Security/Zero-Trust Lead (Proposal) in at TSPi

The Opportunity

As the Enterprise Zero Trust & ICAM Lead, you will serve as the senior cybersecurity authority for the DOJ OJP Enterprise Application Design and Development Services (EADDS) program. You will lead Digital Identity and Access Management (DIAMD/ICAM), Data Integration & SecOps, and DevSecOps security transformation initiatives to ensure secure, resilient, CJIS-compliant, and FISMA-authorized enterprise services across all OJP product families (JustGrants, CRM, DMRA, ECS, Service Management, etc.) This role integrates security architecture, Zero Trust maturity modeling, identity lifecycle governance, API security, data protection, and automated compliance into all SDLC and product delivery pipelines. This position is contingent upon award of the contract to TSPi.

Core Responsibilities

• Build and evolve an OJP Zero Trust model aligned with NIST 800‑207, including micro‑segmentation and policy‑based access controls.
• Modernize ICAM/DIAMD solutions, integrate Okta and SailPoint, deploy PIV/CAC authentication, strengthen access controls, and enable secure federation.
• Embed automated security into CI/CD pipelines, apply scanning tools, enforce secure Infrastructure‑as‑Code, and ensure compliance with NIST 800‑53.
• Implement enterprise logging, SIEM-based threat detection, API security, vulnerability management, and continuous ATO capabilities.
• Apply data classification, encryption, tokenization, masking, and DLP across cloud and enterprise platforms.
• Ensure adherence to FISMA, CJIS, DOJ standards, FedRAMP, and maintain SSP, POA&M, and ATO documentation.
• Architect secure AWS and Azure Gov environments and secure integrations for Dynamics 365, ServiceNow, Pega, Salesforce, and Snowflake.
• Evaluate emerging AI/ML platforms and apply governance, privacy safeguards, and secure model lifecycle controls.

What We Value

• Bachelor’s degree + 12 years cybersecurity experience, or Master’s + 10 years.
• At least 7 years supporting federal security architecture programs.
• Demonstrated Zero Trust leadership in federal environments.
• CISSP required; preferred certifications include CCSP, CISM, AWS/Azure security, Zero Trust Practitioner, or TOGAF security.
• Experience with Zero Trust (NIST 800‑207), ICAM modernization, Okta/SailPoint/Entra ID, DevSecOps toolchains, cloud security in AWS GovCloud and Azure Government, CSPM, and enterprise platform security.
• Ability to obtain and maintain a DOJ Public Trust and support CJIS‑compliant environments.
• Experience with DOJ or Justice community systems, and with security modernization under BPA or task-order structures.

What We Offer

We foster an environment where you can Thrive Your Way. Our innovative total rewards programs are designed to help balance your work and personal life. The approach toward your wellbeing centers around comprehensive benefits, flexible schedules, and professional development.

TSPi is an Equal Opportunity employer committed to fostering an inclusive work environment. TSPi provides market-competitive salaries and comprehensive employee benefits.

This position offers an anticipated annual base salary range of approximately $120,0000 to $190,000. Salary offers are made based on internal equity and market analysis.

Disclaimer: Abt will never ask candidates for money in exchange for an offer of employment.