Information Systems Security Manager

Kongsberg Defense & Aerospace Inc•Toano, VA

1d•Hybrid

About The Position

Kongsberg Defense & Aerospace, Inc. is seeking a dedicated and vigilant Information Systems Security Manager (ISSM) to support our growing Toano, VA location. In this key role, you will oversee the cybersecurity posture of our information systems, ensuring full compliance with federal requirements and implementing robust security controls that safeguard the integrity of our technology environment. As the ISSM, you will take a hands‑on approach to selecting, deploying, and managing security technologies while driving day‑to-day security operations and leading project‑based improvements across the program. You will also play a critical role in developing, implementing, and enforcing company policies that protect our data and technology assets. This is an opportunity to shape and strengthen a security program within a mission‑driven organization where your expertise directly supports operational readiness and organizational resilience.

Requirements

At least 7 years of experience with security, best practices, risk management, and emergency response procedures.
Must be able to obtain or currently possess an Active Secret Clearance, and IAM Level II certification commensurate with DoD 8570.1M requirements.
ISSM or relevant cybersecurity experience.
Customer focused, excellent communicator and ability to work with limited supervision.
Strong organizational skills.
Able to interface with other IA team members, other security disciplines (industrial security, physical security, etc.), program personnel and government security representatives.
Experience with the development of core documentation including System Security Plans, Standard Operating Procedures, Plan of Actions and Milestones, Remediation Plans, and Configuration Management Plans.
Experience with auditing and certifying compliance of various systems (Windows, Linux, Network Devices and peripherals).
Experience with development and delivery of IA-related briefings and training material.
Experience with compliance and vulnerability scanning tools (Nessus, SCAP).

Responsibilities

Responsible for supporting adherence to all aspects of a rigorous Risk Management Framework (RMF) compliance program stipulated by NISPOM/DAAPM, STIGs and associated NIST publications.
Obtain and maintain Authority to Operate (ATO) approvals for various systems by adhering to the Risk Management Framework (RMF).
Manage cybersecurity efforts throughout the RMF process for one or more assigned programs(s) to include the development and management of System Security documentation, Plans of Action and Milestones (POA&Ms), assessing and auditing systems security controls, and continuous monitoring of controls.
Provide oversight for all classified systems compliance and ensure the execution of the self-inspection process.
Ensure all security authorization, certification and accreditation documents in relation to all classified systems are up to date.
Ensure continuous monitoring (e.g. weekly, monthly, etc.) in accordance with cognizant security authority and company requirements.
Coordinate security-related activities with information security architects, information system owners and information system security officers and other stakeholders.
Develop, implement, maintain, oversee and enforce comprehensive security plans, standards and procedures for KDA Inc’s classified systems and facilities.