Unclassified - Washington, DC
posted 5 months ago
The Information Systems Security Manager (ISSM) serves as a principal advisor on all matters related to the security of information systems, particularly within Special Access Programs (SAPs) supporting Department of Defense (DoD) agencies. This role is critical in ensuring the security and integrity of sensitive information systems, including Collateral, Sensitive Compartmented Information (SCI), and SAP activities. The ISSM will engage in daily operations, providing expert guidance and support to various DoD agencies, including HQ Air Force and the Office of the Secretary of Defense. The ISSM will lead the strategic planning and implementation of the Cyber Security Program, ensuring compliance with the Risk Management Framework (RMF) and Joint Special Access Program Implementation Guide (JSIG). This includes advising on RMF assessment and authorization issues, developing security assessment plans, and performing risk assessments to recommend security measures to DoD agency customers. The role also involves evaluating authorization documentation and providing written recommendations for authorization to government program managers. In addition to these responsibilities, the ISSM will develop and maintain a formal Information Systems Security Program, ensuring that all Information Assurance Officers (IAOs), network administrators, and cybersecurity personnel receive the necessary training. The ISSM will also be responsible for developing policies and procedures for responding to security incidents, conducting periodic assessments of security postures, and ensuring that all authorization documentation is current and accessible. This position requires a proactive approach to security, including the establishment of a self-inspection program and coordination with other security officials on technical issues.