Cybersecurity Lead-(Program Manager - Advanced) OR Security Control Assessor - Advanced

Business Technology Integrators (BTI), A Service -Disable Veteran Owned Small Business with over 25 years of experience delivering innovative IT Solutions to the Federal Government, is seeking a Cybersecurity Lead (Program Manager OR Security Control Assessor - Advanced) in support of Marine Corps Recruiting Command (MCRC) headquarters in Quantico VA.

Job Summary:
MCRC is seeking a highly skilled Cybersecurity Lead to manage and maintain the cybersecurity posture of our recruiting systems, including RCEN and MCRISS. This role ensures compliance with DoD RMF, Continuous Monitoring (ConMon), and Zero Trust Architecture (ZTA) while coordinating with internal and external stakeholders such as MARFORCYBER, MCCOG, and Cyber Protection Teams.

Responsibilities:

• Implement and manage RMF and ConMon processes for all recruiting systems.

• Create, update, and track RMF packages and artifacts (SSP, SAP, SAR, RAR, POA&M) for RCEN, AITS, and other MCRC systems.

• Facilitate issuance, maintenance, and recertification of ATOs, including providing a certified validator.

• Conduct vulnerability scans, risk assessments, and penetration testing; report findings to relevant stakeholders.

• Maintain cybersecurity compliance reporting via OPDIRS and other required systems.

• Monitor and maintain cybersecurity dashboards for Ongoing Authorization, Asset Management, and Cyber Tasking Order (CTO) compliance.

• Identify non-secure activities or rogue devices and recommend corrective actions.

• Support the integration of cybersecurity policies into IT operations and provide guidance on new initiatives.

• Prepare for and participate in cyber inspections, including CGIP, CCRI, CORA, White Team, and Blue Team.

Qualifications:

• Extensive experience in cybersecurity management, RMF, ConMon, and assessment & authorization (A&A) processes.

• Strong knowledge of DoD, DoN, and USMC cybersecurity policies and procedures.

• Proven experience with cybersecurity compliance reporting, vulnerability management, and risk mitigation.

• Strong analytical, problem-solving, project management, and communication skills.

• Ability to liaise effectively with multiple stakeholders and teams.

  Certifications Required (one or more): CY101, SecurityX/CASP+, CGRC/CAP, DAWIA PM Practitioner, CCE, CCISO, CISM, CISSO, CISSP, DAWIA PM Advanced, GFACT, GSLC

Preferred:

• Experience in cybersecurity service provision (CSSP) and enterprise tools (MCCAST, eMASS).

• Familiarity with Zero Trust Architecture implementation and continuous monitoring best practices.

What We Offer:

• Opportunity to work on mission-critical Marine Corps cybersecurity initiatives.

• Collaborative environment with direct impact on national security operations.