Information Systems Security Manager

Summit Federal Services, LLC (SFS) with headquarters in Oakland, Maryland, is a fast-growing woman-owned Small Business and HUBZone company with an outstanding record of performance providing more effective and efficient acquisition, business process, training, IT, administrative and security services to multiple federal agencies.

SFS/Merito is looking for an Information Systems Security Manager to spearhead their client organization's information security program. The ISSM will lead the development and implementation of security measures, ensuring compliance with industry regulations, frameworks, and company policies. The ideal candidate will bring expertise in cybersecurity, risk management, and information systems security compliance to protect the organization’s critical assets.

Winston-Salem, NC, hybrid (Remote for first 5 months then reports onsite)

Contract

Corporate Compliance Manager & Facility Security Officer

Based on experience

1. Lead the establishment and maintenance of classified networks and operating systems.
2. Develop and maintain technical documentation and security policies for IT equipment within open storage areas.
3. Determine technical Information Assurance (IA) requirements and conduct cyber risk assessments, including vulnerability analysis and implementation of mitigation solutions in alignment with RMF standards.
4. Author and manage security documentation for system authorization, continuous monitoring, and information systems lifecycle management (e.g., Authorization to Operate (ATO), System Security Plan (SSP), Plans of Action and Milestones (POAM).
5. Provide guidance and technical expertise in the creation of solutions for complex security problems, requiring deep knowledge of systems security.
6. Ensure that security controls are implemented effectively and continuously throughout the information systems lifecycle.
7. Utilize cybersecurity tools to provide ongoing security monitoring for infrastructure in accordance with Department of Defense (DoD) requirements.
8. Perform system audits, vulnerability risk assessments, and investigations into security incidents or violations related to information assurance.
9. Conduct regular training and awareness programs on cybersecurity best practices and risk mitigation strategies for all system users.
10. Other duties as required.

1. U.S. Citizenship.
2. Active Secret Clearance.
3. Prior experience as an ISSM or ISSO, with strong familiarity in establishing classified networks and information systems.
4. Experience as a COMSEC Custodian and in handling security controls for classified information systems.
5. Proficiency in cybersecurity frameworks and risk management practices, including the Risk Management Framework (RMF) and DoD compliance requirements.

1. Relevant certifications such as CISSP, CISM, or Security+
2. Familiarity with cybersecurity tools, auditing processes, and incident response frameworks.

Summit Federal Services, LLC is an equal opportunity employer regardless of race, color, religion, creed, sex, marital status, national origin, disability, age, veteran status, on-the-job injury, sexual orientation, political affiliation or belief. Employment decisions are made without consideration of these or any other factors that employers are prohibited by law from considering. Any discriminatory action can be a cause for disciplinary action. Summit Federal Services, LLC also prohibits discrimination against individuals with disabilities and will reasonably accommodate applicants with a disability, upon request, and will also ensure reasonable accommodation for employees with a disability.