Cybersecurity Manager

BAM is a dynamic, multi-disciplinary firm with leading-edge skills in information technology, software development and applied research. Serving government and commercial markets, BAM is committed to its customers and to delivering strong leadership, sound solutions, and innovative thinking.

BAM is seeking a Cybersecurity Manager to join its team. The Cybersecurity Manager is responsible for developing, implementing, and overseeing the organization’s cybersecurity strategy to protect digital assets, networks, and sensitive data. This role involves managing cybersecurity team activities, coordinating incident response efforts, ensuring compliance with regulatory standards, and staying ahead of emerging threats. The manager plays a critical role in maintaining business continuity and safeguarding the organization’s reputation.

• Lead the cybersecurity team in implementing and maintaining security measures.
• Develop and enforce cybersecurity policies, procedures, and protocols.
• Ensure compliance with relevant cybersecurity standards such as RMF, NIST SP 800-53, and CMMC.
• Oversee risk assessments, vulnerability scans, and penetration tests.
• Monitor network traffic and systems for suspicious activity.
• Manage incident response and remediation efforts.
• Oversee deployment and maintenance of security tools (e.g., firewalls, IDS / IPS, SIEM).
• Collaborate with IT, legal, and business units to integrate security into operations.
• Conduct security awareness training and promote a security-first culture.
• Report regularly to senior leadership on cybersecurity posture and incidents.
• Manage relationships with third-party vendors and ensure their compliance with security policies.

• Bachelor’s degree in Computer Science, Cybersecurity, Information Technology, or related field.
• 5+ years of experience in cybersecurity, with at least 2 years in a leadership role.
• Strong knowledge of cybersecurity frameworks (NIST, ISO 27001, CIS Controls).
• Experience with security technologies : firewalls, SIEM, antivirus, encryption, VPNs.
• Proficiency in incident response, risk management, and disaster recovery planning.
• Excellent leadership, communication, and analytical skills.
• Relevant certifications : Security+, CEH, or equivalent.

• Master’s degree in Cybersecurity or related field.
• Experience with cloud security (AWS, Azure, Google Cloud).
• Familiarity with Zero Trust Architecture and DevSecOps practices.
• Knowledge of regulatory compliance (GDPR, CCPA, HIPAA).
• Experience with threat intelligence platforms and advanced persistent threats (APT).
• Relevant certifications : CISSP, CISM, or equivalent.

This is a remote role.