Information Systems Security Manager

Description

Title: Information Systems Security Manager

Location: Hybrid, Washington, DC

Terms: Full-time

Clearance: Ability to obtain a Public Trust

Travel: 0-20%

Position Description:

Harmonia is seeking an Information Systems Security Manager (ISSM) aligned to the National Initiative for Cybersecurity Education (NICE) Framework (Oversee and Govern) to provide leadership and technical oversight for cybersecurity programs supporting Federal government clients.

The ISSM is responsible for the overall cybersecurity posture of assigned programs, systems, or enclaves and provides technical oversight for the execution of all security support activities. The ISSM works closely with government stakeholders, engineering teams, and program leadership to ensure compliance with Federal cybersecurity requirements and may serve in a Project Manager capacity when the designated PM is not available.

This role requires advanced cybersecurity expertise, leadership capability, and demonstrated experience managing security operations and risk management activities in a Federal environment. 

Responsibilities:

• Provide leadership and technical oversight for all cybersecurity activities supporting assigned programs, systems, or enclaves.


• Ensure the confidentiality, integrity, and availability of information systems in accordance with Federal cybersecurity policies and standards.


• Oversee and guide the secure implementation of cloud-based solutions, ensuring alignment with Federal security and compliance requirements.


• Support and manage cybersecurity activities aligned with the NIST Risk Management Framework (RMF), including authorization, continuous monitoring, and compliance reporting.


• Perform and oversee Program Work Statement (PWS) security tasks in support of Federal government projects.


• Serve as a cybersecurity subject matter expert and advisor to program leadership and government stakeholders.


• Provide leadership, management, and oversight to cybersecurity staff and support teams.


• Identify, assess, and manage cybersecurity risks, vulnerabilities, and mitigation strategies.


• Communicate complex cybersecurity concepts, risks, and impacts clearly to both technical and non-technical audiences.


• When required, assume Project Manager responsibilities to ensure continuity of program execution.

Requirements:

• Advanced capability level consistent with the NICE OV-MGT-001 work role, with demonstrated abilities, knowledge, and skills to perform all core tasks.


• Demonstrated, recent experience supporting information security or cybersecurity projects for the Federal government, including experience in a leadership, management, or supervisory capacity.


• One or more of the following certifications (required):

• Certified Information Systems Security Professional (CISSP)


• Certified Information Systems Auditor (CISA)


• Certified in Governance, Risk and Compliance (CGRC)


• Certified in Risk and Information Systems Control (CRISC)


• Certified Information Security Manager (CISM)

• Demonstrated, recent experience in cloud security and guiding the secure implementation of cloud solutions.


• Demonstrated, recent experience performing four (4) of the seven (7) PWS tasks on Federal government projects.


• Bachelor’s degree from an accredited college or university. 

Desired:

• Demonstrated leadership, management, or supervisory experience while performing advanced cybersecurity tasks.


• Splunk Administrator certification.


• Demonstrated, recent experience supporting the secure implementation of cloud-native and emerging technologies, including artificial intelligence, robotic process automation, or similar technologies.


• Master’s degree or higher, and/or a degree in cybersecurity, information technology, or a related field.

#DICE #CJ