Posted 1 day ago
Secret
$130,000 - $137,000
Unspecified
IT - Security
Honolulu, HI (On-Site/Office)
Information Systems Security Manager
This position requires an active Secret clearance to be considered.
A government contract requires that this position be restricted to U.S. citizens or legal permanent residents. You must provide documentation that you are a U.S. citizen or legal permanent resident to qualify.
The Information Systems Security Manager (ISSM) leads all information assurance efforts to obtain and maintain the Authority to Operate (ATO) for a mission-critical system supporting the USAF PACAF GeoBase program. The primary focus of this role is overseeing the system's security posture and managing the RMF lifecycle. Responsibilities include RMF control implementation, system hardening, vulnerability tracking, and leading ATO documentation efforts. The ideal candidate will have a strong background in DoD cybersecurity, with secondary familiarity in system/database administration.
Compensation & Benefits:
Estimated Starting Salary Range for Information Systems Security Manager: $130,000 to $137,000.
Pay commensurate with experience.
Full time benefits include Medical, Dental, Vision, 401K, and other possible benefits as provided. Benefits are subject to change with or without notice.
Information Systems Security Manager Responsibilities Include:
• Lead the implementation, documentation, and continuous monitoring of Risk Management Framework (RMF) controls.
• Serve as the primary point of contact for all matters related to the system's certification and accreditation (C&A) and ATO.
• Maintain and update all system security artifacts in eMASS, and create and manage Plans of Action & Milestones (POA&M).
• Apply and maintain DISA STIGs across the architecture, including Windows Server, Oracle databases, and IIS web servers.
• Perform and document ACAS and SCAP scan reviews and coordinate all vulnerability remediation efforts.
• Oversee enterprise-level system hardening, patching, and the management of configuration baselines (GPOs, local security policy).
• Ensure the secure configuration of server hardware and software within a distributed IT architecture.
• Secure applications and information using Public Key Infrastructure (PKI).
• Troubleshoot network, database, and application connectivity issues that impact performance or security.
• Draft and maintain critical security documentation, including System Security Plans (SSPs), Standard Operating Procedures (SOPs), and change requests for the Configuration Control Board (CCB).
• Ensure systems remain compliant with all DoD patching and IAVM directives.
• Performs other job-related duties as assigned.
Information Systems Security Manager Experience, Education, Skills, Abilities requested:
• Bachelor's degree in a relevant technical field.
• CompTIA Security+ certification (or other DoD 8570 IAT Level II or higher certification).
• Demonstrated experience with DoD Information Assurance policies and the full life cycle of the certification and accreditation (C&A) process.
• Hands-on experience with the Risk Management Framework (RMF) and creating/managing artifacts in eMASS.
• Proven experience in a DoD environment troubleshooting desktop, web, database, or server problems.
• Strong understanding of DISA STIGs and vulnerability management tools (e.g., ACAS, SCAP).
• Experience administering and securing Windows Server environments, including IIS.
• Strong technical documentation and communication skills.
• Must pass pre-employment qualifications of Cherokee Federal
Company Information:
Cherokee Nation Strategic Programs (CNSP) is a part of Cherokee Federal - the division of tribally owned federal contracting companies owned by Cherokee Nation Businesses. As a trusted partner for more than 60 federal clients, Cherokee Federal LLCs are focused on building a brighter future, solving complex challenges, and serving the government's mission with compassion and heart. To learn more about CNSP, visit cherokee-federal.com.
#CherokeeFederal
#LI-MM1
#OCONUS
Cherokee Federal is a military friendly employer. Veterans and active military transitioning to civilian status are encouraged to apply.
Similar searchable job titles:
• Information Systems Security Officer (ISSO)
• Senior Cybersecurity Engineer
• RMF Systems Engineer
• Windows Systems Administrator
• Information Assurance Engineer
Keywords:
• RMF
• eMASS
• Security+
• STIG
• ACAS
Legal Disclaimer: All qualified applicants will receive consideration for employment without regard to protected veteran status, disability or any other status protected under applicable federal, state or local law.
Many of our job openings require access to government buildings or military installations.
This position requires an active Secret clearance to be considered.
A government contract requires that this position be restricted to U.S. citizens or legal permanent residents. You must provide documentation that you are a U.S. citizen or legal permanent resident to qualify.
The Information Systems Security Manager (ISSM) leads all information assurance efforts to obtain and maintain the Authority to Operate (ATO) for a mission-critical system supporting the USAF PACAF GeoBase program. The primary focus of this role is overseeing the system's security posture and managing the RMF lifecycle. Responsibilities include RMF control implementation, system hardening, vulnerability tracking, and leading ATO documentation efforts. The ideal candidate will have a strong background in DoD cybersecurity, with secondary familiarity in system/database administration.
Compensation & Benefits:
Estimated Starting Salary Range for Information Systems Security Manager: $130,000 to $137,000.
Pay commensurate with experience.
Full time benefits include Medical, Dental, Vision, 401K, and other possible benefits as provided. Benefits are subject to change with or without notice.
Information Systems Security Manager Responsibilities Include:
• Lead the implementation, documentation, and continuous monitoring of Risk Management Framework (RMF) controls.
• Serve as the primary point of contact for all matters related to the system's certification and accreditation (C&A) and ATO.
• Maintain and update all system security artifacts in eMASS, and create and manage Plans of Action & Milestones (POA&M).
• Apply and maintain DISA STIGs across the architecture, including Windows Server, Oracle databases, and IIS web servers.
• Perform and document ACAS and SCAP scan reviews and coordinate all vulnerability remediation efforts.
• Oversee enterprise-level system hardening, patching, and the management of configuration baselines (GPOs, local security policy).
• Ensure the secure configuration of server hardware and software within a distributed IT architecture.
• Secure applications and information using Public Key Infrastructure (PKI).
• Troubleshoot network, database, and application connectivity issues that impact performance or security.
• Draft and maintain critical security documentation, including System Security Plans (SSPs), Standard Operating Procedures (SOPs), and change requests for the Configuration Control Board (CCB).
• Ensure systems remain compliant with all DoD patching and IAVM directives.
• Performs other job-related duties as assigned.
Information Systems Security Manager Experience, Education, Skills, Abilities requested:
• Bachelor's degree in a relevant technical field.
• CompTIA Security+ certification (or other DoD 8570 IAT Level II or higher certification).
• Demonstrated experience with DoD Information Assurance policies and the full life cycle of the certification and accreditation (C&A) process.
• Hands-on experience with the Risk Management Framework (RMF) and creating/managing artifacts in eMASS.
• Proven experience in a DoD environment troubleshooting desktop, web, database, or server problems.
• Strong understanding of DISA STIGs and vulnerability management tools (e.g., ACAS, SCAP).
• Experience administering and securing Windows Server environments, including IIS.
• Strong technical documentation and communication skills.
• Must pass pre-employment qualifications of Cherokee Federal
Company Information:
Cherokee Nation Strategic Programs (CNSP) is a part of Cherokee Federal - the division of tribally owned federal contracting companies owned by Cherokee Nation Businesses. As a trusted partner for more than 60 federal clients, Cherokee Federal LLCs are focused on building a brighter future, solving complex challenges, and serving the government's mission with compassion and heart. To learn more about CNSP, visit cherokee-federal.com.
#CherokeeFederal
#LI-MM1
#OCONUS
Cherokee Federal is a military friendly employer. Veterans and active military transitioning to civilian status are encouraged to apply.
Similar searchable job titles:
• Information Systems Security Officer (ISSO)
• Senior Cybersecurity Engineer
• RMF Systems Engineer
• Windows Systems Administrator
• Information Assurance Engineer
Keywords:
• RMF
• eMASS
• Security+
• STIG
• ACAS
Legal Disclaimer: All qualified applicants will receive consideration for employment without regard to protected veteran status, disability or any other status protected under applicable federal, state or local law.
Many of our job openings require access to government buildings or military installations.
group id: 10215765F
Who We Are
