, operations, assessor, and client stakeholder groups. **Job Location:** This position is remote within the United States. Please note that ICF monitors employee work locations, restricts access from foreign locations and IP addresses, and prohibits the use of personal VPN connections. ## What You’ll Be Doing * Lead cybersecurity governance and RMF coordination across a complex federal technology services environment. * Develop, maintain, and coordinate cybersecurity assessment documentation, including FIPS 199 analyses, E-Authentication Risk Assessments, security control implementation statements, and supporting control artifacts. * Support system teams, product teams, security assessors, and client stakeholders in preparing and maintaining cybersecurity evidence and compliance documentation. * Evaluate cybersecurity risks associated with new capabilities, including applications, integrations, plug-ins, software tools, system connections, and platform changes. * Track system security deficiencies, remediation activities, and Plans of Action and Milestones through c
Applying for this Manager, Cyber Security role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about Icf?
Real rants from real employees. Read before you apply.