Platform Security & RMF Lead

About the Role

This is a rare opportunity to define the security posture of a mission-critical DoD software platform from the ground up.

As the Platform Security & RMF Lead, you will own the authorization posture and platform-level security discipline for DEFCON AI’s government-facing systems and integration platform. You are responsible for the full RMF lifecycle—from ATO strategy through continuous monitoring—and serve as the authoritative voice on whether the system is secure, compliant, and authorized to operate.

You will work closely with Architecture and DevSecOps leadership to define the security standards the platform must meet, while ensuring cross-domain data flows comply with classification and authorization requirements. This is a deeply specialized role requiring expert-level fluency in DoD security frameworks, RMF processes, and cleared-system environments.

This is a senior level role combining hands-on RMF execution with platform-wide security leadership. You will guide both government stakeholders and engineering teams through complex authorization, classification, and security decisions.

Key Responsibilities

ATO Strategy & RMF Ownership

• Leading the full RMF lifecycle from ATO strategy through continuous monitoring
• Defining security standards for the platform in collaboration with Architecture and DevSecOps teams
• Ensuring cross-domain data flows comply with classification and authorization requirements