IT & Cybersecurity Manager

ABOUT NOOKS

Are you seeking an exciting and unique opportunity to grow and support our national security? As a startup, we are offering a limited-time opportunity to be an equity owner in a pioneering new industry. Nooks is pioneering Classified Infrastructure-as-a-Service (CIaaS) to provide government and industry partners with the fastest, most efficient access to classified infrastructure. We are building a nationwide network of accredited classified spaces and systems, ensuring that the best technologies equip our nation’s warfighters. At Nooks, we value innovation, collaboration, and a service-first mindset.

ABOUT THE ROLE:

As the IT & Cybersecurity Manager, you will be the primary owner of the facility’s mission-critical technology and security landscape. This is a high-impact leadership role where you will serve as the strategic bridge between local site operations and Corporate Enterprise, ensuring that global policies are successfully localized and strictly enforced.

A core focus of this role is enabling high-stakes customer integration by overseeing and securing our "Classified Infrastructure as a Service" (CIaaS) model. You will lead a high-performing site team—including an IT Support Specialist and a Cyber Support Specialist—balancing high-level governance with a "player-coach" mindset. You must be equally comfortable briefing executive leadership on site risk as you are stepping into the server room to provide hands-on technical support during critical system failures. Ultimately, your mission is to maintain a resilient, compliant, and secure environment that empowers our customers to operate within our classified infrastructure with total confidence.

KEY RESPONSIBILITIES:

• Develop and execute a site-specific roadmap for IT infrastructure and cybersecurity that aligns with Nooks' long-term business goals and CIaaS delivery model.
• Provide direct oversight, mentorship, and performance management for the IT Site Lead, Cybersecurity Lead, and junior specialists; foster technical growth and leadership capabilities within your team.
• Establish and enforce local security protocols and incident response plans in alignment with corporate policy and federal frameworks (NIST, DAAPM, JSIG, ISO 27001, or SOC2).
• Oversee the lifecycle of site hardware, software, and networking assets to ensure maximum efficiency, minimal downtime, and rigorous configuration management.
• Manage third-party service providers and oversee the IT/Cyber departmental budget, prioritizing high-ROI security and tech investments.
• Lead local response efforts for outages or security events while maintaining clear, disciplined communication channels with corporate leadership.
• Transition seamlessly from strategy to execution, providing direct technical assistance during complex troubleshooting, peak project demands, or system migrations.

THE SKILLSET:

• You must be a US citizen and have an active Top Secret/SCI security clearance. Candidates must be capable of maintaining eligibility up to the Top Secret/SCI level within 45 days of hire.
• Bachelor’s degree or higher in Information Technology, Cybersecurity, Computer Science, or a related technical field.
• Active DoD 8570/8140 IAM Level III certification (CISSP, CISM, or GSLC).
• 10+ years of experience in IT/Cyber operations with at least 3 years in a leadership or management capacity.
• Proven ability to implement and enforce enterprise IT and security policies in regulated or classified environments.
• Experience leading IT and cybersecurity teams and aligning operational and security priorities.
• Working knowledge of compliance frameworks such as NIST, ISO 27001, SOC 2, and ITIL.
• Broad technical understanding of networking, cloud infrastructure, IAM, and endpoint security.
• Strong risk assessment and remediation experience aligned with enterprise risk tolerance.
• Experience managing budgets, vendors, and technology lifecycles within corporate governance models.
• Proficiency with ITSM and security monitoring tools to report operational health and compliance metrics.