The Information Security Manager is a pivotal leadership role within our cybersecurity framework, entrusted with the responsibility of safeguarding our company's digital assets, infrastructure, and information systems against cyber threats. This role is not only about safeguarding our digital assets but also about crafting and executing a comprehensive plan to achieve CMMC certification. The individual will spearhead the development of cybersecurity frameworks and controls that support our software developers and mechanical engineers, enabling them to excel without compromising on compliance and security standards. The salary range for this position is variable, based on experience. $150K - $203K
Lead the organization's journey to CMMC certification, ensuring compliance with DFARS 7012
Direct the assessment and gap analysis of current practices against CMMC standards, identifying areas for improvement and leading the charge to address them
Lead cross-departmental collaborations to understand the unique operational needs of software development and mechanical engineering teams, integrating these requirements into the security frameworks to foster an environment of innovation while maintaining compliance
Develop, enhance, and enforce IT security policies and procedures that meet compliance standards
Regularly update and patch network infrastructure (Fortinet Stack)
Directly administer firewall rules and VLAN management
Ensure the security, integrity, and availability of mission-critical systems through regular updates, patches, and vulnerability assessments
Identify and rectify deficiencies and improve current IT functions, technologies, and processes
Administer Microsoft 365 and AzureAD, ensuring secure and efficient operations
Oversee inventory management and Endpoint Management Solutions (EMS) via Microsoft Intune
Pioneer the development of compliant Ubuntu Linux baselines to adhere to NIST 800-171 controls
Conduct gap assessment an improve Windows baseline to adhere to NIST 800-171 controls
Oversee the IT team, providing guidance and hands-on support when necessary
Provide end user support
Conduct continuous monitoring by integrating our existing SIEM solution and create effective dashboards and automated alerts
Manage relationships with third-party cloud providers and vendors, ensuring secure collaborations
Champion the adoption and administration of secure password management systems and cultivate a cybersecurity-aware culture through regular training and educational initiatives
Act as the Information System Security Manager (ISSM) for environments governed by NIST 800-53
Seniority level
Mid-Senior level
Employment type
Full-time
Job function
Information Technology
Industries
Defense and Space Manufacturing
Referrals increase your chances of interviewing at OKSI by 2x