Information System Security Manager
Listed on 2026-07-04
-
IT/Tech
Cybersecurity, Information Security
Type of Requisition:
Regular
Clearance Level Must Currently Possess:
Secret
Clearance Level Must Be Able to Obtain:
Secret
Public Trust/Other
Required:
None
Job Family:
Cyber and IT Risk Management
Job Qualifications:
- Skills: DISA STIG, NIST Risk Management Framework, Operations Security
- Certifications: None
- Experience: 3+ years of related experience
- US Citizenship
Required:
Yes
Job Description:
Help safeguard critical government systems by applying your hands‑on ISSM/ISSO experience to security governance, risk evaluation, and compliance oversight. As an IT and Cyber Risk Auditor at GDIT, you will leverage your background managing RMF controls, system documentation, and continuous monitoring activities to deliver thorough, accurate, and mission‑focused security assessments.
This role is ideal for cybersecurity professionals who have previously served as an ISSM or ISSO and are seeking to transition into a dedicated risk, audit, and compliance position where they can influence security posture across multiple systems and programs.
Meaningful Work and Personal ImpactAs an IT and Cyber Risk Auditor, the work you do at GDIT will have a direct and measurable impact on our customer's mission. You’ll help ensure the integrity, security, and compliance of their IT systems by identifying potential risks, validating critical controls, and supporting continuous improvement efforts. Your work will enhance operational resilience and enable the customer to execute their mission with confidence.
Responsibilities- Conduct security audits and RMF control assessments by applying your deep understanding gained through previous ISSO/ISSM responsibilities.
- Review, validate, and enhance security artifacts such as SSPs, POA&Ms, and continuous monitoring deliverables.
- Evaluate system security controls to determine effectiveness, sufficiency, and alignment with NIST 800‑53, DoD requirements, and organizational policies.
- Work with ISSOs/ISSMs and technical teams to interpret findings, recommend remediation actions, and ensure timely closure of vulnerabilities.
- Analyze system changes, configuration updates, and vulnerability outputs to determine authorization impacts and risk‑level adjustments.
- Support ATO maintenance by tracking assessments, evidence, and documentation needed for successful RMF lifecycle execution.
- Prepare and deliver clear, risk‑focused briefings to system owners and stakeholders regarding audit findings and compliance status.
- Education: Bachelor’s degree or 4+ years of additional work experience/training/education in lieu of a degree.
- Experience: 3+ years of related experience as a prior ISSO/ISSM.
- Certifications: IAT II (Security+, SSCP, CCNA Security).
- Technical
Skills:
Strong understanding of NIST SP 800‑53, DoD cybersecurity requirements, and control implementation/assessment practices. Familiarity with Windows/Linux environments, vulnerability tools, and security baselines. - Security Clearance: Must have an active Secret clearance.
- US Citizenship: Required.
- Role Requirements: Onsite, 5 days per week.
GDIT offers comprehensive benefits, including:
- Growth: AI-powered career tool that identifies career steps and learning opportunities.
- Support:
Internal mobility team focused on helping you achieve your career goals. - Rewards:
Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off. - Community:
Award‑winning culture of innovation and a military‑friendly workplace.
Salary: The likely salary range is $81,349 – $100,050.
Scheduled Weekly
Hours:
40
Travel Required: Less than 10%
Telecommuting Options: Onsite
Work Location: USA VA Falls Church
Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans
#J-18808-Ljbffr(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).