United States onlySecurity Infrastructure Support Team Lead
Overview
cFocus Software is seeking a highly experienced Security Infrastructure Support Team Lead to oversee and manage the operation, maintenance, and security of hybrid IT infrastructures supporting a federal agency. The Team Lead will guide technical teams, ensure compliance with federal cybersecurity frameworks, and manage enterprise security tools and operations across on-premises and cloud environments. This position requires strong leadership, deep technical expertise, and the ability to communicate complex security concepts to both technical and non-technical stakeholders.This is a full-time position that may require on-site support at federal agency locations in the Washington, D.C. metro area. Some telework flexibility may be available depending on mission requirements. Must be able to obtain and maintain a Public Trust or higher-level security clearance as required by the agency.
Responsibilities
The Security Infrastructure Support Team Lead shall perform duties that include, but are not limited to:- Lead and oversee the security infrastructure team, ensuring effective support and management of enterprise security operations across hybrid environments (on-premises and cloud).
- Provide technical and managerial guidance for security engineering initiatives, risk analysis, and infrastructure optimization.
- Plan, coordinate, and manage projects related to infrastructure security, ensuring alignment with organizational objectives and timelines.
- Oversee the configuration, maintenance, and integration of enterprise cybersecurity tools, including Security Information and Event Management (SIEM) platforms.
- Integrate data pipeline solutions and automation processes with SIEM platforms to enhance visibility and operational efficiency.
- Ensure secure operation and management of Windows and Linux servers, network appliances, patching, vulnerability remediation, and endpoint protection systems.
- Apply federal cybersecurity frameworks (FISMA, NIST SP 800-53, NIST SP 800-92, OMB M-21-31, CDM) to ensure full compliance across infrastructure systems.
- Demonstrate expertise in cloud security concepts and operations for AWS, Azure, and O365 environments, including migration, security hardening, and cost optimization.
- Incorporate DevSecOps practices and automation into security operations, ensuring secure code integration in build, test, and deployment pipelines.
- Develop and maintain standard operating procedures (SOPs), performance metrics, and reporting mechanisms aligned with SLAs and KPIs.
- Manage and coordinate with third-party vendors, contractors, and cross-functional technical teams to ensure consistent and compliant service delivery.
- Provide leadership during incident response, POA&M resolution, and continuous monitoring activities.
- Prepare and deliver executive-level reports, briefings, and risk analyses for agency and federal leadership.
- Mentor and coach team members, fostering a collaborative and high-performing security operations culture.
Required Qualifications
- Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or a related field (preferred).
- 10+ years of IT experience, including at least 5+ years focused on security engineering and 5+ years in a lead or management role.
- Experience overseeing hybrid infrastructure environments (on-premises and cloud).
- PMP certification preferred.
- Experience leading technical teams, managing projects, performing technical risk analysis, and providing technical guidance.
- Strong verbal and written communication skills, capable of explaining complex security concepts to both technical and non-technical audiences, including executive leadership.
- Demonstrated familiarity with cloud security concepts, services, and operations for AWS, Azure, and O365, including migration, security hardening, and cost optimization.
- Familiarity with DevSecOps practices, including secure code integration and automation throughout build, test, and deployment processes.
- Experience managing enterprise cybersecurity tools, including Security Information and Event Management (SIEM) platforms across hybrid environments.
- Experience integrating data pipeline solutions with SIEM platforms for enhanced security monitoring and analytics.
- Hands-on experience with federal cybersecurity compliance frameworks such as FISMA, NIST SP 800-53, NIST SP 800-92, OMB M-21-31, and CDM.
- Strong background in infrastructure management, including Windows/Linux servers, patching, vulnerability remediation, network appliances, and endpoint security.
- Strong problem-solving and analytical abilities for identifying and addressing complex security issues.
- Demonstrated leadership in incident response, POA&M resolution, and continuous monitoring.
- Proven ability to develop SOPs, performance metrics, and reporting mechanisms aligned with SLAs and KPIs.
- Proven experience engaging with Federal leadership, Cybersecurity Operations Centers (CSOC), and compliance offices.
- Experience coordinating with third-party vendors and cross-functional teams to manage complex projects and integrations.
Preferred Qualifications
- Experience supporting DHS or other federal agencies in security infrastructure or cybersecurity leadership roles.
- Hands-on experience with enterprise SIEM platforms such as Splunk, ArcSight, or QRadar.
- Knowledge of automation, orchestration, and scripting tools (PowerShell, Python, Bash) for system monitoring and incident response.
- Proficiency in cloud-native security tools and services across AWS, Azure, and O365 environments.
- Strong leadership, communication, and mentoring skills to build high-performing cybersecurity teams.
- Experience developing executive-level risk dashboards and infrastructure performance metrics.
