Information Systems Security Manager (ISSM)

Not ready to apply?

Apply Now    
 Dayton, OH US
Position Description

SRC, Inc. is currently seeking an information systems security manager (ISSM). The successful candidate will perform as the ISSM responsible for managing multiple classified environments and customers.  Support the design, development, evaluation and accreditation of information systems ranging from standalone information systems (IS) to complex distributed and interconnected (WAN/LAN) computer systems.


  • Develop system security policies
  • Oversee the implementation of secure network architectures, customer IS requirements, operational concepts, and security accreditation plans and procedures
  • Provide leadership, oversight, guidance and training for information system security officers (ISSOs) and system administrators (SAs)
  • Ensure compliance of all customer IS security requirements
  • Coordinate and manage all aspects of certification and accreditation (C&A)/assessment and authorization (A&A) processes for department of defense (DoD) or other customer IS security programs as needed
  • Ensure compliance with government and corporate security policies and procedures
  • Supporr other security disciplines such as communications security (COMSEC), physical security, document control, personnel security and security education
  • Occasional travel may be required
  • Additional duties may be assigned commensurate with business need and ability

Position Requirements
  • Nine years information assurance experience with bachelor’s degree; or seven years information assurance experience with a master’s degree; years of experience may be considered in lieu of degree
  • Three years experience implementing national industrial security program operating manual (NISPOM) chapter 8 and the office of designated approving authority (ODAA) industrial security field operations (ISFO) process manual
  • Familiarity with implementing the defense security service (DSS) and assessment and authorization process manual (DAAPM)
  • Experience with accrediting information systems utilizing DSS risk management framework (RMF) guidelines
  • Experience with defense information system agency security technical implementation guides (STIGS)
  • Ability to oversee, implement and enforce security policies
  • Certified information systems security professional (CISSP) certification required within the first year of employment
  • Experience overseeing AIS configuration management to include hardware, software, user and privileged user access
  • Experience with risk managed/trusted downloads
  • Must be fully knowledgeable and experienced in the C&A process for systems under the NISPOM
  • Experience conducting system audits
  • Experience managing incident response and system contaminations
  • Must have a very flexible work style
  • Must have the ability to work in a collaborative environment and across various disciplines
  • Strong organizational skills and the ability to stay focused while managing multiple tasks concurrently
  • Excellent attention to detail and self-management skills
  • Excellent verbal/written communication skills

Preferred Requirements

  • Bachelor’s degree
  • Current CISSP Certification
  • Supervisory experience
  • Experience with ODAA business management system (OBMS)
  • Experience with the following DoD security tools: SCAP, WASSP, Nessus, DISA STIG’s, McAfee ePO, HBSS or ACAS
  • Experience with security architectures, firewalls, network access a plus

Security Clearance Requirements

Must be a U.S. Citizen. An active Secret security clearance and current investigation are required. Applicants selected may be subject to a government security investigation and must meet eligibility requirements to obtain a Top Secret and SCI clearance.

Apply Now