iP-Plus Consulting, Inc. RISK MANAGEMENT SUPPORT TASK LEAD Belleville, IL · Full time
Apply for RISK MANAGEMENT SUPPORT TASK LEAD

iP-Plus Consulting is seeking an experienced Risk Management Support Task Lead to support a long term DoD cybersecurity and risk management contract for a major Combatant Command in the Belleville, IL area. This is a senior cybersecurity leadership position and a critical role on the contract. As the Task Lead you are responsible for managing on-site deliverables and coordinating directly with the Government functional lead across the full risk management program. You are not just executing tasks — you are setting the tone, leading the team, and owning the relationship with the Government. This role requires full time onsite presence and is not eligible for remote or hybrid work.

About iP-Plus Consulting, Inc.

iP-Plus Consulting, Inc. is a mission-focused technology and cybersecurity services firm supporting Federal agencies across defense, logistics, and national security sectors. The company specializes in delivering cybersecurity engineering, information assurance, systems integration, and technology modernization solutions that protect critical infrastructure and enable secure mission operations.

Description

THIS POSITION IS ON-SITE IN BELLEVILLE, IL AREA


Key Responsibilities


  • Manage on-site deliverables and coordinate directly with the Government functional lead across all risk management task areas
  • Lead a team of cybersecurity professionals supporting Information Systems Security Engineering (ISSE) lifecycle activities including risk assessments, countermeasure development, and security program administration
  • Perform Security Control Assessor Representative (SCAR) functions within eMASS on both NIPRNet and SIPRNet, including independent verification and validation of RMF security controls, ATO package finalization, and POA&M management
  • Triage all RMF-related workflows within seven business days of submission using the USTRANSCOM RMF Triage Checklist and route Package Return Reports to the SCA team for signature
  • Oversee weekly ACAS vulnerability scanning and analysis, report findings to the Government within three business days, and assist system administrators with remediation actions
  • Manage the command IAVM program including distribution, tracking, and reporting of IAVM compliance and trend data
  • Conduct security audits of designated systems prior to connection to the network and at the discretion of the Authorizing Official
  • Update information in the Continuous Monitoring and Risk Scoring (CMRS) system in accordance with USCYBERCOM requirements
  • Serve as the SME for software assurance compliance, evaluate software testing results, and ensure alignment with applicable DISA STIGs and SRGs
  • Support Zero Trust planning, assessments, reviews, engineering recommendations, and metrics reporting in alignment with DoD Zero Trust strategy and Executive Order 14028
  • Support DevSecOps RMF and SCA functions including security impact assessments, CI/CD pipeline control gate reviews, and continuous monitoring strategy development
  • Prepare and deliver briefings, talking papers, and reports to senior DoD officials on compliance posture and risk
  • Assist with Ports, Protocols, and Services Management (PPSM) activities in accordance with DoDI 8551.01


Required Qualifications


  • Minimum seven (7) years of experience leading teams in Information Systems Security Engineering, security control assessment, and vulnerability management within the DoD
  • Proven expertise in the application of the Risk Management Framework (RMF) for DoD systems
  • Demonstrated hands-on experience with eMASS, ACAS, and DISA STIGs
  • Strong knowledge of NIST SP 800-37, NIST SP 800-53, NIST SP 800-160, and related federal cybersecurity standards
  • Experience developing and maintaining SSPs, SARs, SAPs, POA&Ms, and ATO packages
  • Ability to brief senior DoD officials on compliance posture, risk, and mitigation strategies


Required Certifications


DoD 8570.01-M Information Assurance Management (IAM) Level III certification — one of the following must be active at time of proposal submission, no substitution accepted:

  • CISSP — Certified Information Systems Security Professional (ISC2)
  • CISM — Certified Information Security Manager (ISACA)


Preferred Qualifications


  • Direct USTRANSCOM or Combatant Command experience
  • Zero Trust architecture and implementation experience
  • DevSecOps and CI/CD pipeline security experience
  • Experience with PPSM (Ports, Protocols, and Services Management) and the DoD PPSM registry
  • Experience with Python, SQL, and Qlik for data analytics and cybersecurity readiness reporting
  • Experience with Databricks for analytics workload deployment
  • Familiarity with DISA STIGs, SRGs, and SCAP compliance tools
  • Experience conducting CCRI assessments and supporting USCYBERCOM reporting requirements
  • Experience with software assurance tools such as Fortify


Clearance Requirement


  • Active Secret clearance minimum, adjudicated by the Defense Counterintelligence and Security Agency (DCSA). All positions on this contract require either an interim Secret or a completed adjudication of Secret granted by DCSA Adjudication and Vetting Services.
  • TS/SCI preferred. Clearance sponsorship is not available. Candidates must hold an active clearance at time of proposal submission.
  • US Citizenship required


This position is contingent upon contract award. Employment is expected to begin upon successful award and funding of the program.

Apply for RISK MANAGEMENT SUPPORT TASK LEAD