Information System Security Manager (ISSM)

We are looking for an experienced Information System Security Manager (ISSM) to join our client’s team supporting a Department of Defense (DoD) customer located at Fort Meade, MD.

The ISSM will oversee and manage cybersecurity programs, ensuring compliance with DoD policies, and assist in developing and implementing security strategies for various systems and programs within the organization. This role requires expertise in cybersecurity, risk management, and compliance with DoD security standards.

This is a HYBRID position, requiring 1-2 days/week onsite at Ft. Meade, MD. This is a direct hire role with our client with an anticipated salary range of $150-175k.  A current DoD Secret clearance is required along with 8570 IAT III certification compliance.

Key Responsibilities:

• Technical Support: Provide technical expertise in conducting studies, analyses, and proof-of-concept pilots across various technology areas.
• Cybersecurity Program Development: Develop, implement, and maintain cybersecurity programs in alignment with DoD, DISA, and NIST standards.
• IS Security Strategies: Design and implement security strategies for hardware/software installation, configuration, maintenance, and operations.
• Cybersecurity Policy Compliance: Assist in planning, monitoring, and ensuring compliance with cybersecurity policies within the EM directorate.
• Cybersecurity Architecture: Develop cybersecurity architectures, requirements, objectives, and policies, ensuring alignment with Federal, DoD, and National Security Systems policies.
• Authorization & Accreditation: Oversee and manage the A&A process for various systems using tools such as eMASS and RMF.
• Incident Response Support: Assist with incident response activities and track cybersecurity training certifications for system users.
• Assessments: Conduct assessments of IT assets to ensure they meet DoD security standards and maintain an Authorization to Operate (ATO).
• Documentation Creation: Assist in creating risk assessments, security plans, and status reports for senior leadership and stakeholders.
• Repository Maintenance: Maintain and update cybersecurity repositories, tracking training, certifications, and compliance for personnel and systems.
• Collaboration: Work with contractors, vendors, and government personnel to ensure security requirements are met and cybersecurity risks are addressed.
• Vulnerability Management: Ensure proper implementation of cybersecurity compliance, identifying vulnerabilities, mitigating risks, and reporting findings.

Requirements:

• U.S. Citizenship is required.
• Current DoD Secret clearance required; Top Secret clearance preferred.
• Must meet 8570 IAT Level III certification requirements, including CASP CE, CCNP Security, CISA, CISSP, GCED, or GCIH.
• Strong understanding of cybersecurity policies, procedures, and compliance standards such as DoDIs, CJCSIs, DISA Instructions, NIST, and RMF.
• Proficiency in developing cybersecurity documentation, including security architecture diagrams and business case analyses.
• Strong technical knowledge in areas like Unified Capabilities, Cloud Computing, Networking, Data Management, Identity Management, and Artificial Intelligence.
• Experience in cybersecurity testing and evaluation, as well as working with vendors and organizations in adopting new technologies.
• Ability to analyze security risks and provide strategic recommendations for secure technology adoption, configuration, and operations.
• Excellent presentation, communication, and interpersonal skills with the ability to present technical findings to senior leadership.
• Ability to work effectively both independently and as part of a team.

Preferred Qualifications:

• Experience with DoD security policies, directives, instructions, and DISA IA policies.
• Familiarity with tools like eMASS, RMF, and other cybersecurity tools used for risk management and compliance reporting