Lead, Cloud Information Security Systems Manager

About The Position

Requirements

• Bachelor’s Degree and minimum 9 years of prior relevant experience. Graduate Degree and a minimum of 7 years of prior related experience. In lieu of a degree, minimum of 13 years of prior related experience.

Nice To Haves

• 5+ years of experience implementing and overseeing NIST-based frameworks within regulated or enterprise environments.
• Demonstrated experience supporting system authorization processes, security control assessments, continuous monitoring, and audit readiness.
• Experience overseeing secure network and cloud architectures, ensuring required security posture at infrastructure and platform layers.
• Experience applying Zero Trust principles and enterprise security best practices across cloud, containerized, and hybrid environments.
• Experience collaborating with engineering and development teams to integrate security requirements into Agile and DevSecOps workflows.
• Familiarity with security automation, continuous monitoring tools, and vulnerability management platforms.
• Strong knowledge of enterprise networking technologies and secure infrastructure operations.
• Experience supporting proposal development, including cybersecurity strategy contributions and Basis of Estimates (BOEs).
• Experience implementing and overseeing customer-specific NIST and FISMA compliance requirements within regulated environments.
• Experience supporting cloud-native and hybrid-cloud environments with integrated CI/CD security controls.
• Experience working in cloud-native and hybrid-cloud environments, integrating security controls into CI/CD pipelines and supporting DevSecOps best practices.
• Relevant certifications such as AWS Certified Security – Specialty, AWS Certified Solutions Architect – Professional, CISSP, CCSP, CSSLP, CCNA, CCNP, CompTIA Security+, or equivalent credentials.

Responsibilities

• Serve as the Information Systems Security Manager (ISSM), providing overall leadership, governance, and oversight of cybersecurity strategy, risk management, and compliance activities across assigned programs and systems.
• Establish and maintain system security architecture, policies, and procedures to ensure alignment with enterprise security objectives and regulatory requirements.
• Lead cybersecurity risk management activities, including system authorization support, control implementation oversight, assessment coordination, and continuous monitoring.
• Partner with Program Management and customer stakeholders to ensure cybersecurity requirements are integrated into program planning, execution, and delivery milestones.
• Oversee the preparation and maintenance of security documentation, including System Security Plans (SSPs), security assessments, Plans of Action & Milestones (POA&Ms), and engineering change documentation.
• Ensure effective implementation and monitoring of NIST-based controls, including validation of technical, administrative, and operational safeguards.
• Provide oversight of DevSecOps integration efforts, ensuring security requirements are embedded within CI/CD pipelines, configuration-as-code, and policy-as-code practices.
• Guide secure design and implementation of cloud-based and hybrid architectures, ensuring adherence to Zero Trust and enterprise security principles.
• Lead cross-functional cybersecurity coordination across engineering, development, operations, and testing teams, promoting secure-by-design practices throughout the system lifecycle.
• Serve as the primary cybersecurity liaison to customer and stakeholder leadership within regulated or federal environments.
• Ability to obtain FAA Public Trust Clearance.