Position:Information System Security Manager (ISSM)
Location: Chantilly, VA
Job Id:377
# of Openings:1
Job Title: Information System Security Manager (ISSM)
Who We Are:
Kudu Dynamics isaLeido's ownedcompany,forged out of a decade of experience in computer network operations and staffed with talent who have built, overseen, and enhanced capabilities throughout the entire USG arsenal. Our team of hackers, engineers, makers, and shakers have experience spanning centuries of research, development, and operations missions - across desktop, mobile, IoT, and embedded platforms. Kudu Dynamics is uniquely qualified to anticipate tomorrow’s threats and build the next of capabilities.
Job Description:
The Information System Security Manager (ISSM) is the primary cybersecurity authority for assigned information systems and is responsible for ensuring compliance with applicable security regulations and frameworks, including NIST SP 800-53, RMF, JSIG, ICD 503, and DoD/IC policies. The ISSM leads the development, implementation, and enforcement of system-level security controls and works closely with system owners, ISSOs, system administrators, and authorizing officials to manage the overall security posture of the systems under their purview.
Required Qualifications:
* Active Top Secret Security Clearance.
* Certified Information Systems Security Professional (CISSP).
* Bachelor’s degree in Cybersecurity, Computer Science, Information Assurance, or related field.
* Minimum of 5–7 years of experience in cybersecurity, with 3+ years in a leadership or management role.
* Strong understanding of NIST SP 800-53, JSIG, ICD 503, DoD RMF, and other federal cybersecurity frameworks.
* Demonstrated experience managing accreditation efforts and ATO processes.
* Experience with tools such as eMASS, ACAS, Tenable/Nessus, Splunk, ManageEngine and compliance checkers.
* Excellent leadership, communication, and collaboration skills.
Preferred Qualifications:
* Experience managing secure systems in classified environments.
* Working knowledge of supply chain risk management (SCRM) and insider threat mitigation.
* Master’s degree in Cybersecurity, Computer Science, Information Assurance, or related field.
* CISM, CASP, CISA, Security+, Networking/Operating System Certifications.
* Experienced with Microsoft Word and Excel.
* Experienced with Adobe Professional, or other PDF editing software.
Key Responsibilities:
* Oversee the implementation of cybersecurity policy and procedures for information systems under their responsibility.
* Achieve Approval to Operate (ATO) through managing the Risk Management Framework (RMF) lifecycle for all assigned systems, including categorization, control selection, implementation, assessment, authorization, and continuous monitoring.
* Develop, review, and maintain authorization documentation (System Security Plans (SSPs), Plan of Action and Milestones (POA&Ms), Risk Assessment Reports (RARs), etc.).
* Ensure timely remediation of system vulnerabilities and compliance with technical security standards (e.g., STIGs, SCAP benchmarks).
* Lead security control assessments, audits, inspections, and support accreditation and re-accreditation activities.
* Coordinate with Information Systems Owners (ISOs), Information System Security Officers (ISSOs), Security Control Assessors (SCAs), Authorizing Officials (AOs), and other stakeholders.
* Serve as a subject matter expert and authority on cybersecurity policies, regulations, and threat environments.
* Evaluate security incidents and ensure appropriate incident response and recovery measures are in place.
* Ensure system personnel receive appropriate security training and understand roles and responsibilities.
* Maintain situational awareness of emerging threats and technologies that may impact system security.
* Represent cybersecurity interests during system design, development, and acquisition phases.
Benefits We Provide:
* Equity at a company that is doing dynamic, fun, meaningful, and interesting work.
* Your own yearly discretionary budget to buy the things that make you happy.
* Competitive salaries, premium healthcare options, 401k matching, and guaranteed annual bonus. We also offer 4 weeks of paid time off and 11 federal holidays to use whenever you want throughout the year.
* Awesome, enthusiastic coworkers and a company culture that promotes a jerk-free environment.
Kudu provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws. #J-18808-Ljbffr