Назад
Company hidden
2 дня назад

Information Systems Security Manager (Cybersecurity)

Формат работы
remote (только USA)
Тип работы
fulltime
Грейд
senior
Английский
b2
Страна
US
Вакансия из списка Hirify.GlobalВакансия из Hirify Global, списка международных tech-компаний
Для мэтча и отклика нужен Plus

Мэтч & Сопровод

Для мэтча с этой вакансией нужен Plus

Описание вакансии

Текст:
/

TL;DR

Information Systems Security Manager (Cybersecurity): Leading the enterprise implementation of the NIST Risk Management Framework (RMF) for National Institutes of Health (NIH) information systems with an accent on Assessment & Authorization (A&A) lifecycles and FISMA compliance. Focus on directing security documentation, managing cybersecurity risk assessments, and supervising ISSOs to ensure ongoing security authorization.

Location: Remote (Must be based in the US and possess or be able to obtain Public Trust clearance)

Company

hirify.global provides specialized technical and professional services supporting federal government programs, including the NIH.

What you will do

  • Lead enterprise NIST RMF implementation across NIH/OD information systems.
  • Manage the full Assessment & Authorization (A&A) lifecycle for Low and Moderate FISMA systems.
  • Direct the development of SSPs, SAPs, SARs, POA&Ms, and authorization packages.
  • Oversee continuous monitoring activities and manage enterprise cybersecurity risk assessments.
  • Supervise and mentor Information System Security Officers (ISSOs).
  • Coordinate with SCAs, Authorizing Officials, and executive leadership regarding security requirements.

Requirements

  • Public Trust Clearance (current or ability to obtain).
  • B.S. in Computer Science, Information Technology, or a related field.
  • 7+ years of experience supporting Federal cybersecurity programs.
  • 5+ years in a leadership role such as ISSM, Senior ISSO, or Security Manager.
  • Proven experience managing federal systems through the RMF lifecycle and supporting FISMA systems.
  • Active certification in CISSP, CISM, CAP, GSLC, or Security+.

Будьте осторожны: если работодатель просит войти в их систему, используя iCloud/Google, прислать код/пароль, запустить код/ПО, не делайте этого - это мошенники. Обязательно жмите "Пожаловаться" или пишите в поддержку. Подробнее в гайде →