Information Systems Security Manager (ISSM) - SME

Avint

$165K — $175K *
Aerospace & Defense
11 - 15 years of experience
Job Overview by Ladders

Qualifications

  • Active DoD Top Secret clearance.
  • Master's Degree in a related field.
  • IAM Level III Certification (CISSP preferred).
  • 15 years of experience, 5 of which must be in DoD.
  • Deep knowledge of DoD cybersecurity policies and regulations.
  • Experience advising senior leadership on security recommendations.
  • Bachelor's Degree and 10 years of experience may substitute for degree.

Responsibilities

  • Support system authorization and accreditation efforts under RMF.
  • Recommend policies to enhance the reliability and accessibility of information systems.
  • Conduct risk and vulnerability assessments of information systems.
  • Promote security awareness and sound principles organization-wide.
  • Perform security evaluations, audits, and reviews of systems.
  • Advise on contingency plans and disaster recovery procedures.
  • Ensure compliance with cybersecurity policies during IT service delivery.

Benefits

  • Competitive salary and full health benefits.
  • Unique 401K plan and generous PTO including Federal Holidays.
  • Professional development reimbursement for courses and certifications.
  • Support for attending classes, conferences, and degree programs.
  • Commitment to diversity and equal opportunity in hiring practices.
Full Job Description
Information Systems Security Manager (ISSM) - SME to support and protect critical DoD cloud-based systems. In this role, you'll be part of a high-performing team responsible for implementing and overseeing all phases of the Risk Management Framework (RMF) while supporting day-to-day cybersecurity operations. You'll work at the intersection of security, compliance, and mission impact, helping ensure systems are secure, resilient, and aligned with DoD and Air Force requirements. *This role is 100% ON-SITE at Hanscom Air Force Base in MA* *This role requires an ACTIVE Top-Secret clearance* The individual in this role, will be a member of the team implementing and overseeing all phases of the RMF process and day-to-day cybersecurity activities for DoD cloud-based systems. Primary responsibilities are listed below. - Supporting the system/application authorization and accreditation (A&A) effort, to include assessing and guiding the quality and completeness of A&A activities, tasks, and resulting artifacts mandated by governing DoD and Air Force policies (i.e., Risk Management Framework (RMF). - Recommending policies and procedures to ensure the reliability of and accessibility to information systems and to prevent and defend against unauthorized access to systems, networks, and data. - Conducting risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risks, and protection needs. - Promoting awareness of security issues among management and ensuring sound security principles are reflected in organizations' visions and goals. - Conducting systems security evaluations, audits, and reviews. - Recommending systems security contingency plans and disaster recovery procedures. - Recommending and implementing programs to ensure that systems, network, and data users are aware of, understand, and adhere to systems security policies and procedures. - Participating in network and systems design to ensure implementation of appropriate systems security policies. - Facilitating the gathering, analysis, and preservation of evidence used in the prosecution of computer crimes. - Assessing security events to determine impact and implementing corrective actions. - Ensuring the rigorous application of information security/cybersecurity policies, principles, and practices in the delivery of all IT services. - Perform the Information System Security Engineer (ISSE) duties in an Information Assurance Workforce System Architecture and Engineering (IASAE) position as outlined in AFI 33-200, AFI 33-210 and AFMAN 33-285 for assigned systems. - Perform the Information System Security Officer (ISSO) duties as outlined in DoDI 8510.01for assigned systems/applications. - Perform the Information System Security Manager (ISSM) duties as outlined in DoDI8510.01 for assigned systems/applications. Requirements Technical Areas of Expertise - Expert knowledge of NIST RMF processes, policies, and DoD directives - Expert ability to create and revise standard operating procedures (SOPs), work instructions (WI), and Tactics, Techniques, and Procedures (TTPs) - Expert ability to create presentations and present policies, guidance, and procedures to varied audiences including senior leadership levels - A demonstrated expertise in RMF process - Customer service skills - A demonstrated ability (including knowledge and experience) to perform tasks related to AF cyber security - Knowledge of cloud-based solutions is a plus Qualifications - Active DoD Top Secret clearance. - Master's Degree in a Related Field - IAM Level III Certification (CISSP is desired) - 15 years of experience, of which 5 must be in the DoD - In depth knowledge of DoD cyber security policies and regulations - Experience in providing security recommendations to senior leadership - Bachelor's Degree and 10 years of prior experience, additional experience may be considered in lieu of degree - Candidate must have valid CISSP, Clearance, eMASS experience, DoD/ RMF experience, on-site work Benefits Joining Avint is a win-win proposition! You will feel the personal touch of a small business and receive BIG business benefits. From competitive salaries, full health, a unique 401K plan, and generous PTO and Federal Holidays. Additionally, we encourage every Avint employee to further their professional development. To assist you in achieving your goals, we offer reimbursement for courses, exams, and tuition. Interested in a class, conference, program, or degree? Avint will invest in YOU and your professional development! Salary $165,000-$175,000 based on experience

Similar Jobs

More Jobs at Avint

More Aerospace & Defense Jobs

Find similar Information Systems Security Manager (ISSM) - SME jobs: