Information System Security Manager

Summary

Join ARETUM, a leader in government contracting and technology solutions, as an Information System Security Manager (ISSM) - Contingent. Oversee the information security program for critical systems, ensuring compliance with federal regulations and organizational policies. Develop and maintain security documentation, implement security protocols, and conduct risk assessments and audits. Lead the Risk Management Framework (RMF) processes and collaborate with IT teams. Provide guidance and training to security team members and present security risk reports to senior management. This contingent position requires a minimum of 5 years of experience, an Active DOD Secret Clearance or higher, and proven knowledge of federal security requirements. Employment is dependent upon a successful contract award and background investigation.

Requirements

• Minimum of 5 years of experience in information security management or related field
• Active DOD Secret Clearance or higher
• Proven knowledge of federal security requirements, including FISMA, NIST, and Risk Management Framework (RMF)
• Experience managing security programs, conducting audits, and ensuring compliance with security regulations
• Strong understanding of security technologies, policies, and procedures related to information systems
• Excellent leadership skills, with the ability to mentor and develop security staff
• Exceptional analytical and problem-solving abilities
• Strong written and verbal communication skills to effectively present security information to stakeholders

Responsibilities

• Manage and direct the information security program and team to ensure compliance with security policies and applicable regulations
• Develop and maintain the system’s security documentation, including security plans and risk management assessments
• Implement security protocols and oversee responses to security incidents, managing the resolution of vulnerabilities and breaches
• Conduct comprehensive risk assessments and audits to evaluate security posture and recommend enhancements
• Lead the Risk Management Framework (RMF) processes for information systems, ensuring adherence to requirements and documentation standards
• Collaborate with other IT teams and departments to integrate security into system development and operations
• Provide guidance, training, and mentorship to security team members and staff regarding security practices and compliance requirements
• Prepare and present security risk reports to senior management, along with actionable recommendations based on assessment findings
• Stay up-to-date with the latest security trends, threats, and regulatory changes to ensure the organization’s security posture remains robust

Preferred Qualifications

Industry-recognized security certification (e.g., CISSP, CISM, CAP) is highly preferred

Benefits

• Health Care Plan (Medical, Dental & Vision)
• Retirement Plan (401k, IRA)
• Life Insurance (Basic, Voluntary & AD&D)
• Paid Time Off (Vacation, Sick & Public Holidays)
• Family Leave (Maternity, Paternity)
• Short Term & Long Term Disability
• Training & Development