CrawlJobs Logo

Information Systems Security Manager

str.us Logo

STR

Location Icon

Location:
United States , Woburn

Category Icon
Category:
IT - Administration

Job Type Icon

Contract Type:
Not provided

Salary Icon

Salary:

145000.00 - 188000.00 USD / Year
Save Job
Save Icon
Apply Position

Job Description:

STR has an exciting opportunity for a well-rounded cybersecurity professional to join our Cybersecurity/Risk Management Framework (RMF) program as a key contributor for classified programs. The ISSM is responsible for compliance oversight, assessment, and operations of systems under their purview. In this dynamic position, you will interface and collaborate with other Cybersecurity professionals (ISSOs, ISSEs), Security professionals (CSSOs, FSOs), and System Administrators on overall compliance and configuration change management.

Job Responsibility:

  • Responsible for the Cybersecurity program as stipulated by various US Government requirements including (but not limited to): Joint Special Access Implementation Guide (JSIG), Intelligence Community Directive (ICD) 503, DCSA Assessment and Authorization Guide (DAAG), and the National Industrial Security Operating Manual (NISPOM)
  • Perform Assessment and Authorization (A&A) activities, including testing of security controls and preparing/maintaining documentation such as: Standard Operating Procedures (SOP), System Security Plan (SSP), Risk Assessment Report (RAR), Security Controls Traceability Matrix (SCTM), Plan of Action and Milestones (POA&M) reports, etc.
  • Maintain thorough understanding of NIST SP800-53 controls, determines controls applicable to the application, and documents control implementation in the SCTM
  • Manage and maintain Continuous Monitoring (ConMon) of assigned networks by performing periodic self-inspections, tests, and technical reviews to ensure workstations and servers operate as authorized and accredited
  • Coordinate with program and project stakeholders, Cybersecurity staff (including other ISSMs, ISSOs, and ISSEs), the Facility Security Officer (FSO), the Contractor Special Security Officer (CSSO), and other Security and IT team members to define, implement, and maintain an acceptable information systems security posture
  • Responsible for security sustainment activities including (but not limited to): hardware change management, software change management, account management, media protection, user interface, file transfers, etc.
  • Assists the FSO, CSSO and Computer Incident Response Team (CIRT) in data spill incident response
  • Perform other tasks as assigned by manager

Requirements:

  • Active Top Secret security clearance with the ability to obtain SAP and SCI access (U.S. citizenship required)
  • DoD 8140/8570 IAM Level III certification (CISM, CISSP, etc.)
  • 3-5 years as an ISSM implementing JSIG, DAAG, and/or ICD 503 IS requirements
  • Previous security experience in a SAP/SCI environment
  • Experience with configuration, certification, and auditing/analysis of Windows/Linux operating systems in Peer-to-peer, LAN, and WAN network environments
  • Familiarity with vulnerability, compliance, and audit tools (Nessus, SCAP, Splunk, etc.)
  • Understanding of authorization/accreditation databases (eMASS, Xacta, SNOW, etc.)
  • Excellent communication skills
  • Strong critical thinking and problem-solving skills
  • Detail-oriented and self-motivated
  • Ability to effectively prioritize multiple projects
  • Strong customer service skills
  • Ability to work well in a team environment and adapt to changing project priorities

Additional Information:

Job Posted:
January 29, 2026

Employment Type:
Fulltime
Work Type:
On-site work
Icon
STR - All Job Offers
Job Link Share:
Copy Link Icon
Facebook Icon Twitter Icon LinkedIn Icon

Looking for more opportunities? Search for other job offers that match your skills and interests.

Briefcase Icon

Similar Jobs for Information Systems Security Manager

Information Security Manager

Cogoport is on a mission to bridge the $3.4 trillion Trade Knowledge and Executi...
Location
Location
India , Mumbai
Salary
Salary:
Not provided
https://cogoport.com/ Logo
Cogoport
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • 7+ years of experience in cybersecurity, risk management, and information security leadership
  • Bachelor's/master’s degree in computer science, Information Security, or a related field
  • Certifications: CISSP, CISM, CEH, or equivalent cybersecurity certifications (preferred)
  • Expertise in risk assessment, penetration testing, and vulnerability management
  • Hands-on experience with security tools such as SIEM (Splunk, IBM QRadar), endpoint protection, and cloud security solutions
  • Strong knowledge of zero-trust security models, identity and access management (IAM), and security operations (SOC)
  • Ability to effectively communicate security risks and strategies to both technical and non-technical stakeholders
Job Responsibility
Job Responsibility
  • Develop and implement a comprehensive cybersecurity strategy aligned with Cogoport’s business objectives
  • Collaborating with senior leadership as the primary authority for all security-related matters
  • Oversee security governance and continuous security improvements across all business units
  • Identify, assess, and mitigate cybersecurity risks across applications, cloud infrastructure, and corporate systems
  • Conduct periodic security audits, risk assessments, and penetration testing to proactively address vulnerabilities
  • Ensure compliance with ISO 27001, GDPR, SOC 2, NIST, and other industry security frameworks
  • Develop, document, and maintain an incident response plan to manage and mitigate security breaches
  • Oversee the implementation and management of security technologies, including firewalls, IDS/IPS, SIEM, and endpoint protection
  • Monitor network traffic for anomalies and cyber threats, taking immediate action against security incidents
  • Lead incident detection, investigation, and response processes while minimizing business impact
  • Fulltime
Read More
Arrow Right

Senior Information System Security Officer

Come join our growing team and make a difference every day! AnaVation is seeking...
Location
Location
United States , Washington
Salary
Salary:
Not provided
anavationllc.com Logo
AnaVation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Technology, or a related field
  • Minimum of six (6) years of hands-on experience in cybersecurity and expert knowledge of Governance Risk and Compliance
  • At least three (3) years supporting and maintaining system authorizations for complex systems
  • Demonstrated expertise in the Risk Management Framework (RMF), NIST SP 800-53 Rev 5, and related federal cybersecurity policies
  • Extensive experience managing ATO/ATT processes, security control assessments, POA&M lifecycle, vulnerability management, and audit response
  • Strong leadership experience mentoring junior and mid-level ISSOs and interfacing with senior government leadership
  • Must possess at least two of the following active certifications: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Governance, Risk and Compliance (CGRC), Certified in Risk and Information Systems Control (CRISC), Information Systems Security Management Professional (ISSMP), Certified Information Systems Auditor (CISA), Certified Cloud Security Professional (CCSP), Certified Ethical Hacker (CEH), CompTIA Security+, Project Management Professional (PMP)
  • Proficiency in tools such as JCAM, Tenable Nessus, BigFix and Splunk
  • Ability to develop, review, and present high-level security documentation and briefings
  • Strong understanding of cloud platforms (IaaS, PaaS, SaaS), supply chain risk management, and incident response procedures
Job Responsibility
Job Responsibility
  • Support the maintenance of security documentation and support system ATO and ATT efforts
  • Conduct security control assessments and provide recommendations for remediation
  • Perform biweekly audit log and vulnerability scan reviews and track POA&M items
  • Collaborate with system owners and technical teams to manage risk and respond to incident
  • Support Ongoing Authorization (OA) and continuous monitoring activities
  • Prepare and brief senior leadership on system security posture and compliance metric
  • Ensure alignment with cybersecurity policies and NIST SP 800-53, 800-37, and 800-137
What we offer
What we offer
  • Generous cost sharing for medical insurance for the employee and dependents
  • 100% company paid dental insurance for employees and dependents
  • 100% company paid long-term and short term disability insurance
  • 100% company paid vision insurance for employees and dependents
  • 401k plan with generous match and 100% immediate vesting
  • Competitive Pay
  • Generous paid leave and holiday package
  • Tuition and training reimbursement
  • Life and AD&D Insurance
  • Fulltime
Read More
Arrow Right

Information Systems Security Officer

Hoplite Solutions is seeking Information Systems Security Officers (ISSO) to joi...
Location
Location
United States , Fort Meade
Salary
Salary:
125000.00 - 195000.00 USD / Year
hoplitesolutions.com Logo
Hoplite Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active TS/SCI with Polygraph
  • A Bachelor’s degree in Computer Science, Information Technology Engineering, or a related field may be substituted for 4 years’ experience and 10 years of related work experience in the field of security authorization
  • DoD 8570.1 compliant IAM Level I certification, such as the CompTIA Security+ certification. A higher-level certification, such as GSLC, CAP, CASP, CISM and/or CISSP will also be accepted
  • A working knowledge of the security authorization processes and procedures as defined in the RMF in NIST SP800-37 and familiarity with the ICD503, CNSSI1253, SP800-53, etc.
  • Knowledge of commercial security tools and their uses
  • Experience with hardware/software security implementations
  • Knowledge of different communication protocols, encryption techniques/tools, and PKI and authorization services
  • Familiarity with security incident management, experience collaborating with Incident Response Teams, and able to provide viable recommendations for the resolution or computer security incidents and vulnerability compliance
  • Experience creating and presenting documentation and management reports
  • Must put forward a professional behavior that enhances productivity and promotes teamwork and cooperation
Job Responsibility
Job Responsibility
  • Maintain the appropriate operational security posture for assigned systems, programs, and/or enclaves
  • Provide guidance and technical expertise on all matters that impact or effect the security of the information system
  • Assist in the development and execution of an enterprise level continuous monitoring program to minimize security risks and ensure compliance with that program on a routine basis
  • Developing, updating, and submitting the System Security Plan and other required documentation that make up the Security Authorization Package
  • Conduct configuration management for security-relevant changes to software, hardware, and firmware
  • Perform and deliver security impact analyses of changes to the system or its environment of operation
  • Assess the effectiveness of system security controls on an ongoing basis to determine system security status
  • Maintain and enforce IT security policies and implementation guidelines for customer systems in diverse operational environments
  • Provides configuration management for security-relevant information system software, hardware, and firmware
What we offer
What we offer
  • 7% employer 401k contribution
  • fully paid healthcare for our employees
  • outstanding training benefits
  • company funded life insurance and short-term disability insurance
  • Fulltime
Read More
Arrow Right

Senior Information System Security Officer

We are seeking a highly skilled and mission-driven Senior Information Systems Se...
Location
Location
United States , Clarksburg
Salary
Salary:
Not provided
imts.us Logo
Innovative Management & Technology Services
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or a related field (or equivalent combination of education and experience)
  • 8+ years of progressive experience in information systems security, with at least 3 years in a senior-level or lead ISSO role supporting federal or state government agencies
  • Strong working knowledge of: NIST 800-53, RMF, FISMA, OWASP Top 10, and SANS Institute standards
  • SAFe Agile environments and integrating security in Agile workflows
  • Networking, Linux/Windows system administration, and secure software development practices
  • Cloud platforms (AWS, Azure, GCP) and related security tools (e.g., AWS Security Hub, Azure Defender)
  • Experience in managing security documentation, participating in audits, and working with compliance frameworks
  • Relevant certifications such as CISSP, CISM, Security+, CEH, or equivalent
  • Active Top Secret clearance is required
  • U.S. Citizenship is required
Job Responsibility
Job Responsibility
  • Lead the implementation and maintenance of system security controls in compliance with federal cybersecurity frameworks, including NIST SP 800-53, RMF, OWASP, DISA STIGs, and Common Criteria
  • Oversee the full lifecycle of Authorization to Operate (ATO) processes, including preparation of System Security Plans (SSPs), Security Assessment Reports (SARs), POA&Ms, and risk assessments
  • Serve as a senior security advisor and liaison to system owners, developers, DevOps engineers, and government stakeholders
  • Participate in technical reviews of system architecture and ensure secure design of virtualized and software-defined infrastructures
  • Support integration of security controls into CI/CD pipelines using DevSecOps principles and tools (e.g., Jenkins, GitLab CI, SonarQube, Snyk)
  • Provide security engineering support for modern cloud environments, including AWS, Azure, or Google Cloud Platform, and assess cloud-native security capabilities
  • Conduct vulnerability assessments, interpret scan results from tools like Tenable, Nessus, Splunk, or Qualys, and lead remediation efforts
  • Mentor junior ISSOs and analysts on security policies, best practices, and tool usage
  • Ensure continuous monitoring activities are aligned with organizational risk tolerance and compliance goals
What we offer
What we offer
  • competitive compensation
  • excellent benefits including tuition reimbursement and employer-contributed 401K
  • referral bonuses
  • Fulltime
Read More
Arrow Right

Information Systems Security Manager

Rackner is seeking a Information Systems Security Manager (ISSM) to support the ...
Location
Location
United States , Dayton
Salary
Salary:
Not provided
rackner.com Logo
Rackner
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor of Arts (BA)/Bachelor of Science (BS) and 10 years of experience, three (3) of which must be in the DoD OR 15 years of directly related experience with proper certifications, five (5) of which must be in the DoD
  • Must have at least one of the following certifications (DoD 8570 IAM II or IAM III certified): CAP
  • CASP+ CE
  • CISM
  • CISSP (or Associate)
  • GSLC
  • CCISO
  • HCISPP
  • Highly preferred to be Google Cloud Security Engineer, Google Workspace Engineer, and/or Google Cloud Architect certified
  • Knowledge of Information Systems Security and risk management processes and requirements per the Risk Management Framework (RMF), to include building, managing, and submitting RMF packages in support of IT platforms, cloud/web-based applications, traditional applications, or embedded IT systems
Job Responsibility
Job Responsibility
  • Assist with S&T Protection Plan efforts to include: Identifying and validating security requirements
  • Providing guidance to ensure the protection of technologies and information of various classification levels
  • Develop or evaluate program, project, or technology area security risk assessments and analyses, and provide mitigation plans
  • Provide security oversight for all aspects of technology control and S&T protection planning
  • Development of certification and accreditation documents
  • Provide support as a technical security advisor to internal and external entities on matters affecting overall protection architecture
What we offer
What we offer
  • Rackner embraces and promotes employee development and training and covers the cost of certifications relevant to a position and the technologies/services provided
  • Fitness/Gym membership eligibility
  • weekly pay schedule and employee swag, snacks & events are offered
  • 401K with 100% matching up to 6%
  • Highly competitive PTO
  • Great health insurance with large network of providers
  • Medical/Dental/Vision
  • Life Insurance, and short & long term disability
  • Industry-Leading Weekly Pay Schedule
  • Home office & equipment plan
Read More
Arrow Right

Computer and Information Systems Managers

This position is responsible for developing the expertise and knowledge base of ...
Location
Location
United States , Grand Rapids
Salary
Salary:
Not provided
sirrussoft.com Logo
Sirrus Software Services
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Defines overall project structures and appropriate staffing to maximize efficiencies across projects to achieve the intended business outcomes
  • Manages employees engaged in providing Information System Solutions and technical support in one or more functional areas
  • Manages one or more functional areas of information system solutions development and technical support, including personal computer/client server support, systems programming, applications design and development, database design and administration, information security, telecommunications and network support and administration
  • Develops schedules and assigns work to meet critical customer deadlines
  • Ensures that proper records and other documentation are maintained
  • May also perform complex IT tasks
  • Maintains current knowledge of relevant technology as assigned
  • Communicate with management about project delivery status
  • Demonstrate leadership in supporting tactical execution plans that enable the team to attain goals and long term strategic objectives
  • Ensuring resources are appropriately allocated to projects based on business priority, need, and skill set
Job Responsibility
Job Responsibility
  • This position is responsible for developing the expertise and knowledge base of specific domains and projects
  • Accountable for the successful delivery of domain specific projects, and engages with Senior Leadership to ensure timely decisions can be made throughout the project timeline
  • Fulltime
Read More
Arrow Right

Information Systems Security Engineer

The Information Systems Security Engineer provides support to the customer in th...
Location
Location
United States , Westfields
Salary
Salary:
Not provided
arcfield.com Logo
Arcfield
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must possess and be able to maintain a TS/SCI with Poly
  • A Bachelors of Science degree with 10-12 years of relevant experience, a Master's degree with 8-10 years of relevant experience, or a PhD with 5-7 years of relevant experience
  • Able to support customer’s core hours (0900-1500
  • Mon – Fri)
  • A Cyber Certification (DoD 8570/8140)
  • Excellent communications skills – Verbal and Non-Verbal
  • Demonstrated expertise and experience in networking protocols and concepts
  • Demonstrated knowledge and experience in software defined networking principles and technologies
  • Demonstrated experience providing security engineering support
  • Demonstrated knowledge and experience in the NIST RMF
Job Responsibility
Job Responsibility
  • Collaborate with stakeholders to ensure their assets are compliant with the Risk Management Framework
  • Collaborate with government customer to provide status of cognizant assets, make recommendations when warranted and provide feedback to stakeholders
  • Provide analytical and technical security recommendations to the customer
  • Identify projects’ security requirements
  • Participate in network design reviews and security testing for the customer’s networks
  • Coordinate with system development teams to ensure network security standards are being followed and implemented correctly
  • Identify additional security requirements, based on RMF or as the result of security issues that put the customer’s systems at risk
  • Review and analyze new systems (hardware and software) and provides recommendations concerning their security
  • Provide A&A and RMF guidance to system owners to ensure accreditation success
  • Provide insight and recommendations leading up to and during the customer's information assurance readiness review process
  • Fulltime
Read More
Arrow Right

Manager, Information Systems Engineering - Identity & Access Management

We are seeking a Manager of Information Systems Engineering, to lead the Identit...
Location
Location
United States , Albuquerque
Salary
Salary:
157100.00 - 267000.00 USD / Year
sandia.gov Logo
Sandia National Laboratories
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree, in a relevant field plus eight (8) years of relevant experience
  • or equivalent combination of relevant education and experience (equal to 16 years of exempt level work)
  • Experience leading or managing programs, projects, services, and/or teams
  • Ability to obtain and maintain an active DOE Q-level security clearance
Job Responsibility
Job Responsibility
  • Provide leadership and oversight for all identity and access services
  • Develop strategy for technology maturation of critical technologies, lead projects and help develop service roadmaps for the team
  • Articulate a clear vision and strategy for the Identity and Access Management team
  • Support full lifecycle management (analysis, design, development, testing, implementation, integration and maintenance) for Enterprise IT solutions, services, and applications
  • Collaborate with customers, vendors, and IT partners across Sandia to provide innovative design solutions
  • Deliver results, effectively manage people, and guide multidisciplinary teams
  • Mentor and lead the organization on department tasks and organizational goals and objects
  • Knowledge of technical business development
  • Organize, prioritize, and follow through to completion on multiple tasks and projects
  • Work with sensitive information and classified matter
What we offer
What we offer
  • Challenging work with amazing impact
  • Extraordinary co-workers
  • Some of the best tools, equipment, and research facilities in the world
  • Career advancement and enrichment opportunities
  • Flexible work arrangements for many positions include 9/80 and 4/10 compressed workweeks, part-time work, and telecommuting
  • Generous vacation, strong medical and other benefits, competitive 401k, learning opportunities, relocation assistance and amenities aimed at creating a solid work/life balance
  • Fulltime
Read More
Arrow Right
Jobs by Category
Art and Entertainment Jobs Banking Jobs Call Center Jobs Construction Jobs Consulting Jobs Customer Service Jobs Education Jobs Energy Jobs Finance Jobs Gastronomy Jobs Health and Beauty Jobs Hospitality and Tourism Jobs Human Resources Jobs Insurance Jobs IT - Administration Jobs IT - Software Development Jobs Legal Jobs Logistics Jobs Manufacturing Jobs Marketing, Digital Marketing, SEO, SEM Jobs Media Jobs Nursing Jobs Office Administration Jobs Pharmacy Jobs Physical Work Jobs Public Relations Jobs Public Sector Jobs Purchasing Jobs Quality Control Jobs Real Estate Jobs Research and Development Jobs Sales Jobs
Job Positions Jobs by Country
United States Jobs United Kingdom Jobs India Jobs Canada Jobs Australia Jobs Germany Jobs Ireland Jobs Poland Jobs
Company
Blog About Us Contact
Follow Us
Facebook
X (Twitter)
LinkedIn
Instagram
CrawlJobs Group
ITFlashcards AllDevBlogs
© 2026 CrawlJobs Ltd. All Rights Reserved
Terms & Conditions Privacy Policy