Cybersecurity Strategist

About S2:

S2 eliminates risks of separate red- and blue-teams by creating continuously optimized cybersecurity for the modern, constant-threat landscape. Our centralized adversary simulation, detection and response platform, Mage, uses advanced tradecraft to provide continuous red team-as-a-service. With Mage, we find weaknesses before adversaries do, so that every threat is an opportunity for improvement. Deployed as-a-service, S2 makes advanced real-time cybersecurity accessible for all organizations. With smart automation and continuous testing, we help you focus on the most imminent and most critical risks to your enterprise.

S2 is a Small Business that is focused solely on cybersecurity and specializes in Adversary Simulation, Protection and Prevention services.  We were founded by cybersecurity experts trained by the National Security Agency (NSA) who were joined by senior cybersecurity entrepreneurs with proven expertise within the Federal Government. We are a growing community of cyber professionals seeking like-minded individuals who are passionate about cybersecurity, seek innovation in our everyday work, hold ourselves and those around us accountable, and have a will to win.  

S2. Relentlessly secure.

Stage 2 Security (S2) is currently seeking a  Cybersecurity Strategist in the DC metro area, with ability to telework remotely and go into the client site as needed (very minimal). The ideal candidate will have proven experience and a desire to operate as a self-starter and be comfortable working in an ambiguous, yet fast-paced environment. Additionally, the candidate will have the following skills:

• Ability to support the responsibility for assigned strategies and champion them across the organization
• Proven ability to do research and documentation on emerging trends and how they impact the organization and assigned strategies
• Proven ability to map and understand complex relationships and interactions between Enterprise Architecture, business direction, emerging trends, emerging technologies, and legacy systems
• Superb speaking, writing, and influencing skills are required as the opportunity often presents or interacts verbally or in written form senior executive leadership
• Proven ability to identify and develop clear and understandable security capabilities and strategic views from high-level business objectives and technology constraints
• A developing knowledge of information security principles, frameworks and best practices and how those principles support Strategy and Vision
• Proven ability to pull a diverse group of individuals with different goals together to facilitate, moderate, and influence productive discussions driving towards results
• Demonstrated relevant security expertise in designing security solutions for a mix of technology areas, with a focus on network and cloud security

The candidate will be providing programmatic oversight for running large-scale cybersecurity programs, developing organizational strategy, while also having strong background knowledge in one or more of the following areas:  

• Zero Trust, Security operations
• Incident management
• Vulnerability management
• Continuous monitoring
• Incident detection
• Threat hunting and analysis,
• Security engineering and architecture
• Identity Management and Access Management
• Cloud Service, Provider, and Platform Security
• Data Classification, Encryption, and Protection
• Business Continuity Planning and Technical Recovery
• Process Improvement
• Governance Management and Development

The Strategists will use their knowledge and professional experience to support the development, communication, and maintenance of cybersecurity strategy.  This role will be part of a team that will ultimately drive cybersecurity strategy for USDA.  The candidate will enable comprehensive strategic conversations with technical audiences, while building confidence with stakeholders, and leadership.  The core focus will be the development of cybersecurity vision, roadmaps and governance for all strategies assigned. The candidate will support additional aspects of security strategy, including:

• Defining and maintaining security strategy and governance
• Program / Project Management
• Development of strategic program frameworks
• Analyze market and industry trends, best practices and adjust security strategy accordingly
• Other duties and responsibilities assigned

This multi-faceted role involves the management of personnel, program tasks and deliverables, budget management, strategic cybersecurity support, etc. Some of these responsibilities include: 

• Customer relationship management 
• Executive Level Strategy and Roadmap Development
• High Level Program Action Plan Development
• Briefing Senior Executives
• Multi-faceted project management and cybersecurity support 
• Talent management 

• Familiarity with Federal standards, specifically NIST standards. 
• Providing expert-level support in cybersecurity, ideally with consulting and automation of security services background. 
• Articulate and translate complex program concepts into understandable objectives 
• Tackle and support complex cybersecurity challenges for a large-scale organization. 
• Lead and manage cross functional teams in strategy and roadmap development. 

Qualifications: 

The selected candidate is required to have: 

• Bachelor’s Degree with at least 10 years of Information Security architecture and / or strategy development
• Deep insight on market trends and best practices 
• Demonstrated supervisory responsibilities and team leadership in professional setting 
• Experience interacting with employees at all levels within the organization 
• Ability to juggle customer and organizational objectives and goals 
• Ability to build, sustain and influence relationships, and develop networks as appropriate 
• Able to help analyze complex problems and provide input into solutions 
• Demonstrated teamwork and collaboration in a professional setting 
• IT Program management skills  
• Excellent data analysis and comminution skills; both written and oral 
• Must be organized with attention to detail 
• Qualified candidates must have experience in one or more of the following areas:  Zero Trust; Vulnerability Management; Security Operations Center (SOC); Auditing/Logging; Risk Management Framework (RMF); Zero Trust; Identify, Credential, & Access Management (ICAM); Continuous Diagnostic & Mitigation (CDM), and other Emerging technologies.
• US Citizenship required, and candidates must be willing to be submitted for a US Government background investigation

No third-party candidates will be considered

The Benefits:

S2 is a small business where people come first, and we know and care about each and every employee.  This drives us to provide the best possible benefits and we believe that the benefits we offer are a notch above the rest.

The Benefits at S2 include:

• Medical & dental insurance premiums are 100% paid by S2 for the employee and eligible dependents
• Up to $100 per month reimbursed for mobile phone expenses
• Up to $50 per month reimbursed for home Internet access
• Expenses paid for approved work-related trainings & conferences
• Eligibility to participate in our 401k program after 90 days of employment
• Competitive salary, which is paid semi-weekly (twice per month) 
• Participation in S2 Unlimited PTO Program
• 10 paid government holidays annually
• 10 paid sick days

Stage 2 Security welcomes and encourages diversity in the workplace regardless of race, gender, religion, age, sexual orientation, gender identity, disability, or veteran status.

If you are looking to make an impact, Stage 2 Security is the place for you.