Job Title
Information System Security Manager
Education
Bachelor's Degree
Location
Small Business Consulting Corp - Shreveport, LA 71113 US (Primary)
Job Type
Full-time
Category
Information Technology
Job Description
Position Overview :
SBCC is seeking a highly skilled and experienced Information System Security Manager (ISSM) to lead the cybersecurity efforts across our client programs and organizational systems. The ISSM will be responsible for developing, implementing, and overseeing security measures to protect critical information systems and networks, ensuring compliance with federal security standards, and fostering a culture of continuous improvement in information security. This position requires expertise in managing cybersecurity risks and controls, as well as the ability to collaborate with cross-functional teams to safeguard company assets, personnel, and data.
- All applicants must be capable of obtaining a US government security clearance.
Key Responsibilities
Security Program Development & Management : Develop and maintain a formal information system security program and policies to ensure the security of company systems and networks. Oversee the implementation of security controls and monitor compliance with government regulations and industry standards, such as NIST, ISO 27001, and DoD guidelines.Security Assessments & Documentation : Manage systems security assessments and review system security documentation to ensure successful security authorization for all relevant systems. Prepare and maintain security authorization packages and manage the system security lifecycle.Continuous Monitoring : Lead the development, execution, and maintenance of continuous monitoring plans. Ensure a robust tracking system for identifying, reporting, and mitigating security vulnerabilities and threats.Risk Management & System Changes : Assess changes to systems, their environment, and operational needs that may impact security authorization. Evaluate the risks and impact of changes, and collaborate with key stakeholders to ensure security measures remain effective.Physical Security & Compliance : Ensure that physical security measures for classified and sensitive facilities are implemented in accordance with DoD policies (e.g., ICD-705). Conduct physical security self-inspections, coordinating with industry partners to meet all physical security standards.Collaboration & Training : Work with project owners, data custodians, and other team members to identify security requirements and determine appropriate risk mitigations. Lead and provide training to team members and employees on security practices and policies.Incident Response : Lead cybersecurity incident response efforts, including the identification, documentation, and resolution of security incidents. Develop corrective action plans to prevent recurrence and ensure thorough reporting to key stakeholders.Project Planning & Execution : Plan, manage, and execute cybersecurity and IT-related security projects, ensuring alignment with SBCC's strategic goals and objectives.Qualifications
Education : Bachelor's degree in a technology-related field (Cybersecurity, Information Systems, Computer Science, etc.).Experience : Minimum 5 years of experience in cybersecurity, with a focus on information system security management, risk management, and continuous monitoring.Certifications : Preferred certifications include GSLC, CISA, CISM, CISSP, or similar.Security Clearance : Required - must have or be able to obtain federal security clearance (active, inactive, or expired).Knowledge & Skills :Extensive knowledge of NIST, DoD, and commercial cybersecurity standards and frameworks.Familiarity with and solid understanding of DoD's Cybersecurity Maturity Model Certification (CMMC) schema, requirements, controls and assessments.Proficiency in system security assessments, vulnerability management, and risk analysis.Strong understanding of networking, configuration management, and connectivity.Experience with security tools / services to mitigate cybersecurity risks.Ability to lead a team, collaborate with internal and external stakeholders, and provide training and guidance.Strong problem-solving skills with the ability to translate complex IT issues into clear, actionable solutions.Work Environment
This position is fully remote and requires virtual communication with supervisors, team members, and clients. The ISSM will need to be comfortable working in a virtual setting, managing tasks independently, and communicating effectively in a distributed work environment.
Physical Demands
Sedentary work; regular use of a computer and communication tools.Requires repetitive motion and substantial hand / wrist / finger movements for extended periods.Close visual acuity for tasks such as data analysis, transcription, and reviewing documents / screens.Additional Information
This job description is not intended to be all-inclusive, and the ISSM may be required to perform other duties as assigned. The successful candidate will demonstrate flexibility and adaptability in a dynamic, client-focused environment.
Affirmative Action / EEO statement
SBCC is an equal opportunity employer committed to diversity and inclusion in the workplace. We prohibit discrimination and harassment of any kind based on race, color, sex, religion, sexual orientation, national origin, disability, genetic information, pregnancy, or any other protected characteristics as outlined by federal, state or local laws.
