IT Security Program Manager jobs in United States
cer-icon
Apply on Employer Site
company-logo

Castro & Company · 1 day ago

IT Security Program Manager

positionSan Juan, TX
timeFull-time
remoteOnsite
senioritySenior Level
date7+ years exp

Castro & Company is a Professional Services Center delivering advisory, accounting, and audit support services to Federal Government clients. They are seeking a highly motivated IT Security Program Manager to lead compliance and cybersecurity initiatives, ensuring alignment with CMMC and NIST standards while enhancing the organization's cybersecurity posture.

AccountingAdviceProfessional Services
check
Growth OpportunitiesbadNo H1BnoteU.S. Citizen Onlynote

Responsibilities

Develop, implement, and oversee the organization’s IT security compliance program
Lead and execute efforts to achieve and maintain compliance with NIST 800-53 and NIST 800-171 standards
Hands-on execution for CMMC readiness activities, including policy updates, control assessments, and remediation efforts
Collaborate and engage actively with cross-functional teams to secure buy-in and ensure program success
Own and deliver project timelines, deliverables, and reporting for compliance initiatives
Utilize GRC platforms for control tracking, risk management, and reporting
Conduct IT control assessments and ensure audit readiness
Support IT operations in a Windows environment and GCC-High configuration
Provide training and guidance to employees on security program requirements and best practices
Work with external auditors to facilitate assessments and certifications

Qualification

NIST 800-53NIST 800-171CMMC readinessGRC platformsCISSP certificationCISA certificationWindows environmentsDFARS regulationsITAR regulationsNIST RMF knowledgeProject managementCollaboration skills

Required

Minimum 7 years leading compliance programs in IT security
Proven ability to manage complex projects with exceptional organizational skills
Demonstrated experience performing tasks across the compliance program
Extensive experience collaborating with diverse business units and securing executive buy-in
Demonstrated success in achieving compliance program strategy for an organization
Extensive experience evaluating IT controls against NIST 800-53 and/or NIST 800-171 frameworks
Security Clearance: Must be able to pass a basic government suitability check (US Citizenship required)

Preferred

CISSP and/or CISA certifications (or related certification)
Experience with IT operations and administration in Windows environments
Experience with Microsoft GCC-High environments
Proficiency in GRC platforms for compliance management
Experience leading, tracking, and reporting on remediation efforts
Familiarity with DFARS and ITAR regulations and how they apply to CUI handling
Experience developing and overseeing CUI programs to ensure compliance with federal regulations
Knowledge of NIST Risk Management Framework (RMF), DCSA Assessment and Authorization Process Manual (DAAPM), National Industrial Security Program Operating Manual (NISPOM), and NISP Enterprise Mission Assurance Support Service (eMASS)

Company

Castro & Company

twittertwittertwitter
company-logo
Castro & Company is an accounting firm that offers audit and advisory services to federal government agencies.
dateFounded in 2004
location
Alexandria, Virginia, USA
people-size51-200 employees
web-link
https://castroco.com/

Funding

Current Stage
Growth Stage

Leadership Team

leader-logo
Thomas Castro
Managing Partner
linkedin
Company data provided by crunchbase