Information Systems Security Manager

Company Description North Wind is an industry leader in the research, development and testing of hypersonic and mission critical systems. North Wind in Newport News, VA and Ronkonkoma, NY has provided independent services and solutions from engineering through manufacturing, integration, and test in support of the most complex Aerospace and Defense programs for over 50 years. We are seeking an Information Systems Security Manager to join our team. Our team is dedicated to developing innovative solutions that drive progress and advance development. Join us and be part of a dynamic, forward-thinking organization where your contributions make a real impact.

Information Systems Security Manager:

The Information Systems Security Manager (ISSM) serves as the principal advisor on all matters—technical and non-technical—related to the security of information systems. This role provides oversight and direction for cybersecurity activities supporting Department of Defense (DoD) programs, including Collateral, Sensitive Compartmented Information (SCI), and Special Access Programs (SAPs). The ISSM ensures compliance with applicable security policies, including the Risk Management Framework (RMF) and Joint SAP Implementation Guide (JSIG), and is responsible for the overall security posture of assigned systems. Responsibilities Oversee the development, implementation, and evaluation of the Information Systems Security Program, with emphasis on integrating and securing SAP network infrastructures. Ensure compliance with all applicable DoD and DCSA requirements for classified systems Lead system authorization activities under RMF, including coordination of security control implementation, assessment, and continuous monitoring to maintain Authority to Operate (ATO). Perform a combination of technical engineering, administrative processing, compliance reporting, user training, and security documentation development. Develop and maintain system security documentation and ensure all systems are operated, maintained, and disposed of in accordance with established cybersecurity policies and procedures. Collaborate with system administrators and stakeholders to enforce security controls. Conduct ISSO-level duties as required and support facility security functions (e.g., audits, inspections) for classified systems to ensure ongoing compliance. Preferred Education /

Experience:

Bachelor's Degree in related discipline; 7+ years of related discipline; DoD 8570/8140 compliant certification (e.g., Security+) A combination of education and experience equivalent to the above Preferred Knowledge /

Ability:

Strong knowledge of DoD cybersecurity requirements, including RMF and JSIG authorization processes Experience supporting SAP, SCI, and collateral classified environments Familiarity with DCSA regulations and security compliance standards Knowledge of vulnerability assessment tools and methodologies Experience with Windows-based systems, hardware configurations, and network security principles Ability to develop and deliver cybersecurity training to system users and administrators Strong written and verbal communication skills