Description:
• Own the full lifecycle of personnel security clearances, including initiations, sponsorships, reinvestigations, and terminations.
• Serve as the primary liaison with DCSA and other cognizant security authorities.
• Conduct security briefings, debriefings, foreign travel briefings, and annual security awareness training for cleared staff.
• Maintain accurate records of cleared employees, visitor certifications, and foreign national contacts.
• Manage and maintain the company’s Facility Clearance (FCL) in accordance with DCSA guidance and NISPOM requirements.
• Oversee physical security controls, including access management, classified storage, open storage areas, and classified destruction procedures.
• Conduct and document periodic self-inspections and develop corrective action plans.
• Ensure proper handling, transmission, storage, and disposition of classified information and CUI.
• Support program managers in reviewing DD Form 254s for new and existing contracts.
• Partner with IT and DevSecOps teams and interface with government Program Security Officers on security requirements and deliverables.
• Maintain compliance with NISPOM, ITAR, EAR, and other federal security directives.
• Develop and enforce security policies, procedures, and SOPs tailored to a software product company environment.
• Investigate and report security incidents and violations, including root cause analysis and remediation.
• Support CMMC assessments, government inspections, and contract-driven security audits.
• Stay current on evolving federal security regulations and update the security program accordingly.
Requirements:
• Active Secret clearance is required; TS or TS/SCI is strongly preferred.
• 5+ years of industrial security or FSO experience with a cleared defense contractor or government entity.
• Deep working knowledge of NISPOM (32 CFR Part 117) and DCSA processes.
• Hands-on experience with DISS, NBIS, or equivalent personnel security systems.
• Experience managing an FCL and conducting DCSA self-inspections.
• FSO certification through DCSA’s CDSE or an equivalent qualification.
• Excellent communication skills with the ability to explain security requirements to non-security audiences, including software engineers and executives.
• Bachelor’s degree in security management, information assurance, cybersecurity, or a related field, or equivalent professional experience.
• Prior FSO or security management experience at a software, SaaS, or cybersecurity company is preferred.
• Familiarity with CMMC Level 2/3 requirements and C3PAO assessment processes is preferred.
• Understanding of cloud security environments such as AWS GovCloud or Azure Government in classified or CUI programs is preferred.
• Experience with ITAR/EAR export control compliance, including technology control plans, is preferred.
• OPSEC Coordinator certification or Special Access Program security experience is preferred.
• Professional certifications such as CPP, PSP, or SAPPC are preferred.
• Familiarity with Zero Trust concepts as they relate to federal security programs is a plus.
Benefits:
• Base salary range of $90,000 to $115,000.
• Equal opportunity and affirmative action employer.
• Applicants receive consideration without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status, age, or other protected class.
• Written affirmative action program available for review upon request.