Information System Security Manager (ISSM) - Fairfax, Virginia

Information System Security Manager (ISSM) – Fairfax, Virginia

Salary Range: $100,000-150,000

Generous PTO, 401k, Health Insurance Package

In-Depth Engineering Corporation seeks a skilled Information System Security Manager (ISSM) to support the security posture of our on-premises systems. The ideal candidate will have hands-on experience with the National Industrial Security Program (NISP) utilizing the Enterprise Mission Assurance Support Service (eMASS) and Risk Management Framework (RMF), including an understanding of network fundamentals and vulnerability management tools. This role will directly support system accreditation, continuous monitoring, and operational security compliance.

We seek self-starters capable of independent effort as well as participation on a small team. 

 

This is a permanent, full-time position and the work will be performed on-site at our headquarters in Fairfax, Virginia. 

 

Duties:

The ISSM is responsible for the oversight of the information system’s security posture. Emphasis is placed on the application and sustainment of the security controls to ensure cyber security requirements are properly administered throughout the system. The ISSM serves as the principal advisor on all matters, technical and otherwise, related to the security of systems under their purview.

 

Primary functions include processing for certifications and authorization of IT systems along with the development and maintenance associated with eMASS, and RMF. Additional responsibilities include continuous monitoring, vulnerability assessments, and incident investigations.

 

The ISSM is also a primary stakeholder and partners with ISSOs to facilitate the continuous monitoring efforts used to promote security compliance throughout the organization. An ability to plan effectively and prioritize projects is a required function of the ISSM role.

 

Effective communication and an ability to work independently are key attributes needed to be successful in this role. The ISSM will frequently interact with internal and external stakeholders, provide cybersecurity oversight, and drive compliance standards for the information systems. The ISSM partners with security engineers and system administrators to ensure security patches and secure configurations are in place and functioning properly on the information systems.

Requirements:

• Must be US Citizen for consideration and hold an active secret clearance
• Bachelor's degree in computer science, cybersecurity, information systems, or related field
• 5+ years of experience in an ISSM or ISSO role
• Must have Security+ or CISSP
• Hands-on experience with STIGs, STIG Viewer, and SCAP tools
• Strong Linux experience (Red Hat Enterprise Linux or similar)
• Demonstrated experience with eMASS
• Experience with certification and authorization of IT systems
• Experience with applying and documenting policy and system configurations that satisfy NIST Security Control requirements
• Ability to develop and update relevant RMF artifacts; System Security Plan (SSP), Plan of Actions and Milestones (POA&M), Security Controls Traceability Matrix (SCTM), as well as the associated security policies and procedures.

 

In-Depth Engineering provides a competitive package of salary and benefits, including medical, dental, and vision coverage, a Safe Harbor 401k program, generous Paid Time Off (PTO), STD, LTD, life insurance, and tuition assistance for higher education. Prospective employees will receive consideration without discrimination because of race, creed, color, sex, age, national origin, or handicap. We are an Equal Opportunity Employer.