Senior Information Systems Security Manager (ISSM)

Torch Technologies

Thank you for your interest in employment with Torch Technologies. We are a 100% employee-owned, Certified Great Place To Work and named Best Places to Work in Huntsville/Madison County, headquartered in Huntsville, AL. Our team provides superior research, development, and engineering services to the Federal Government and Department of War. As one of the nation's top 100 defense companies, the services we provide directly support the men and women who serve our country. Our corporate mission sums up the pride our employee-owners take in the work we do: "Lighting the Pathway of Freedom". And, as a Certified Evergreen ESOP, we have made the commitment to grow and sustain our company for the next 100 years! Come grow with us!

Torch Technologies is seeking a motivated Senior Information Systems Security Manager (ISSM) with a background in DoW regulations pertaining to RMF and Cybersecurity. Must be able to work in a team environment. The ideal candidate will possess excellent communication skills both oral and written; exhibit the ability to adapt and thrive in a dynamic, work environment servicing multiple agencies. Off Hours support may occasionally be required as mission dictates.

Some of the primary responsibilities will include:

• Provide cybersecurity support per DoDI 8500.01, including assessing and continuously monitoring cybersecurity risk to ensure legacy and new capabilities adhere to enterprise standards such as the Risk Management Framework (RMF), National Institute of Standards and Technology (NIST), and the Authorization Official's. Information System Continuous Monitoring (ISCM) strategy.
• Ensure all cybersecurity-related documentation is current and accessible to properly authorized individuals.
• Enable effective communication channels among stakeholders from various agencies and teams to foster collaboration and information sharing.
• Support the Program Manager (PM) or Information System Owner (ISO) in maintaining current authorization to operate (ATO), approval to connect (ATC) if required, and implementing corrective actions identified in the Plan of Actions and Milestones (POA&M).
• Coordinate with the PM and Authorization Official (AO) staff in the development of an ISCM strategy and monitor any proposed or actual changes to the system and its environment.
• Continuously monitor systems and their environments for security-relevant events.
• Assess proposed configuration changes for potential impact to the cybersecurity posture.
• Assess the quality of security controls implementation against established performance indicators.
• Ensure cybersecurity-related events or configuration changes that impact the authorization, or adversely affect the security posture, are formally reported to the AO and other stakeholders, such as Information Owners (IOs) and data stewards.
• Ensure all Information System Security Officers (ISSOs) and privileged users receive necessary technical training, obtain required cybersecurity certification, and are formally appointed.

Job Requirements:

• U.S. Citizenship.
• Bachelor's Degree in Computer Science or a related field.
• 7+ years in cybersecurity/information assurance, with at least 5 years in a hands-on ISSM role.
• Must have an Active current Secret clearance, with SAP eligibility, and the ability to upgrade to Top Secret.
• Experience leading a DoD system through the full RMF lifecycle to successfully achieve an ATO.
• Expert-level knowledge of RMF, NIST SP 800-53, and DISA STIGs.
• Demonstrable, in-depth experience implementing and validating NIST SP 800-53 controls and reporting findings, artifacts, and other supporting documentation in eMASS.
• Must meet DoD 8140 IASAE Level II or III requirements.
• Proficiency with security tools such as ACAS/Nessus, SCAP Compliance Checker (SCC), and log aggregate tools.
• Strong technical understanding of operating systems (Windows/Linux), networking concepts, and virtualization.
• Experience with managing Communication Security (COMSEC) material.
• Demonstrated experience with managing data spillages and incident response measures.

Preferred Skills:

• An active Top Secret clearance, with SAP eligibility.
• Master's Degree in Computer Science or a related field.
• Experience conducting authorizations under JSIG.
• Direct experience with Sensitive Compartmented Information Facilities (SCIF) and Special Access Program Facilities (SAPF).

Schedule:M-F; 8-5

Work Location: Customer- site

Travel: Yes, 0-10%

Relocation Assistance Available: No

Position Contingent Upon Award of Contract: No

#LI-TS1

Benefits:

Torch Technologies is proud to offer a stable and professional work environment, a competitive salary, and an excellent, comprehensive benefit package including: ESOP participation, 401(k) match and safe-harbor contribution, medical, dental, vision, life insurance, short-term disability, long-term disability, flexible spending accounts, Health Saving Accounts and Health Reimbursement Accounts, EAP, education assistance, paid time off, and holidays.

Applying to Torch Technologies:

Only those candidates invited for an interview will be contacted. Employment at Torch Technologies is contingent upon the successful completion of a comprehensive background check.

All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, genetic information, citizenship, ancestry, marital status, protected veteran status, disability status or any other status protected by federal, state, or local law. Torch Technologies, Inc. participates in E-Verify.

If you are a qualified individual with a disability or a disabled veteran, you have the right to request a reasonable accommodation if you are unable or limited in your ability to use or access Careers Link as a result of your disability. You can request reasonable accommodations by sending an email to HR@torchtechnologies.com. Thank you for your interest in Torch Technologies.