Information Systems Security Manager (ISSM)
Bedford, MA
Job Type: Contract to Hire | Recruiter: Jacob Pawlusiak | Phone: 603.858.3205
Location: Greater Boston, MA (Onsite)
Length: 6+ months
Job Description:
Our client is seeking an experienced Information Systems Security Manager (ISSM) to join a high-profile cybersecurity team supporting mission-critical operations. This position is ideal for a seasoned ISSM who thrives in fast-paced, security-driven environments and is well-versed in Risk Management Framework (RMF), information assurance, and federal cybersecurity compliance.
Essential Duties and Responsibilities (but not limited to):
- Lead and support assessment and authorization activities in alignment with National, DoD, and Air Force cybersecurity policies and frameworks.
- Evaluate threats, vulnerabilities, and risks across systems; develop mitigation strategies and ensure implementation of effective safeguards.
- Analyze, document, and advise on system modifications and their cybersecurity impacts including DRs, PRs, CRs, and infrastructure upgrades.
- Conduct risk assessments, vulnerability inspections, and security evaluations of existing and planned systems.
- Review and contribute to system security test plans, test reports, and RMF documentation including System Security Plans (SSPs), Security Risk Analyses, and Vulnerability Management Plans.
- Provide cybersecurity oversight during system changes; prepare risk acceptance documentation and exception letters where necessary.
- Support cyber assessments by external agencies (i.e., DISA, NSA, 16th AF) and participate in special projects like DCO and technical evaluations.
- Monitor emerging threats and vulnerabilities; update POA&Ms accordingly.
- Promote cybersecurity awareness and adherence to best practices across all levels of the organization.
- Interface with system/network engineering teams to ensure security is embedded in design and implementation phases.
- Maintain and update data in systems such as ITIPS to support compliance with FISMA, SISSU, and Clinger Cohen Act requirements.
- Bachelor’s degree in Information Technology, Cybersecurity, or related field.
- 10+ years in cybersecurity or information assurance, preferably supporting DoD or federal systems.
- Proficient with RMF, NIST standards, FISMA, and DoD-specific IA policies.
- Skilled in vulnerability assessment tools and intrusion prevention systems.
- Strong knowledge of cryptographic systems, COMSEC, and network access controls.
- Comfortable working in both classified and unclassified environments.
- Experience with system design reviews, security audits, and mitigation planning.
- Strong written and verbal communication skills; comfortable interacting with stakeholders across technical and non-technical domains.
- Must hold at least one of the following certifications: CISSP, CISM, GSLC, or CCISO.
- Due to the nature of the work, an active Secret clearance is required with the ability to obtain a Top-Secret clearance (Top-Secret clearance preferred).
- Candidates must be a United States Citizen.
Come see why DPC has achieved:
- 4.9/5 Star Glassdoor rating and the only staffing company (< 1000 employees) to be voted in the national Top 10 ‘Employee’s Choice - Best Places to Work’ by Glassdoor.
- Voted ‘Best Staffing Firm to Temp/Contract For’ seven times by Staffing Industry Analysts as well as a ‘Best Company to Work For’ by Forbes, Fortune and Inc. magazine.