Technical Lead Cyber Security
@ Mdf commerce

Hybrid

$150,000

Hybrid

Full Time

Posted 1 day ago

Your Application Journey

Email Hiring Manager

XXXXXXXXXX XXXXXXXXX XXXXXXXXX******* @mdfcommerce.com

Recommended after applying

Job Details

About Technical Lead Cyber Security

SOVRA is a leading public procurement platform serving over 7,000 government agencies and connecting them with more than 1 million suppliers across North America. Their platform is purpose-built to address the unique challenges of public procurement with a strong focus on compliance, efficiency, and transparency.

Primary Responsibilities

In this role, you will:

Lead audit readiness and annual cycles for SOC 2 Type 2, PCI DSS, and FISMA RMF.
Plan and execute internal/external audits including evidence strategy and remediation tracking.
Operate and improve the customer trust portal meeting SLAs for security questionnaires.
Run vulnerability management across cloud, endpoints, applications, and containers while reporting metrics to leadership.
Maintain control inventory and map controls to frameworks (NIST SP 800-53, FedRAMP, GovRAMP, etc.).
Drive policy and standard lifecycle management, risk management, and coordinate incident response readiness.
Collaborate with Legal, Privacy, Engineering, IT, and Product to meet regulatory obligations.
Manage vendor third-party risk management and ensure identity and access management standards.

Required Experience & Qualifications

A minimum of 10 years experience in information security with hands-on GRC and technical expertise are required. Deep knowledge of SOC 2, PCI DSS, FISMA RMF, and additional certifications including CISSP, CISM, CISA, and CRISC is expected. Experience in trust portal development, vulnerability management platforms and various GRC tools is essential. Must be authorized to work in the US.

Desired Attributes

The ideal candidate demonstrates excellent communication skills, strong ownership, and the ability to work both independently and within cross-functional teams. Proficiency with AWS security tools, SIEM, EDR, and other security technologies is a plus.

Key skills/competency

SOC 2
PCI DSS
FISMA RMF
GRC
Vulnerability Management
Risk Management
Incident Response
Trust Portal
AWS Security
Compliance

Apply without a personalized resume

How to Get Hired at Mdf commerce

🎯 Tips for Getting Hired

Customize Your Resume: Highlight relevant audit and security experience.
Research mdf commerce: Understand culture, mission, and recent news.
Prepare Technical Examples: Showcase successful vulnerability management projects.
Practice Behavioral Scenarios: Demonstrate leadership and decision-making skills.

📝 Interview Preparation Advice

Technical Preparation

Review SOC 2 and PCI DSS guidelines.

Practice vulnerability management tool usage.

Study GRC and compliance frameworks.

Simulate audit and incident response scenarios.

Behavioral Questions

Describe a time managing cross-team conflicts.

Explain leadership during audit crises.

Detail handling high-pressure project deadlines.

Discuss team collaboration under uncertainty.

Ready to optimize your application for mdf commerce?

Our Al will adapt your resume for mdf commerce's hiring patterns and similar Technical Lead Cyber Security roles.

Frequently Asked Questions

What certifications are key for the Technical Lead Cyber Security role at mdf commerce?

How important is audit experience in the Technical Lead Cyber Security role at mdf commerce?

What technical tools should applicants be familiar with for the mdf commerce Technical Lead Cyber Security position?

Is remote work available for the Technical Lead Cyber Security role at mdf commerce?