Information Systems Security Manager

Cherokee Federal•Honolulu, HI

1d•$130,000 - $137,000

About The Position

This position requires an active Secret clearance to be considered. A government contract requires that this position be restricted to U.S. citizens or legal permanent residents. You must provide documentation that you are a U.S. citizen or legal permanent resident to qualify. The Information Systems Security Manager (ISSM) leads all information assurance efforts to obtain and maintain the Authority to Operate (ATO) for a mission-critical system supporting the USAF PACAF GeoBase program. The primary focus of this role is overseeing the system's security posture and managing the RMF lifecycle. Responsibilities include RMF control implementation, system hardening, vulnerability tracking, and leading ATO documentation efforts. The ideal candidate will have a strong background in DoD cybersecurity, with secondary familiarity in system/database administration. Compensation & Benefits: Estimated Starting Salary Range for Information Systems Security Manager: $130,000 to $137,000. Pay commensurate with experience. Full time benefits include Medical, Dental, Vision, 401K, and other possible benefits as provided. Benefits are subject to change with or without notice.

Requirements

Bachelor’s degree in a relevant technical field.
CompTIA Security+ certification (or other DoD 8570 IAT Level II or higher certification).
Demonstrated experience with DoD Information Assurance policies and the full life cycle of the certification and accreditation (C&A) process.
Hands-on experience with the Risk Management Framework (RMF) and creating/managing artifacts in eMASS.
Proven experience in a DoD environment troubleshooting desktop, web, database, or server problems.
Strong understanding of DISA STIGs and vulnerability management tools (e.g., ACAS, SCAP).
Experience administering and securing Windows Server environments, including IIS.
Strong technical documentation and communication skills.
Must pass pre-employment qualifications of Cherokee Federal

Responsibilities

Lead the implementation, documentation, and continuous monitoring of Risk Management Framework (RMF) controls.
Serve as the primary point of contact for all matters related to the system’s certification and accreditation (C&A) and ATO.
Maintain and update all system security artifacts in eMASS, and create and manage Plans of Action & Milestones (POA&M).
Apply and maintain DISA STIGs across the architecture, including Windows Server, Oracle databases, and IIS web servers.
Perform and document ACAS and SCAP scan reviews and coordinate all vulnerability remediation efforts.
Oversee enterprise-level system hardening, patching, and the management of configuration baselines (GPOs, local security policy).
Ensure the secure configuration of server hardware and software within a distributed IT architecture.
Secure applications and information using Public Key Infrastructure (PKI).
Troubleshoot network, database, and application connectivity issues that impact performance or security.
Draft and maintain critical security documentation, including System Security Plans (SSPs), Standard Operating Procedures (SOPs), and change requests for the Configuration Control Board (CCB).
Ensure systems remain compliant with all DoD patching and IAVM directives.
Performs other job-related duties as assigned.