CrawlJobs Logo
STR Logo STR · IT - Administration

Information Systems Security Manager

United States, Woburn 145000.00 - 188000.00 USD / Year · Job Posted January 29, 2026
Apply Position
Job Link Share

Job Description

STR has an exciting opportunity for a well-rounded cybersecurity professional to join our Cybersecurity/Risk Management Framework (RMF) program as a key contributor for classified programs. The ISSM is responsible for compliance oversight, assessment, and operations of systems under their purview. In this dynamic position, you will interface and collaborate with other Cybersecurity professionals (ISSOs, ISSEs), Security professionals (CSSOs, FSOs), and System Administrators on overall compliance and configuration change management.

Job Responsibility

  • Responsible for the Cybersecurity program as stipulated by various US Government requirements including (but not limited to): Joint Special Access Implementation Guide (JSIG), Intelligence Community Directive (ICD) 503, DCSA Assessment and Authorization Guide (DAAG), and the National Industrial Security Operating Manual (NISPOM)
  • Perform Assessment and Authorization (A&A) activities, including testing of security controls and preparing/maintaining documentation such as: Standard Operating Procedures (SOP), System Security Plan (SSP), Risk Assessment Report (RAR), Security Controls Traceability Matrix (SCTM), Plan of Action and Milestones (POA&M) reports, etc.
  • Maintain thorough understanding of NIST SP800-53 controls, determines controls applicable to the application, and documents control implementation in the SCTM
  • Manage and maintain Continuous Monitoring (ConMon) of assigned networks by performing periodic self-inspections, tests, and technical reviews to ensure workstations and servers operate as authorized and accredited
  • Coordinate with program and project stakeholders, Cybersecurity staff (including other ISSMs, ISSOs, and ISSEs), the Facility Security Officer (FSO), the Contractor Special Security Officer (CSSO), and other Security and IT team members to define, implement, and maintain an acceptable information systems security posture
  • Responsible for security sustainment activities including (but not limited to): hardware change management, software change management, account management, media protection, user interface, file transfers, etc.
  • Assists the FSO, CSSO and Computer Incident Response Team (CIRT) in data spill incident response
  • Perform other tasks as assigned by manager

Requirements

  • Active Top Secret security clearance with the ability to obtain SAP and SCI access (U.S. citizenship required)
  • DoD 8140/8570 IAM Level III certification (CISM, CISSP, etc.)
  • 3-5 years as an ISSM implementing JSIG, DAAG, and/or ICD 503 IS requirements
  • Previous security experience in a SAP/SCI environment
  • Experience with configuration, certification, and auditing/analysis of Windows/Linux operating systems in Peer-to-peer, LAN, and WAN network environments
  • Familiarity with vulnerability, compliance, and audit tools (Nessus, SCAP, Splunk, etc.)
  • Understanding of authorization/accreditation databases (eMASS, Xacta, SNOW, etc.)
  • Excellent communication skills
  • Strong critical thinking and problem-solving skills
  • Detail-oriented and self-motivated
  • Ability to effectively prioritize multiple projects
  • Strong customer service skills
  • Ability to work well in a team environment and adapt to changing project priorities
STR - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Information Systems Security Manager

8 matching positions

Information Systems Security Manager

This is a position for an Information System Security Manager who will join the ...
Location
Location
United States , Chantilly
Salary
Salary:
Not provided
arcfield.com Logo
Arcfield
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Either a bachelor’s degree and 10-12 years of experience
  • or a master’s degree and 8-10 years of experience in working with IT Security policies and government frameworks
  • Must possess and be able to maintain a TS/SCI clearance with Polygraph
  • DoD 8140.03 (8570) certification (IAM Level II – CISSP, CISM, GSLC, CASP/SecurityX)
  • Experience in achieving an ATO(s) through any of the following security frameworks: FedRAMP, NIST 800-53, NIST 800-171, CNSS 1253, etc.
  • Understanding of simple networks, operating systems (Microsoft Server, Windows, Linux), and computer functions
Job Responsibility
Job Responsibility
  • Career level with a complete understanding and wide application of technical principles, theories and concepts
  • Provides technical solutions to a wide range of difficult problems
  • Independently determines and develops approach to solutions
  • Prepare, maintain, and implement System Security Plans that accurately depict the customer’s contractual requirements
  • Develop, implement, enforce, and monitor security policies across systems to maintain compliance with organizational and federal standards
  • Responsible for the oversight and accountability of day-to-day security operations of all classified information systems
  • Support all disciplines within the security program and ensure business needs and mission are met
  • Works directly with program managers, engineers, and the information assurance team on all phases of system life cycle development
  • Leads the team working with US Government Security Control Assessors (SCAs) and Authorizing Officials (AOs) to develop a comprehensive RMF package including System Security Plans (SSPs), Information Continuous Security Monitoring Plans, and a Body of Evidence to support system authorization
  • Interact with internal and external customers or government officials to perform security duties, address routine information security matters with employees regarding issues, report preparation, and system security access briefings, etc
  • Fulltime
Read More
Arrow Right

Information Systems Security Manager

Palantir's impact and productivity in the US Government (USG) space depends on o...
Location
Location
United States , New York
Salary
Salary:
100000.00 - 174000.00 USD / Year
palantir.com Logo
Palantir Technologies
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active US TOP SECRET or SECRET with willingness and ability to upgrade to TOP SECRET security clearance
  • Intermediate level foundational certification ISSM(722) (per DOD 8140), in 8570 this was known as IAM Level 2 certification
  • Active Computing Environmental certification such as Linux+, CCNA, or other
  • At least 3 years experience in a technical role (user support, technical compliance, system administration, etc.) at an accredited USG facility
  • Demonstrated proficiency in relevant Windows administration tasks including AD, DNS, Group Policy, and SCCM/MDT
  • Practical experience with automation tools, including Powershell and Python
Job Responsibility
Job Responsibility
  • Serve as the principal advisor on all matters, technical and otherwise, involving the security of the systems under their purview
  • Scale our infrastructure by creatively implementing automated solutions
  • Collaborate with your fellow ISSMs, ISSOs, FSOs, and broader business stakeholders to provide consistent solutions to all of our facilities
  • Create and manage user-facing guides, POA&Ms, SSPs, ATOs, and other relevant USG documentation
  • Integrate new hardware and software technologies into our USG infrastructure
  • Familiar with eMASS and managing the system security authorization package to ensure all requirements are met and submitted
  • Ensure all requirements and implementation procedures listed within the system security authorization package are in accordance with the NISPOM, NIST SP 800-53, DAAPM, or other governing policies
  • Manage relationships with upstream vendors and sponsors
  • User account provisioning, deletions, and general LDAP & AD maintenance
  • Familiar with using ELK or other SIEMS to build reports and visualizations to ensure monitoring, alerting, and auditing requirements are met
What we offer
What we offer
  • Employees (and their eligible dependents) can enroll in medical, dental, and vision insurance as well as voluntary life insurance
  • Employees are automatically covered by Palantir’s basic life, AD&D and disability insurance
  • Commuter benefits
  • Relocation assistance
  • Take what you need paid time off, not accrual based
  • 2 weeks paid time off built into the end of each year (subject to team and business needs)
  • 10 paid holidays throughout the calendar year
  • Supportive leave of absence program including time off for military service and medical events
  • Paid leave for new parents and subsidized back-up care for all parents
  • Fertility and family building benefits including but not limited to adoption, surrogacy, and preservation
  • Fulltime
Read More
Arrow Right

Information Security Systems Manager

Support Cyber Security Operations.
Location
Location
United States , Fort Bragg
Salary
Salary:
Not provided
aevex.com Logo
AEVEX Aerospace
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Strong analytical and problem-solving skills
  • Strong attention to detail
  • Ability to work independently and in a team environment
  • Excellent communication and documentation skills
  • Ability to handle sensitive information with discretion
  • Bachelor’s degree in Cyber Security, Computer Science, Information Technology, or a related field
  • 5+ years of experience in cyber security, information security, or network security
  • Ability to obtain/maintain a [Secret, Top Secret, etc.] DoD clearance, U.S. Citizenship required
Job Responsibility
Job Responsibility
  • Provide Tier I and Tier II cyber security support
  • Develop detection methods, responses actions, reporting requirements for significant cyber events
  • Leverage AI and automation to enhance monitoring, incident detection, and response capabilities to optimize resource allocation and improve overall operational efficiency
  • Deliver endpoint Security Administration and Cybersecurity Solutions engineering Services
  • Provide oversight in planning, development, and operational support
  • Maintain DCO sensors and tools, detect intrusions, analyze incidents, recommend responses, and document events
  • Ensure secure operations across both cloud and on-premise environments
  • Design/engineer and implement innovation solutions to address challenges
  • Perform other duties as required
  • Regular and reliable attendance on a full time basis [or in accordance with posted schedule]
What we offer
What we offer
  • 401(k)-retirement plan
  • comprehensive Medical, Dental, Vision, Disability and Life insurance group coverage with a portion of the premiums paid by the company
  • professional development funds
  • Employee Assistance Plan (EAP) with counseling, legal help, child and elder care support
  • Fulltime
Read More
Arrow Right
New

Information Systems Security Manager (ISSM)

We are seeking a highly skilled and motivated Information Systems Security Manag...
Location
Location
United States , Crane
Salary
Salary:
83037.47 - 199537.81 USD / Year
arcfield.com Logo
Arcfield
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • BS 5-7 Years Experience, MS 3-5, PhD 0-2 in Information Technology, Cybersecurity, Computer Science, or a related field (Master’s degree preferred)
  • Experience in information security, cybersecurity, or related roles, with at least 2+ years in a leadership or managerial role
  • A GSLC or CISSP or CISM or CAP or or CASP is required
  • Must possess an active DoD Secret clearance, with the ability to obtain a TS clearance
  • Strong understanding of information security principles, risk management, and vulnerability management
  • Experience with regulatory and compliance frameworks (e.g., NIST, ISO 27001, PCI-DSS, SOX, GDPR, HIPAA)
  • Proficiency in security tools such as eMASS, ACAS, SIEM, firewalls, IDS/IPS, DLP, and endpoint protection platforms
  • Knowledge of cloud security best practices (e.g., Azure, AWS, GCP)
  • Strong problem-solving, decision-making, and analytical skills
  • Excellent verbal and written communication skills to work with technical and non-technical stakeholders
Job Responsibility
Job Responsibility
  • Develop, implement, and maintain the organization's information security policies, strategies, procedures, and guidelines
  • Ensure compliance with industry frameworks (e.g., NIST, ISO 27001, GDPR, CMMC, HIPAA, etc.) and government regulations
  • Establish strong security governance practices and manage risk assessment processes
  • Risk Management and Compliance Oversight for IT infrastructure and program requirements
  • Act as the primary point of contact for audits, assessments, and compliance-related activities
  • Ensure compliance with internal policies, regulatory requirements, and contractual security obligations
  • Lead efforts to achieve and maintain required certifications (e.g., ISO27001, SOC 2, CMMC)
  • Develop and maintain an incident response plan
  • Lead investigation and resolution of security incidents, including root cause analysis and remediation steps
  • Collaborate with external vendors, law enforcement, or forensics teams to address breaches when necessary
What we offer
What we offer
  • Health Insurance
  • Life Insurance
  • Paid Time Off
  • Holiday Pay
  • Short Term and Long-Term Disability
  • Retirement and Savings
  • Learning and Development opportunities
  • Wellness programs
  • Fulltime
Read More
Arrow Right

Cyber Security, Information Systems Security Officer

Jumpstart your career as a Cybersecurity professional with BAE Systems, supporti...
Location
Location
United States , Nashua
Salary
Salary:
77809.00 - 132275.00 USD / Year
baesystems.com Logo
Baesystems
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • SECRET Clearance is required for this position
  • Minimum of High School Diploma with 3 or more years of experience or Degree and 2 years of experience required
  • IAM Level I certification commensurate with DoD 8570.1M requirements (or ability to obtain certification within 6 months)
  • High level of personal motivation and initiative to learn and acquire new skills, and adapt seamlessly to an ever-changing security environment
  • Customer focused, excellent communicator and ability to work with limited supervision.
  • Strong organizational skills
  • Able to interface with other IA team members, other security disciplines (industrial security, physical security, special programs security, etc.), and program personnel
  • Basic understanding of simple networks, operations systems and computer functions.
  • Coursework in a technical discipline (i.e. programming/scripting, systems administration, cybersecurity/information assurance, etc.)
Job Responsibility
Job Responsibility
  • Responsible for supporting adherence to all aspects of a rigorous Risk Management Framework (RMF) compliance program as stipulated by NISPOM/DAAPM, JSIG, ICD 503, STIGs and associated NIST publications.
  • Partner with the Information System Security Manager (ISSM) to maintain Authority to Operate (ATO) approvals for various systems by adhering to the Risk Management Framework (RMF).
  • Support cybersecurity efforts throughout the RMF process for one or more assigned programs(s) to include the enforcement of System Security Plans, Plans of Action and Milestones (POA&Ms), assessing and auditing systems security controls.
What we offer
What we offer
  • health, dental, and vision insurance
  • health savings accounts
  • a 401(k) savings plan
  • disability coverage
  • life and accident insurance
  • employee assistance program
  • legal plan
  • discounts on things like home, auto, and pet insurance
  • paid time off
  • paid holidays
  • Fulltime
Read More
Arrow Right

Alternate Facility Security Officer (AFSO)/ Information Systems Security Officer (ISSO)

Position Summary: We are seeking for a detail-oriented and reliable Alternate Se...
Location
Location
United States , Huntsville
Salary
Salary:
Not provided
xbowsystems.com Logo
X-Bow Systems
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • U.S. citizenship and active security clearance (SECRET or higher preferred)
  • 3+ years of experience in industrial security or related field and experience in information systems security or cybersecurity
  • Knowledge of NISPOM (32 CFR Part 117), RMF, NIST SP 800-53, and related standards
  • Experience with system accreditation, auditing, and incident response
  • Strong analytical, problem-solving, and communication skills
  • Relevant certifications (e.g., CISSP, Security+, CISM) preferred
  • Strong organizational, communication, and interpersonal skills
  • Proficiency with security management software and Microsoft Office Suite.
Job Responsibility
Job Responsibility
  • Assist the FSO in implementing and maintaining the facility's security program in accordance with NISPOM and company policies
  • Support personnel security clearance processing, tracking, and recordkeeping
  • Conduct security briefings and debriefings
  • Assist with self-inspections, audits, and preparation for DCSA assessments
  • Maintain classified document control and accountability
  • Respond to and report security incidents or violations
  • Support the development and enforcement of security policies and procedures
  • Serve as the point of contact for security-related matters in the FSO's absence
  • Implement and maintain security controls for information systems in accordance with NISPOM, RMF, and company policies
  • Develop, document, and update System Security Plans (SSPs) and related documentation
  • Fulltime
Read More
Arrow Right
New

Early-Career Information Systems Architect - Technical Security Systems

The Technical Systems Security Department (9246) is seeking an Information Syste...
Location
Location
United States , Albuquerque
Salary
Salary:
87400.00 - 168800.00 USD / Year
sandia.gov Logo
Sandia National Laboratories
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Information Systems / Management Information Systems (MIS), Computer Science or Computer Engineering, Software Engineering, Information Technology, or relevant discipline, or equivalent combination of relevant education and experience
  • Ability to obtain and maintain a DOE Q-level security clearance
Job Responsibility
Job Responsibility
  • Translate business needs into technical solutions and define solutions to business problems through reasoned application of information technology
  • Determine integrated hardware and software architecture solutions that meet performance, scalability, reliability, and security needs
  • Design, develop, and analyze overall architecture of internal systems, including hardware and software
  • Work with stakeholders and staff to conduct high-level investigations for strategy studies, requirements specifications, and feasibility studies, and communicate requirements to management
  • Coordinate design and integration of information systems, including subsystems such as networking, virtual machines, and traditional servers/workstations across all SNL sites
What we offer
What we offer
  • Challenging work with amazing impact that contributes to security, peace, and freedom worldwide
  • Extraordinary co-workers
  • Some of the best tools, equipment, and research facilities in the world
  • Career advancement and enrichment opportunities
  • Flexible work arrangements for many positions include 9/80 (work 80 hours every two weeks, with every other Friday off) and 4/10 (work 4 ten-hour days each week) compressed workweeks, part-time work, and telecommuting (a mix of onsite work and working from home)
  • Generous vacation, strong medical and other benefits, competitive 401k, learning opportunities, relocation assistance and amenities aimed at creating a solid work/life balance
  • Fulltime
Read More
Arrow Right

Sr. Manager, Information Technology and Information Security Risk

Sr. Manager, Information Technology and Information Security Risk Hybrid Work Sc...
Location
Location
United States , Reston
Salary
Salary:
Not provided
tier4group.com Logo
Tier4 Group
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Information Security, Cybersecurity, Risk Management, or related fields (or equivalent work experience) preferred
  • 8–10 years of relevant experience in information security or risk management roles with experience in financial services, banking, payments, fintech, or related regulatory environments preferred
  • Experience with data analytics and visualization tools (e.g., Power BI, Tableau, or Python)
  • Experience working in a regulated financial services or technology environment
  • CRISC, CISSP, CISM, Security+ or CGEIT or similar certifications
Job Responsibility
Job Responsibility
  • Evaluate and provide independent challenge regarding the alignments of the organization’s IT and IS strategy with enterprise business objectives, risk appetite, and regulatory expectations
  • Review and assess the adequacy of information technology and security risk assessments across applications, infrastructure, and business processes
  • Partner with IT project teams to influence decisions related to technology architecture, cybersecurity controls, system implementations, and operational risk mitigation strategies
  • Evaluate new and existing systems, platforms, and SAAS integrations for cybersecurity risks and regulatory compliance impacts
  • Conduct third party and vendor security risk assessments, including review of SOC 1/SOC 2 reports, SIG questionnaires, penetration testing results, and remediation plans to ensure vendor information security practices align with OF expectations
  • Provide effective second-line oversight and credible challenge related to cybersecurity incidents, operational disruptions, and emerging technology risks, including analysis of potential impacts to customer data, financial systems, and regulatory obligations
  • Collaborate with business units and technology teams to identify, document, and monitor risks, ensuring remediation activities meet regulatory timelines and internal risk appetite
  • Oversee the implementation of information technology and security risk management policies and the Cyber-Security Incident Response Plan
  • Conduct cyber security awareness training and education through periodic email phishing tests, in-person and computer-based training, presentations to employees, and security related tabletop exercises
  • Monitor the status of remediation for IT and IS related issues and ensure that the remediation documentation is complete and adequate
  • Fulltime
Read More
Arrow Right