P
Information System Security Manager (ISSM) II
provatoinc
Washington · DC · us
1d ago
68%
Good
Job description
Position OverviewWe are seeking an experienced Information System Security Manager (ISSM) II to oversee and manage the implementation of cybersecurity programs and policies across organizational systems. This role is responsible for ensuring the security posture of information systems, managing risk, and maintaining compliance with applicable federal and DoD cybersecurity standards.The ISSM II serves as a key leader in safeguarding systems, coordinating security efforts, and supporting mission-critical operations.Key ResponsibilitiesManage and oversee the organization’s information security program and cybersecurity initiativesDevelop, implement, and enforce security policies, procedures, and controlsEnsure compliance with DoD, NIST, RMF, and other applicable cybersecurity frameworksConduct risk assessments and manage system security authorization processes (ATO, RMF lifecycle)Monitor system security posture and respond to vulnerabilities, incidents, and threatsCoordinate security activities across technical teams, leadership, and stakeholdersMaintain system security documentation (e.g., SSPs, POA&Ms, risk assessments)Provide guidance on secure system architecture, design, and implementationLead security audits, inspections, and continuous monitoring activitiesManage security awareness and training initiatives for personnelSupport incident response and ensure proper reporting and mitigation actionsRequired QualificationsBachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related field (or equivalent experience)3–5 years of relevant experience in information systems security managementExperience with Risk Management Framework (RMF) and system authorization processesKnowledge of DoD cybersecurity policies, NIST standards, and security best practicesExperience managing security documentation and compliance effortsStrong understanding of network, system, and application security principlesActive Secret security clearance (must be able to maintain; eligibility for Top Secret preferred)Strong leadership, communication, and organizational skillsCertifications (Required)One or more of the following:CompTIA Security+ (CE)CAP, CASP+, or equivalentProject Management Professional (PMP) (optional but beneficial)Preferred QualificationsExperience supporting DoD or federal government programsFamiliarity with continuous monitoring tools and vulnerability management systemsExperience leading or mentoring cybersecurity teamsKnowledge of cloud security environments (AWS GovCloud, Azure Government)