Job Description The Information System Security Manager (ISSM) is responsible for the development, implementation, and continuous improvement of cybersecurity functions for multiple critical systems and for providing strategic and tactical leadership to a cybersecurity staff, including Information System Security Officer(s) and cybersecurity analysts. Key responsibilities include but are not limited with the following: 1. In collaboration with the Facility Security Officer (FSO) and business leadership, take responsibility for establishing Information Systems Security Program identifying, pursuing, and maintaining cybersecurity accreditations and authorizations of critical enterprise and/or customer information systems. 2. Lead development, implementation, and continuous improvement of information security policies, standards, plans, and procedures to maintain security posture, ensure compliance, and allow for effective and efficient execution of business functions. 3. Provide effective leadership to identify, assess, and mitigate cybersecurity risks; exercise direct ownership of system monitoring and auditing, threat intelligence, vulnerability management, incident response, cybersecurity awareness, and other critical continuous monitoring processes. 4. Lead investigations of computer security violations and incidents, reporting as necessary to both the Facility Security and Senior Program Managers. 5. Ensure alignment and effective collaboration among cybersecurity, information systems infrastructure, and software development and operations teams to design, implement, and maintain cybersecurity controls and secure system development practices consistent with the established policies and standards. 6. Provide organizational leadership including expertise development, budget management, and resource allocation in support of the established policies, plans, and strategic direction, and to enable effective extension of cybersecurity capabilities to customer-facing operations. 7. Establish and maintain effective relationships with authorizing officials, assessment organizations, customer information security officials, M.C. Dean business unit leaders, engineering organizations, and other internal and external stakeholders. Act as the primary responsible party for system audits, assessment, and authorization activities. 8. Develop and deliver regular updates to the company leadership on the information security posture, incidents, compliance, and strategic direction. We are a company committed to creating inclusive environments where people can bring their full, authentic selves to work every day. We are an equal opportunity employer that believes everyone matters. Qualified candidates will receive consideration for employment opportunities without regard to race, religion, sex, age, marital status, national origin, sexual orientation, citizenship status, disability, or any other status or characteristic protected by applicable laws, regulations, and ordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or recruiting process, please send a request to HR@insightglobal.com . The EEOC "Know Your Rights" Poster is available here (https://www.eeoc.gov/sites/default/files/2023-06/22-088\_EEOC\_KnowYourRights6.12ScreenRdr.pdf) . To learn more about how we collect, keep, and process your private information, please review Insight Global's Workforce Privacy Policy: https://insightglobal.com/workforce-privacy-policy/ . Skills and Requirements Qualifications:  10+ years of progressive experience with implementation of RMF, CMMC, ISO 27K, and related cybersecurity frameworks, as well as ICD and CNSS standards; Expert-level knowledge of the NIST RMF framework, including NIST SP 800-53 and related NIST SP 800 series standards, and their implementation by the US Federal Government civilian and DOD agencies  5+ years of cybersecurity management experience in the ISSO / ISSM roles, including developing, maintaining, and enforcing information system security policies and system security plans, performing system audits, and facilitating assessment and authorization activities  Working knowledge of key information technology concepts, platforms, and technologies, including Microsoft Windows and/or Linux operating systems, and system virtualization (multiple hypervisors) in a secure network environment, TCP/IP networking protocols and services, and related security technologies and applicable security benchmarks (e.g., DISA Security Technical Implementation Guide (STIGs)  Working knowledge of information key security concepts, such as encryption, Public Key Infrastructure (PKI), etc.  Working knowledge of and hands-on experience with compliance scanning tools (e.g. SCAP), vulnerability scanning tools (e.g. ACAS), eMASS  Excellent written and verbal communication and presentation skills.  Ability to work in a cross-functional team environment and adapt to changes  Bachelors Degree (and 10+ years of experience) or Masters Degree (and 6+ years of experience) in Information Security, Information Technology, Computer Science, or related field  CISSP certification or CISM  Active TS clearance. 170-220k null We are a company committed to creating diverse and inclusive environments where people can bring their full, authentic selves to work every day. We are an equal employment opportunity/affirmative action employer that believes everyone matters. Qualified candidates will receive consideration for employment without regard to race, color, ethnicity, religion,sex (including pregnancy), sexual orientation, gender identity and expression, marital status, national origin, ancestry, genetic factors, age, disability, protected veteran status, military oruniformed service member status, or any other status or characteristic protected by applicable laws, regulations, andordinances. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request to HR@insightglobal.com.