Information System Security Manager

Hybrid / Philadelphia, Navy Yard, PA
Full Time
Apothe6
Experienced

Position Overview:

The Information System Security Manager (ISSM) III is responsible for developing, implementing, and managing the organization’s cybersecurity program in alignment with DoD and organizational policies. The ISSM III ensures compliance with applicable regulations, oversees information assurance (IA) and cybersecurity efforts, and leads initiatives to protect systems, networks, and data. This senior-level role requires strategic oversight, leadership of cybersecurity personnel, and coordination across all levels of the organization to maintain the confidentiality, integrity, and availability of information systems.

Key Responsibilities:

  • Oversee and manage the implementation and maintenance of the organization’s information security program in compliance with DoD, RMF, and applicable cybersecurity standards.
  • Serve as the primary advisor on all cybersecurity matters, including policy, risk management, and security operations.
  • Manage and coordinate security audits, assessments, and continuous monitoring activities.
  • Develop, review, and maintain system security documentation, including System Security Plans (SSPs), Security Assessment Reports (SARs), and Plans of Action and Milestones (POA&Ms).
  • Ensure timely identification, reporting, and mitigation of cybersecurity vulnerabilities and incidents.
  • Provide oversight and guidance for system authorization processes under the Risk Management Framework (RMF).
  • Supervise, mentor, and direct information assurance personnel to ensure effective execution of security policies and procedures.
  • Collaborate with stakeholders to ensure proper security controls are integrated into system designs and development activities.
  • Coordinate with internal and external organizations for cybersecurity inspections, audits, and compliance reviews.
  • Support the development and enforcement of cybersecurity training and awareness programs across the organization.

Required Qualifications:

  • Certification: Must meet DoD 8570.01-M IAM Level II certification requirements. Acceptable certifications include:
    • CAP
    • CASP+ CE
    • CISM
    • CISSP (or Associate)
    • GSLC
    • CCISO
    • HCISPP
  • Education: Master’s degree in Computer Science, Information Technology, or an equivalent STEM discipline from an accredited college or university.
  • Experience: Minimum of eight (8) years of experience managing information security programs, including:
    • Oversight of cyber strategy, personnel, and infrastructure
    • Policy enforcement and compliance management
    • Incident response and emergency planning
    • Security awareness and risk mitigation activities

Preferred Qualifications:

  • Experience with DoD Risk Management Framework (RMF) and NIST SP 800-series publications.
  • Previous experience supporting classified environments or federal information systems.
  • Strong leadership, communication, and analytical skills with the ability to interface with all organizational levels.
  • Experience leading cross-functional teams and managing cybersecurity operations in a dynamic environment.
Share

Apply for this position

Required*
Apply with Indeed
We've received your resume. Click here to update it.
Attach resume or Paste resume
Attach resume as .pdf, .doc, .docx, .odt, .txt, or .rtf (limit 5MB) or Paste resume

Paste your resume here or Attach resume file

To comply with government Equal Employment Opportunity and/or Affirmative Action reporting regulations, we are requesting (but NOT requiring) that you enter this personal data. This information will not be used in connection with any employment decisions, and will be used solely as permitted by state and federal law. Your voluntary cooperation would be appreciated. Learn more.
Human Check*