Information Systems Security Manager

Knowles Corporation
San Diego, United States of America
7 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior
Compensation
$ 125K

Job location

San Diego, United States of America

Tech stack

Amazon Web Services (AWS)
Software System Penetration Testing
Azure
Cloud Computing
Configuration Management
Computer Security
Information Systems
Information Security Management
Networking Hardware
Package Management Systems
Software Vulnerability Management
SARS Software Products
Cloud Platform System
Patch Management
National Industrial Security Program Operating Manual (NISPOM)
Qualys
Plan of Action and Milestones

Job description

We are seeking a highly skilled and experienced Information System Security Manager (ISSM) to join our dedicated team at the San Diego location. The successful candidate will possess a proven track record as an ISSM, demonstrating exceptional autonomy, self-motivation, and a comprehensive understanding of cybersecurity principles. This pivotal role will be instrumental in ensuring IMC's adherence to National Industrial Security Program (NISP) and National Institute of Standards and Technology (NIST) special publication compliance for all information systems processing Controlled Unclassified Information (CUI) and classified data.

Key responsibilities will include, but are not limited to, the strategic implementation and oversight of robust cybersecurity measures such as endpoint protection, comprehensive vulnerability management programs, and diligent patch management protocols.

Duties:

  • Security Platform Management
  • Administer and maintain cloud security posture management (CSPM) and vulnerability management platforms including Qualys, CrowdStrike, and Bitsight
  • Design, build, and operate CrowdStrike solutions across cloud and cloud-native environments to enhance threat visibility, risk identification, and vulnerability remediation
  • Information System Program Management
  • Develop, implement, and maintain system security policies, plans and procedures in alignment with RMF, NIST 800 publications, DAAPM, and NISPOM requirements.
  • Develop and maintain security architecture and security policies, principles and standards.
  • Develop and validate baseline security configurations for operating systems, applications, and networking equipment.
  • Authorization and Accreditation
  • Manage the system lifecycle management process, including developing and maintaining security plans and documentation
  • Risk Management and Compliance
  • Perform and document risk assessments; manage POA&M's with stakeholders to identify weaknesses, mitigation actions, and timelines; enforce configuration management and assess system changes for security impact.
  • Knowledge of current and emerging threats/threat vectors.
  • Knowledge of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins).
  • Knowledge of penetration testing principles, tools, and techniques.
  • Participate in security investigations and compliance reviews, as requested by internal or external auditors.
  • Continuous Monitoring and Auditing
  • Implement continuous monitoring strategies; conduct regular audits and assessments to ensure controls remain effective and vulnerabilities are addressed promptly.
  • Incident Response and Reporting
  • Monitor for security incidents and vulnerabilities; manage incident response, system recovery, and reporting processes to restore security safeguards quickly and accurately.
  • Provide second- and third-level support and analysis during and after a security incident.
  • Assist security administrators and IT staff in the resolution of reported security incidents.
  • Training and Awareness
  • Develop and implement system security training and awareness program for all roles; brief users on security responsibilities and ensure training completion before access.
  • Stakeholder Coordination
  • Communicate regularly with stakeholders: FSO, SMO, managers, users, DCSA
  • IT Administration
  • Provide backup IT support when required.
  • Oversee ISSO's under their purview to ensure they follow established IS policies and procedures
  • Assume ISSO responsibilities in the absence of the ISSO; maintain required IA certifications
  • Ensure System Administrators (SA) monitor all available resources that provide warnings of system vulnerabilities or ongoing attacks

Requirements

  • Required Experiences
  • Active DoD Secret Security Clearance preferred, US Citizenship required
  • Bachelor's degree in related discipline or equivalent work experience
  • 5+ years in Information Security, Cybersecurity, or Information Assurance roles.
  • Proven experience leading or managing ATO/RMF activities, including system authorization, POA&M management, security assessments, and continuous monitoring.
  • Strong understanding of Risk Management Framework, DAAPM, NIST 800-53, NIST 800-171 & Security control implementation and validation
  • Experience supporting or maintaining compliance with CMMC, ITAR/EAR, DFARS 252.204-7012, Controlled Unclassified Information (CUI) requirements
  • Excellent written and verbal communication skills
  • Experience conducting security risk assessments, vulnerability management, incident response coordination, and audit readiness activities.
  • Ability to work directly with executive leadership, auditors, assessors, engineering teams, and system owners.

Preferred Experience

  • eMASS administration and package management.
  • Experience preparing organizations for CMMC assessments.
  • Experience securing cloud environments (Azure Government, GCC High, AWS GovCloud).
  • Managing SSPs, POA&Ms, SARs, and security documentation.
  • Third-party audit support (CMMC, NIST, customer, or regulatory audits).
  • Supply chain and defense-industrial-base (DIB) security requirements.

Preferred Certifications

  • CISSP
  • CGRC (formerly CAP)
  • CISM
  • Security+
  • CISA
  • PMP

Benefits & conditions

Pulled from the full job description

  • Referral program
  • Tuition reimbursement
  • Health insurance
  • 401(k) matching
  • Paid time off
  • Vision insurance
  • Dental insurance, Additional Details : Knowles is a leading manufacturer of specialty electronic components. We design parts that perform unique, critical functions for innovative technologies. Through extreme reliability, custom engineering, and scalable manufacturing, we enable businesses to succeed in the most demanding applications across medtech, defense, and industrial markets. Our high-performance capacitors, RF and microwave filters, advanced medtech microphones, balanced armature speakers, and miniaturization products enable and enhance the performance of technologies with the power to change, improve, and save lives. Founded in 1946 and headquartered in Itasca, Illinois, Knowles has grown into a global organization with employees spanning 11 countries. "What's in it for you on Day 1: * Medical, dental and vision insurance plans * Prescription Drug Plans * Basic Life Insurance * 401k plan with company match * Tuition Reimbursement Program * Employee Referral Program
  • Hourly Overtime opportunities * Paid Time Off * Paid Holidays Exciting Onsite Perks: * Free coffee available at our cafeteria * Employee Appreciation Events Knowles is committed to providing a competitive and fair total compensation package for all employees. Individual compensation decisions are based on a number of factors, including but not limited to previous experience and skills acquired prior to joining Knowles, cost of living in the assigned work location, assigned schedule, and salaries of similarly situated peers at the company. It is to be expected that candidates will come to us with different sets of skills and experiences and therefore will be paid at different points in the stated range. We recognize that the person(s) we select for hire may be less experienced or more experienced than the role as posted; if this is the case, any updates to available salary ranges will be communicated with candidates during the recruitment

Apply for this position