Lead and manage the Department of Defense information system security program, focusing on RMF lifecycle, IL5 compliance, and team mentorship.
You will lead and scale our Department of Defense (DoD) IL5 SaaS and enclave security program. As the ISSM, you’ll drive the Risk Management Framework (RMF) lifecycle from initial categorization through Authorization to Operate (ATO) and continuous monitoring. You’ll partner with engineering to implement IL5-specific controls, enforce STIG/SRG compliance, and ensure our enclave is audit-ready. You will serve as the primary interface with Authorizing Officials (AOs), Security Control Assessors (SCAs), and government stakeholders, while coaching a small team to deliver sustained security excellence.
What You'll Do:
- RMF & ATO Leadership
- Own the RMF lifecycle: system categorization, control tailoring (NIST 800-53r5), evidence development, POA&M management, and AO briefings.
- Maintain eMASS records, packages, and artifacts; drive continuous monitoring cadence.
- Lead meeting DoD and organizational compliance obligations.
- IL5 Enclave Security Operations
- Design, implement, and mature SP and enclave security controls (boundary protections, identity/access, logging, incident response, vulnerability & patch management).
- Ensure STIG/SRG compliance (DISA guidance) and maintain situational awareness using ACAS, Nessus, and other compliance scanning tools.
- Map and validate inherited controls from AWS GovCloud, ensuring IL5 isolation is properly documented.
- Governance & Policy Compliance
- Ensure IS security measures align with applicable DoD and federal cybersecurity policies.
- Draft, review, and maintain cybersecurity policies, SOPs, and technical documentation.
- Oversee audit log monitoring, analysis, and reporting to meet DoD and organizational requirements.
- Stakeholder Engagement
- Act as primary interface with AOs, SCAs, auditors, partners, and mission owners.
- Translate risk posture, timelines, and remediation progress into executive-ready briefings.
- Support Configuration/Change Assurance Board (CAB) activities and provide risk-based recommendations.
- Team Coaching & Mentorship
- Supervise and mentor ISSO staff; establish operating cadence, SLAs, and dashboards.
- Prepare for SCA-V assessments and drive remediation through closure.
What You'll Bring:
- Experience
- 8–12+ years in cybersecurity, including 4+ years leading DoD RMF/ATO efforts.
- Prior experience supporting IL4/IL5 ATOs as an ISSO/ISSM.
- Hands-on eMASS and POA&M management expertise.
- Deep familiarity with NIST 800-53r5, DISA CC SRG, STIGs/SRGs, and continuous monitoring practices.
- Cloud security experience with AWS GovCloud, including IL5 isolation patterns.
- Certifications
- DoD 8570/8140 IAM III baseline certification (e.g., CISSP, CISM).
- CAP, PMP, or similar certifications preferred.
- Other Requirements
- Strong communication and executive briefing skills.
- U.S. citizenship and eligibility for DoD Secret clearance (preferred/required by most IL5 programs).
The reasonably estimated salary for this role at Everbridge ranges from $130,000 - $175,000 and may also include variable compensation. Actual compensation is based on factors such as the candidate's skills, qualifications, and experience. In addition, Everbridge offers a wide range of best in class, comprehensive and inclusive employee benefits for this role including healthcare, dental, parental planning, and mental health benefits, disability income benefits, life and AD&D insurance, a 401(k) plan and match, paid time off, and fitness reimbursements.
Fair Chance Statement US & Canada
We are committed to providing equal employment opportunities in compliance with all applicable Federal, Provincial/State and Local laws, including the California Fair Chance Act and any local County Fair Chance Ordinance (or local equivalent). Pursuant to these and other relevant regulations, we consider qualified applicants with criminal histories in a manner consistent with the law.
For roles subject to background checks, the following material job duties may be affected by an applicant’s criminal history:
- Access to sensitive or confidential information, such as financial records, proprietary data, or client information.
- Management of cash, company funds, or other valuable assets.
- Work in environments requiring heightened security measures.
- Compliance with contractual or regulatory requirements specific to the position.
We evaluate each applicant's criminal history individually, considering its nature, timing, and relevance to the specific job duties, while maintaining our commitment to fair hiring practices and promoting workplace equity.
About Everbridge
Everbridge empowers enterprises and government organizations to anticipate, mitigate, respond to, and recover stronger from critical events. In today’s unpredictable world, resilient organizations minimize impact to people and operations, absorb stress, and return to productivity faster when deploying critical event management (CEM) technology. Everbridge digitizes organizational resilience by combining intelligent automation with the industry’s most comprehensive risk data to Keep People Safe and Organizations Running™. For more information, visit www.everbridge.com, read the company blog, and follow on Twitter. Everbridge… Empowering Resilience
Everbridge is an Equal Opportunity/Affirmative Action Employer. All qualified Applicants will receive consideration for employment without regard to race, creed, color, religion, or sex including sexual orientation and gender identity, national origin, disability, protected Veteran Status, or any other characteristic protected by applicable federal, state, or local law.
Top Skills
Acas
Aws Govcloud
Disa Cc Srg
Emass
Nessus
Nist 800-53R5
Stigs/Srgs
Similar Jobs
.png)
Artificial Intelligence • Blockchain • Fintech • Financial Services • Cryptocurrency • NFT • Web3
Develop and enhance developer tools for blockchain integration, ensure high-quality backend services, and collaborate effectively with product and design teams.
Top Skills:
APIsBlockchainDistributed SystemsEthereumEvent-Driven ArchitectureEvm-Compatible ChainsMicroservicesSdk
Artificial Intelligence • Cloud • Sales • Security • Software • Cybersecurity • Data Privacy
As a Mainframe Developer, you'll design and implement applications in an IBM z/OS environment, focusing on building reliable, scalable systems and conducting code reviews and testing.
Top Skills:
AssemblerCC++GitIbm Z/OsJavaJclRexx
Artificial Intelligence • Healthtech • Telehealth
Lead the design and deployment of automation and AI systems to optimize pipeline generation within sales and revenue operations. Collaborate across teams to improve GTM strategies and enhance tech stack efficiency, leveraging systems integration.
Top Skills:
ClayGongLookerN8NOutreachSalesforceSlackSnowflakeZapier
What you need to know about the Colorado Tech Scene
With a business-friendly climate and research universities like CU Boulder and Colorado State, Colorado has made a name for itself as a startup ecosystem. The state boasts a skilled workforce and high quality of life thanks to its affordable housing, vibrant cultural scene and unparalleled opportunities for outdoor recreation. Colorado is also home to the National Renewable Energy Laboratory, helping cement its status as a hub for renewable energy innovation.
Key Facts About Colorado Tech
- Number of Tech Workers: 260,000; 8.5% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Lockheed Martin, Century Link, Comcast, BAE Systems, Level 3
- Key Industries: Software, artificial intelligence, aerospace, e-commerce, fintech, healthtech
- Funding Landscape: $4.9 billion in VC funding in 2024 (Pitchbook)
- Notable Investors: Access Venture Partners, Ridgeline Ventures, Techstars, Blackhorn Ventures
- Research Centers and Universities: Colorado School of Mines, University of Colorado Boulder, University of Denver, Colorado State University, Mesa Laboratory, Space Science Institute, National Center for Atmospheric Research, National Renewable Energy Laboratory, Gottlieb Institute
