TRAN & RUN: Security Lead

Ampcus Inc. is a certified global provider of a broad range of Technology and Business consulting services. We are in search of a highly motivated candidate to join our talented Team.

Job Title: TRAN & RUN: Security Lead

Location(s): Bridgewater, NJ

Description
This JD is for a senior Cybersecurity Governance / Security Operations leadership role with strong emphasis on operational oversight, risk management, compliance, and coordination across multiple security domains.

Core focus areas:

• Cybersecurity governance and compliance
• Security operations oversight
• Risk management and remediation tracking
• SOC coordination and incident readiness
• Vulnerability management
• Stakeholder communication and leadership
• Security program planning and execution

Role summary:
The person acts as an onsite cybersecurity lead responsible for daily cyber governance activities, coordinating with SOC teams, infrastructure teams, IAM teams, vendors, and leadership to maintain security posture, ensure compliance, prioritize risks, and drive remediation activities.

Key responsibilities explained:

1. Daily Cybersecurity Operations Oversight
   This is the operational backbone of the role.

Daily activities include:

• Reviewing SOC alerts and incident queues
• Monitoring SIEM health and endpoint telemetry
• Tracking vulnerability scans and remediation
• Validating patch management progress
• Reviewing privileged access activity (PAM)
• Managing EDR/AV exceptions
• Coordinating with infrastructure/network/application teams
• Prioritizing risks based on severity and business impact
• Conducting risk triage meetings
• Escalating critical issues
• Reporting metrics and status to stakeholders

This requires strong familiarity with:

• SIEM platforms
• EDR/XDR tools
• PAM solutions
• Vulnerability management tools
• Security dashboards
• Ticketing systems
• Incident response workflows

1. Cybersecurity Leadership
   The role is expected to provide leadership across major cybersecurity domains:

Security domains involved:

• Security Architecture
• Governance, Risk & Compliance (GRC)
• IAM
• Firewall and network security
• Threat intelligence
• Penetration testing
• Security project management
• SOC operations

This indicates the role is not deeply hands-on engineering only; it is heavily governance, coordination, oversight, and decision-making focused.

1. Security Operations Management
   The candidate oversees external SOC providers and internal operations.

Responsibilities include:

• Validating incident classification
• Ensuring SLA adherence
• Risk-based prioritization
• Vendor coordination
• Security reporting
• Escalation management
• Budget and operational planning

Important soft skills:

• Executive communication
• Calm incident management
• Prioritization under pressure
• Cross-functional coordination

1. Security Program Planning & Projects
   This section focuses on strategic security improvements.

Responsibilities:

• Designing cybersecurity improvement plans
• Running security initiatives/projects
• Leading tabletop exercises
• Supporting forensic investigations
• Evaluating emerging threats
• Maintaining incident response readiness
• Coordinating with executives and business leaders

This requires:

• Security governance maturity
• Program management experience
• Risk assessment capability
• Strategic planning skills

1. Security Processes & Compliance
   Governance-heavy responsibilities:

• Developing policies and procedures
• Managing audit readiness
• Conducting security awareness/training
• Reporting cyber risks to management
• Driving security best practices
• Ensuring continuous improvement

Likely frameworks involved:

• NIST CSF
• ISO 27001
• CIS Controls
• SOC 2
• PCI DSS
• HIPAA
• GDPR
  (depending on industry)

Ideal candidate profile:

• 10+ years cybersecurity experience
• Strong GRC and Security Operations background
• Experience managing SOC/vendor relationships
• Familiarity with enterprise security tooling
• Strong incident management skills
• Executive stakeholder communication
• Experience with audits/compliance
• Ability to lead security governance programs

Common job titles similar to this role:

• Cybersecurity Lead
• Security Governance Lead
• Security Operations Manager
• Cybersecurity Program Manager
• Information Security Manager
• Cyber Risk Manager
• Security Compliance Lead
• Cybersecurity Delivery Lead

Primary technical skills expected:

• SIEM
• EDR/XDR
• PAM
• Vulnerability Management
• IAM
• Firewall governance
• Incident Response
• Threat Intelligence
• GRC tools
• Security metrics/reporting

Important non-technical skills:

• Leadership
• Communication
• Vendor management
• Risk prioritization
• Stakeholder management
• Documentation
• Executive reporting
• Decision-making under pressure

This role is closer to:
70% governance/operations leadership
30% technical security oversight

rather than a pure hands-on engineering or SOC analyst position.

Ampcus is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veterans or individuals with disabilities.

Ampcus Inc. is a certified global provider of a broad range of Technology and Business consulting services. We are in search of a highly motivated candidate to join our talented Team.

Job Title: TRAN & RUN: Security Lead

Location(s): Bridgewater, NJ

Description
This JD is for a senior Cybersecurity Governance / Security Operations leadership role with strong emphasis on operational oversight, risk management, compliance, and coordination across multiple security domains.

Core focus areas:

• Cybersecurity governance and compliance
• Security operations oversight
• Risk management and remediation tracking
• SOC coordination and incident readiness
• Vulnerability management
• Stakeholder communication and leadership
• Security program planning and execution

Role summary:
The person acts as an onsite cybersecurity lead responsible for daily cyber governance activities, coordinating with SOC teams, infrastructure teams, IAM teams, vendors, and leadership to maintain security posture, ensure compliance, prioritize risks, and drive remediation activities.

Key responsibilities explained:

1. Daily Cybersecurity Operations Oversight
   This is the operational backbone of the role.

Daily activities include:

• Reviewing SOC alerts and incident queues
• Monitoring SIEM health and endpoint telemetry
• Tracking vulnerability scans and remediation
• Validating patch management progress
• Reviewing privileged access activity (PAM)
• Managing EDR/AV exceptions
• Coordinating with infrastructure/network/application teams
• Prioritizing risks based on severity and business impact
• Conducting risk triage meetings
• Escalating critical issues
• Reporting metrics and status to stakeholders

This requires strong familiarity with:

• SIEM platforms
• EDR/XDR tools
• PAM solutions
• Vulnerability management tools
• Security dashboards
• Ticketing systems
• Incident response workflows

1. Cybersecurity Leadership
   The role is expected to provide leadership across major cybersecurity domains:

Security domains involved:

• Security Architecture
• Governance, Risk & Compliance (GRC)
• IAM
• Firewall and network security
• Threat intelligence
• Penetration testing
• Security project management
• SOC operations

This indicates the role is not deeply hands-on engineering only; it is heavily governance, coordination, oversight, and decision-making focused.

1. Security Operations Management
   The candidate oversees external SOC providers and internal operations.

Responsibilities include:

• Validating incident classification
• Ensuring SLA adherence
• Risk-based prioritization
• Vendor coordination
• Security reporting
• Escalation management
• Budget and operational planning

Important soft skills:

• Executive communication
• Calm incident management
• Prioritization under pressure
• Cross-functional coordination

1. Security Program Planning & Projects
   This section focuses on strategic security improvements.

Responsibilities:

• Designing cybersecurity improvement plans
• Running security initiatives/projects
• Leading tabletop exercises
• Supporting forensic investigations
• Evaluating emerging threats
• Maintaining incident response readiness
• Coordinating with executives and business leaders

This requires:

• Security governance maturity
• Program management experience
• Risk assessment capability
• Strategic planning skills

1. Security Processes & Compliance
   Governance-heavy responsibilities:

• Developing policies and procedures
• Managing audit readiness
• Conducting security awareness/training
• Reporting cyber risks to management
• Driving security best practices
• Ensuring continuous improvement

Likely frameworks involved:

• NIST CSF
• ISO 27001
• CIS Controls
• SOC 2
• PCI DSS
• HIPAA
• GDPR
  (depending on industry)

Ideal candidate profile:

• 10+ years cybersecurity experience
• Strong GRC and Security Operations background
• Experience managing SOC/vendor relationships
• Familiarity with enterprise security tooling
• Strong incident management skills
• Executive stakeholder communication
• Experience with audits/compliance
• Ability to lead security governance programs

Common job titles similar to this role:

• Cybersecurity Lead
• Security Governance Lead
• Security Operations Manager
• Cybersecurity Program Manager
• Information Security Manager
• Cyber Risk Manager
• Security Compliance Lead
• Cybersecurity Delivery Lead

Primary technical skills expected:

• SIEM
• EDR/XDR
• PAM
• Vulnerability Management
• IAM
• Firewall governance
• Incident Response
• Threat Intelligence
• GRC tools
• Security metrics/reporting

Important non-technical skills:

• Leadership
• Communication
• Vendor management
• Risk prioritization
• Stakeholder management
• Documentation
• Executive reporting
• Decision-making under pressure

This role is closer to:
70% governance/operations leadership
30% technical security oversight

rather than a pure hands-on engineering or SOC analyst position.

Ampcus is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, protected veterans or individuals with disabilities.

• 

• Government Careers