Bachelor's degree in Cybersecurity, Information Technology, Emergency Management, or related field
8+ years of experience in business continuity, disaster recovery, or IT resilience roles
Experience supporting federal environments and compliance frameworks (NIST, FISMA, RMF)
Certified Business Continuity Professional (CBCP) or Certified Disaster Recovery Engineer (CDRE) preferred
Requirements:
Lead the development, implementation, and maintenance of Business Continuity Plans (BCP) and Disaster Recovery Plans (DRP) for SOC operations
Establish and manage a Disaster Recovery Governance Committee, including defining roles, responsibilities, and oversight processes
Define and manage Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO) for all critical systems to ensure continuity during disruptions
Develop and execute testing and validation programs (tabletop exercises, functional tests, full-scale simulations) and drive continuous improvement and compliance with NIST SP 800-34 and federal guidelines
Job description
cFocus Software seeks a Business Continuity / Disaster Recovery Lead to join our program supporting Housing and Urban Development (HUD). This position is remote. This position requires a Public Trust clearance. Qualifications:
Bachelor’s degree in Cybersecurity, Information Technology, Emergency Management, or related field.
8+ years of experience in business continuity, disaster recovery, or IT resilience roles.
Experience supporting federal environments and compliance frameworks (NIST, FISMA, RMF).
Strong understanding of SOC operations, cloud environments, and critical infrastructure.
Certified Business Continuity Professional (CBCP) or Certified Disaster Recovery Engineer (CDRE) preferred.
Duties:
Lead the development, implementation, and maintenance of Business Continuity Plans (BCP) and Disaster Recovery Plans (DRP) for SOC operations.
Establish and manage a Disaster Recovery Governance Committee, including defining roles, responsibilities, and oversight processes.
Identify critical SOC functions, systems, tools, and services to ensure continuity and prioritization during disruptions.
Define and manage Recovery Time Objectives (RTO) and Recovery Point Objectives (RPO) for all critical systems.
Develop strategies and procedures to maintain operations during cyber incidents, outages, and disaster scenarios.
Ensure all BC/DR plans comply with NIST SP 800-34 and applicable federal guidelines.
Establish backup and recovery procedures for critical systems and data, ensuring validation and effectiveness.
Conduct semi-annual testing and validation of BCP and DRP, including tabletop exercises, functional tests, and full-scale simulations.
Develop and execute disaster recovery test plans, scenarios, and evaluation criteria.
Analyze test results, identify gaps, and implement corrective actions and continuous improvements.
Conduct audits and assessments of BC/DR processes to ensure compliance and effectiveness.
Provide reporting on BC/DR readiness, audit findings, and improvement actions to leadership.
Develop and deliver training programs for staff involved in BC/DR planning and execution.
Conduct security awareness programs related to disaster recovery risks and best practices.
Coordinate with IT, security, compliance, and business stakeholders to ensure integrated continuity planning.
Ensure ongoing updates and maintenance of BCP and DRP documentation on an annual basis.
