Position Overview We are seeking an experienced Information System Security Manager (ISSM) II to oversee and manage the implementation of cybersecurity programs and policies across organizational systems. This role is responsible for ensuring the security posture of information systems, managing risk, and maintaining compliance with applicable federal and DoD cybersecurity standards. The ISSM II serves as a key leader in safeguarding systems, coordinating security efforts, and supporting mission-critical operations.Key Responsibilities
Manage and oversee the organization’s information security program and cybersecurity initiatives
Develop, implement, and enforce security policies, procedures, and controls
Ensure compliance with DoD, NIST, RMF, and other applicable cybersecurity frameworks
Conduct risk assessments and manage system security authorization processes (ATO, RMF lifecycle)
Monitor system security posture and respond to vulnerabilities, incidents, and threats
Coordinate security activities across technical teams, leadership, and stakeholders
Maintain system security documentation (e.g., SSPs, POA&Ms, risk assessments)
Provide guidance on secure system architecture, design, and implementation
Lead security audits, inspections, and continuous monitoring activities
Manage security awareness and training initiatives for personnel
Support incident response and ensure proper reporting and mitigation actions
Required Qualifications
Bachelor’s degree in Computer Science, Information Technology, Cybersecurity, or related field (or equivalent experience)
3–5 years of relevant experience in information systems security management
Experience with Risk Management Framework (RMF) and system authorization processes
Knowledge of DoD cybersecurity policies, NIST standards, and security best practices
Experience managing security documentation and compliance efforts
Strong understanding of network, system, and application security principles
Active Secret security clearance (must be able to maintain; eligibility for Top Secret preferred)
Strong leadership, communication, and organizational skills
Certifications (Required)
One or more of the following:
CompTIA Security+ (CE)
CAP, CASP+, or equivalent
Project Management Professional (PMP) (optional but beneficial)
Preferred Qualifications
Experience supporting DoD or federal government programs
Familiarity with continuous monitoring tools and vulnerability management systems
Experience leading or mentoring cybersecurity teams
Knowledge of cloud security environments (AWS GovCloud, Azure Government)