Task Order Project Manager

Overview

BMA is seeking a Task Order Project Manager to support the DLA Cybersecurity Web/Application Vulnerability Management Support Services program. This is a fully remote position and contingent on contract award.

BMA is seeking a Task Order Project Manager (TOPM) to provide leadership, planning, and management oversight for the Cybersecurity Web/Application Vulnerability Management Support Services task order supporting DLA’s J6 Information Operations Directorate. The TOPM ensures the successful execution of all contract requirements to improve the cybersecurity posture of DLA web applications, information systems, cloud environments, and operational technology (OT) platforms. Serving as the primary Government interface, the TOPM coordinates directly with the Contracting Officer (KO), Contracting Officer’s Representative (COR), Program Managers, Information System Security Managers (ISSMs), Authorizing Officials (AOs), and other DLA stakeholders to achieve technical, schedule, and performance objectives.

The TOPM directs a multidisciplinary team of cybersecurity professionals to conduct vulnerability assessments, security engineering analysis, risk assessments, and cybersecurity compliance evaluations across the DLA enterprise in accordance with DoDI 8510.01 RMF for DoD IT, NIST SP 800-53, and applicable DoD and DLA cybersecurity policies.

Key responsibilities include managing the program, coordinating with Government leadership, ensuring contract deliverables are met, and directing the day-to-day execution of vulnerability management activities.

• Leadership and Management:
  Provide overall leadership and management of a large, complex cybersecurity task order supporting enterprise vulnerability management operations.
• Program Liaison:
  Serve as the primary liaison to Government leadership, including the KO, COR, and DLA J6 program management staff.
• Stakeholder Coordination:
  Assist the Program Manager (PM) in coordinating contract activities with government stakeholders, including cybersecurity leadership, program offices, and system owners.
• Contract Performance:
  Ensure contract deliverables, schedules, and technical requirements are executed in accordance with performance objectives.
• Program Planning and Execution:
  Develop and maintain the Task Order Management Plan outlining the technical approach, organizational resources, and management controls required to execute the PWS; provide planning, direction, coordination, and control to accomplish all contract tasks; manage the execution of project phases; verify and validate level of effort and deliverables across all tasks.
• Cybersecurity Program Oversight:
  Oversee activities supporting the Cybersecurity Web/Application Vulnerability Management branch responsible for identifying, analyzing, and mitigating vulnerabilities across DLA IT, Cloud, and OT environments; ensure cybersecurity engineering assessments, security test and evaluation activities, and risk analysis are performed in accordance with federal and DoD cybersecurity policies; ensure compliance with RMF, NIST security controls, and DLA guidance; provide oversight of vulnerability assessment activities and cybersecurity engineering recommendations.
• Performance Monitoring and Reporting:
  Oversee preparation and submission of required contract reports; monitor project performance, identify risks, and implement corrective actions; conduct Integrated Project Reviews (IPRs) with stakeholders.
• Workforce and Resource Management:
  Lead and supervise a multidisciplinary cybersecurity workforce; maintain staffing levels and skills; coordinate recruitment, onboarding, and training; ensure personnel maintain required cybersecurity certifications and clearances.
• Quality Control and Continuous Improvement:
  Implement program management controls to ensure quality and timely deliverables; establish QC processes to monitor technical performance and contract compliance.

Clearance Requirements There is a Secret Security clearance requirement for this position.

• Project Management certification such as Project Management Professional (PMP) or equivalent.
• DoD Approved Baseline Certification (DoD 8570/8140) Information Assurance Management (IAM) Level III (e.g., ISACA CISM, (ISC)2 CISSP, EC-Council C-CISO, GIAC/SANS; GSLC accepted).
• 10+ years of relevant professional experience in information technology, cybersecurity, or consulting.
• 5+ years of leadership experience managing complex programs or projects in public or private sectors.
• Experience managing large, complex government task orders or programs involving enterprise IT or cybersecurity services, supervising 10+ employees.
• Experience with STIG compliance cycles, vulnerability management, and POA&M governance.
• Strong technical writing skills producing RMF artifacts, policy and procedure documents, and audit-ready evidence packages.
• Strong facilitation skills for IPTs, WG sessions, and cross-functional coordination.