At ValidaTek, we modernize and optimize IT services to solve some of the most critical challenges facing federal civilian and defense agencies. From customers to partners to top-talent employees, ValidaTek puts people first, empowering them to exceed expectations and transform government organizations. Our success starts and ends with our people, so we built a company where great people can do great things, with the resources and autonomy to make decisions that transform organizations. We operate as one team of diverse people, united by a passion for continuous growth and optimization. Our commitment to quality and performance optimization is the reason why our IT Service Projects and New Development Projects have been appraised at CMMI Maturity Level 5, positioning us as one of a handful of elite companies to receive the highest form of third-party validation. www.validatek.com

ValidaTek is seeking a knowledgeable and proactive Security Manager to support our Cybersecurity Systems Support (CSS) contract with the Defense Information Systems Agency (DISA). This leadership position is responsible for managing the security posture of the CSS environment, ensuring compliance with Department of Defense cybersecurity policies, overseeing RMF processes, and supporting the secure operation of IT systems. The ideal candidate will bring a strong background in information assurance, RMF, and leadership in secure IT environments. This is a 100% on-site position located in Pensacola, FL. 

• Oversee the implementation, monitoring, and maintenance of information assurance and cybersecurity practices across all systems within the CSS program. 

• Serve as the senior cybersecurity subject matter expert, advising technical teams and leadership on risk posture, system security, and compliance requirements. 

• Lead the development, maintenance, and approval of Assessment & Authorization (A&A) documentation in eMASS, including System Security Plans (SSPs), POA&Ms, CONOPS, and security artifacts. 

• Ensure compliance with the Risk Management Framework (RMF), FISMA, and DoD cybersecurity policies, including STIGs and IAVM directives. 

• Manage security incidents and responses in coordination with the Cyber Security Service Provider (CSSP) and maintain documentation of event resolutions. 

• Lead and support continuous monitoring, vulnerability management, and cyber risk scoring. 

• Coordinate system scans, assessments, and reporting using tools such as ACAS, HBSS, Nessus, and Splunk. 

• Serve as a liaison between project stakeholders, system owners, and cybersecurity personnel to maintain ATO/IATT status. 

• Provide cybersecurity guidance during system design, development, and deployment stages. 

• Develop and enforce local security policies, internal controls, and audit procedures in alignment with DoD directives. 

• Lead internal and external security audits and reviews. 

• Active Secret clearance with the ability to obtain a Top Secret clearance. 

• Bachelor’s degree in Cybersecurity, Information Assurance, Computer Science, or a related technical field. 

• DoD 8570 IAM Level II or III certification (e.g., CAP, CISSP, CISM, GSLC) – required. 

• 5+ years of experience in information assurance or cybersecurity, including at least 3 years in a managerial or team lead role. 

• Deep understanding of RMF, DIACAP, and DoD cybersecurity compliance frameworks. 

• Experience with eMASS, ACAS, HBSS, and other cybersecurity toolsets. 

• Proven experience developing and maintaining ATO packages and managing POA&Ms. 

• Strong written and verbal communication skills, with the ability to clearly present complex security concepts to both technical and non-technical stakeholders. 

• Ability to lead a multidisciplinary team and prioritize work in a fast-paced, mission-driven environment. 

 

Preferred Qualifications: 

• Experience supporting DISA or other DoD cybersecurity programs. 

• Working knowledge of FedRAMP, CDS, and cloud-based security controls. 

• Familiarity with ITIL processes and formal change management practices. 

• Experience in leading vulnerability assessments, incident response, and security audits. 

USD $70,000.00/Yr.

USD $90,000.00/Yr.

Actual salary will be based on a variety of factors including but not limited to experience, geographic location, contract affordability, internal equity, education, and certifications.

The upper end of the salary range may be reserved for individuals who have demonstrated tenure with the company, seniority, and proven excellent performance. This includes factors such as education, certifications, and extensive/unique experience beyond what is required.

ValidaTek is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, national origin, age, protected veteran status, or disability status.

Applicants who are selected for employment will be required to verify authorization to work in the United States.

Offers of employment will be contingent upon passing a post-offer background check.