Information System Security Manager (ISSM)

Modern Technology Solutions, Inc.
Huntsville, United States of America
5 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior

Job location

Huntsville, United States of America

Tech stack

Amazon Web Services (AWS)
Azure
Cloud Computing Security
Configuration Management
Computer Security
Information Security Management
Security Content Automation Protocol
SARS Software Products
Information Technology

Job description

We are seeking a highly skilled Information System Security Manager (ISSM)-like qualified individual to work at the tactical level to round out a team of cybersecurity professionals. This cybersecurity professional specifically will manage the cybersecurity posture of the various government owned, government operated IL5 and IL6 environments. The individual will be responsible for ensuring compliance with applicable security requirements, performing continuous monitoring, and maintaining the security authorization of systems in accordance with regulatory frameworks., * Support the ISSE's with day-to-day management of information systems

  • Support the ISSE's with RMF lifecycle tasks: categorization, control selection, implementation, assessment, authorization, and continuous monitoring.
  • Ensure systems comply with applicable standards such as NIST RMF, DoD 8500 series, and organizational policies
  • Manage ATO packages in coordination with selected performers cybersecurity team, including SSPs, SCTM's, POA&Ms, SARs, and risk assessments
  • Oversee the development, implementation, and maintenance of system security plans (SSPs), POA&Ms, and other accreditation artifacts
  • Coordinate and support security authorization activities (ATO, etc.)
  • Conduct risk assessments and vulnerability analyses; implement mitigation strategies
  • Manage continuous monitoring activities and ensure timely remediation of findings
  • Interface with auditors, assessors, and government stakeholders
  • Provide guidance and training to system owners, administrators, and users on security best practices
  • Monitor system changes and assess security impact in accordance with configuration management processes

Requirements

  • Bachelor's degree in Cybersecurity, Information Technology, Computer Science, or related field (or equivalent experience)
  • 5+ years of experience in information assurance or cybersecurity roles
  • Strong knowledge of Risk Management Framework (RMF) and security controls (e.g., NIST SP 800-53)
  • Experience supporting system accreditation and authorization processes
  • Experience with cloud security frameworks (e.g., AWS GovCloud, Azure Government)
  • Active DoD 8140 certification (e.g., CISSP, CASP+, CISM, or equivalent)
  • Excellent analytical, communication, and documentation skills
  • Ability to work independently and manage multiple priorities, * Experience in DoD or federal environments
  • Familiarity with tools such as eMASS, ACAS, SCAP, or similar
  • Prior experience as an ISSO or ISSM
  • Master's degree in a related field

Apply for this position