Information System Security Manager (ISSM)

Description

Job Title: Information System Security Manager (ISSM)

Location: Fairfax, VA

Clearance Required: Secret

Plateau GRP is seeking a highly qualified Information System Security Manager (ISSM) to lead and manage the cybersecurity operations of the Total Ammunition Management Information System (TAMIS) in accordance with Army Regulation 25-1 and Department of Defense cybersecurity standards. The ISSM will ensure information system security requirements are effectively integrated and maintained throughout the system's software development lifecycle, supporting mission-critical Army applications deployed in multiple cloud environments.

Key Responsibilities:

• Lead and manage the TAMIS cybersecurity program, ensuring compliance with DoD and Army cybersecurity regulations and standards.
• Conduct and document security engineering activities, applying secure architecture and system engineering principles across all TAMIS components.
• Implement Risk Management Framework (RMF) controls and oversee the full lifecycle of cybersecurity processes.
• Manage incident response activities, risk assessments, account approvals, personnel security, and system interconnections.
• Ensure cybersecurity best practices are embedded within the software engineering methodologies and development lifecycle.
• Interface with key stakeholders such as DISA GCDS, ARCYBER, CSSPs, Akamai, and Cloud Service Providers (CSPs) to ensure uninterrupted system operation and compliance.
• Use tools such as eMASS, ACAS, HBSS, Veracode, and monitor cloud deployments in AWS and Microsoft environments.
• Maintain current documentation of cybersecurity postures, System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), and other required artifacts.
• Provide cybersecurity oversight and consultation during architecture reviews, software releases, and configuration changes.

Requirements

• Bachelor's Degree in Information Systems, Information Security, or a related field.
• A current recognized security certification: CISSP, CISM, or an equivalent DoD 8570-compliant certification.
• Minimum 5 years of experience implementing and managing risk-based cybersecurity programs for Army web-based applications in multiple cloud environments.
• At least 2 years of experience specifically managing RMF cybersecurity programs for Army systems in the cloud.
• Demonstrated expertise in:
• RMF processes and control implementations
• ACAS, HBSS, eMASS, Akamai, AWS, Microsoft Operating Systems, and Veracode
• Experience working with or troubleshooting interactions involving:
• DISA GCDS
• ARCYBER
• CSSPs
• Cloud Service Providers (CSPs)

Desired Experience:

• Hands-on experience with one or more of the following Army systems:
• TAMIS
• SAAS-MOD
• GCSS-A / GCSS-MC
• OIS-MC Tactical
• FMSWeb
• AOS
• WebAmmo

Plateau does not accept unsolicited resumes from third-party recruiters without a signed third-party agreement. Any unsolicited third-party resumes forwarded by recruiters to Plateau or to any of our managers or employees will be considered public information, may be treated as a direct application from the person identified in the resume, and will not be eligible for placement fee payment to the agency.

Plateau is an equal opportunity employer; all qualified applicants will receive consideration for employment without regard to age, gender, gender identification, sex, sexual orientation, color, race, creed, national origin, religion, marital status, parental status, citizenship status, ancestry, physical or mental disability, genetic information, veteran status, military status, or any other classification protected by federal, state, or local laws.

We are unable to sponsor at this time. Candidates applying for this job must be authorized to work for any employer in the US, independently.

If you need an accommodation seeking employment with Plateau, please email hr@plateauinc.com. Accommodations are made on a case-by-case basis.