Posted today
Secret
Senior Level Career (10+ yrs experience)
$147,100 - $200,000
Occasional travel
IT - Security
Columbia, MD (On/Off-Site)
About Us
eSimplicity is a modern digital services company that partners with government agencies to improve the lives and protect the well-being of all Americans, from veterans and service members to children, families, and seniors. Our engineers, designers, and strategists cut through complexity to create intuitive products and services that equip federal agencies with solutions to courageously transform today for a better tomorrow.
We are seeking a Senior Program Security Governance Information System Security Manager (ISSM) to provide cross-program security oversight, auditing, and best-practice enforcement across multiple mission programs. In this role, you will serve as the security governance authority across programs, responsible for auditing program security policies, controls, and practices, and directing, standardizing, and enforcing security best practices and compliance requirements.
The Senior ISSM partners with program ISSOs, ISSMs, system owners, and leadership to assess security posture, remediate risks, drive consistency, and ensure alignment with Sponsor security expectations and RMF standards.
Cross-Program Security Governance & Enforcement
Provide enterprise-level oversight of security practices across multiple programs
Establish, socialize, and enforce standard security best practices and processes
Serve as a senior security authority and escalation point for program teams
Direct corrective actions and remediation for identified weaknesses or gaps
Ensure programs maintain consistent security posture and risk management discipline
Influence program leadership decisions related to security and compliance
Security Auditing
Conduct independent audits and evaluations of program security practices
Review implementation of security controls, documentation, and evidence
Validate RMF and A&A compliance across systems and environments
Assess maturity, repeatability, and alignment to Sponsor expectations
Track findings, trends, and systemic program risks across portfolios
Develop recommendations and enforce remediation timelines
Continuous Monitoring & Compliance Oversight
Oversee cross-program continuous monitoring and reporting
Write and maintain SSPs, POA&Ms, SARs, and associated artifacts
Oversee vulnerability remediation, patching, and configuration control
Monitor program readiness for inspections and cyber assessments
Provide structured performance and risk reports to senior stakeholders
Stakeholder Engagement & Security Leadership
Serve as a central coordination point between program ISSOs and ISSMs, engineering and operations teams, and sponsor’s security stakeholders
Drive alignment of security practices across programs and projects
Mentor program-level ISSOs and promote security discipline and culture
Requirements
Required Qualifications:
Bachelor's Degree in Computer Science, Information Systems, Engineering, Mathematics, Physics, or related technical discipline
10+ years of related cybersecurity / ISSM / security governance experience
Experience supporting Intelligence Community or national security programs
Demonstrated experience auditing, assessing, and enforcing security practices across multiple programs or enterprise environments
Experience leading security (up to and including ATOs) in GovCloud environments, both contractor and government owned (including CDE)
Strong background in: RMF / NIST SP 800-53/800-37/800-171, A&A documentation and evidence validation, Continuous Monitoring programs
Experience leading security governance or oversight roles in a DoD or IC setting
Proven ability to influence stakeholders and direct remediation actions
Previously or currently holds US Federal clearance Secret or Top Secret
Excellent communication, risk reporting, and executive briefing skills
While some work may be performed remotely, this role requires the ability and willingness to be on-site with customers as needed
Desired Qualifications:
Experience working in the Federal Contracting industry.
Highly preferred industry certifications such as CISSP, CEH, GIAC, etc.
Working Environment:
eSimplicity supports a hybrid work environment operating within the Eastern time zone so we can work with and respond to our government clients. Expected hours are 9:00 AM to 5:00 PM Eastern unless otherwise directed by your manager.
Occasional travel for training and project meetings. It is estimated to be less than 5% per year.
Benefits:
We offer highly competitive salaries and full healthcare benefits.
Equal Employment Opportunity:
eSimplicity is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender, age, status as a protected veteran, sexual orientation, gender identity, or status as a qualified individual with a disability.
eSimplicity is a modern digital services company that partners with government agencies to improve the lives and protect the well-being of all Americans, from veterans and service members to children, families, and seniors. Our engineers, designers, and strategists cut through complexity to create intuitive products and services that equip federal agencies with solutions to courageously transform today for a better tomorrow.
We are seeking a Senior Program Security Governance Information System Security Manager (ISSM) to provide cross-program security oversight, auditing, and best-practice enforcement across multiple mission programs. In this role, you will serve as the security governance authority across programs, responsible for auditing program security policies, controls, and practices, and directing, standardizing, and enforcing security best practices and compliance requirements.
The Senior ISSM partners with program ISSOs, ISSMs, system owners, and leadership to assess security posture, remediate risks, drive consistency, and ensure alignment with Sponsor security expectations and RMF standards.
Cross-Program Security Governance & Enforcement
Provide enterprise-level oversight of security practices across multiple programs
Establish, socialize, and enforce standard security best practices and processes
Serve as a senior security authority and escalation point for program teams
Direct corrective actions and remediation for identified weaknesses or gaps
Ensure programs maintain consistent security posture and risk management discipline
Influence program leadership decisions related to security and compliance
Security Auditing
Conduct independent audits and evaluations of program security practices
Review implementation of security controls, documentation, and evidence
Validate RMF and A&A compliance across systems and environments
Assess maturity, repeatability, and alignment to Sponsor expectations
Track findings, trends, and systemic program risks across portfolios
Develop recommendations and enforce remediation timelines
Continuous Monitoring & Compliance Oversight
Oversee cross-program continuous monitoring and reporting
Write and maintain SSPs, POA&Ms, SARs, and associated artifacts
Oversee vulnerability remediation, patching, and configuration control
Monitor program readiness for inspections and cyber assessments
Provide structured performance and risk reports to senior stakeholders
Stakeholder Engagement & Security Leadership
Serve as a central coordination point between program ISSOs and ISSMs, engineering and operations teams, and sponsor’s security stakeholders
Drive alignment of security practices across programs and projects
Mentor program-level ISSOs and promote security discipline and culture
Requirements
Required Qualifications:
Bachelor's Degree in Computer Science, Information Systems, Engineering, Mathematics, Physics, or related technical discipline
10+ years of related cybersecurity / ISSM / security governance experience
Experience supporting Intelligence Community or national security programs
Demonstrated experience auditing, assessing, and enforcing security practices across multiple programs or enterprise environments
Experience leading security (up to and including ATOs) in GovCloud environments, both contractor and government owned (including CDE)
Strong background in: RMF / NIST SP 800-53/800-37/800-171, A&A documentation and evidence validation, Continuous Monitoring programs
Experience leading security governance or oversight roles in a DoD or IC setting
Proven ability to influence stakeholders and direct remediation actions
Previously or currently holds US Federal clearance Secret or Top Secret
Excellent communication, risk reporting, and executive briefing skills
While some work may be performed remotely, this role requires the ability and willingness to be on-site with customers as needed
Desired Qualifications:
Experience working in the Federal Contracting industry.
Highly preferred industry certifications such as CISSP, CEH, GIAC, etc.
Working Environment:
eSimplicity supports a hybrid work environment operating within the Eastern time zone so we can work with and respond to our government clients. Expected hours are 9:00 AM to 5:00 PM Eastern unless otherwise directed by your manager.
Occasional travel for training and project meetings. It is estimated to be less than 5% per year.
Benefits:
We offer highly competitive salaries and full healthcare benefits.
Equal Employment Opportunity:
eSimplicity is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, religion, color, national origin, gender, age, status as a protected veteran, sexual orientation, gender identity, or status as a qualified individual with a disability.
group id: RTX1a5323
