Information System Security Manager; ISSM Clearance Required
Listed on 2026-06-19
-
IT/Tech
Cybersecurity, Information Security, Network Security
Kratos Defense & Security Solutions, Inc., is a leading defense technology company focused on unmanned systems, satellite communications, cyber security/warfare, microwave electronics, missile defense, training, and combat systems. Our customers include the U.S. federal government, foreign governments, commercial enterprises, and state and local government agencies. At Kratos, we prioritize affordability as a cornerstone of our technology. We leverage proven, cutting‑edge methodologies and technology to minimize costs, streamline schedules, and mitigate risks, ensuring timely delivery of cost‑effective solutions to market.
Kratos Unmanned Aerial Systems (KUAS), a division of Kratos Defense, is renowned for its expertise in developing, delivering, integrating, and supporting high‑performance, cost‑effective, jet‑powered Unmanned Aerial Systems (Targets and Tactical). As a mid‑tier defense contractor, we've demonstrated agility and innovation in providing aircraft to the U.S. military and global allies and partners. Our track record of delivering top‑notch jet‑powered subscale targets has established us as a go‑to defense contractor capable of delivering capabilities at an affordable price.
At KUAS, we prioritize innovation, collaboration, and growth. Our team collaborates to cultivate a supportive and dynamic workplace, fostering creativity and promoting professional development while honoring personal and family lives. Join our team and help shape the future of unmanned technology within the defense industry today!
GeneralJob Summary
Responsible for managing Information Systems (IS) security principles and policies, including the Risk Management Framework (RMF), Security Technical Implementation Guides (STIGs), 32 CFR Part 117 National Industrial Security Program Operating Manual (NISPOM), Defense Counterintelligence and Security Agency (DCSA) Assessment and Authorization Process Manual (DAAPM), DoD 5200.01 Information Security Program and Protection of Sensitive Compartmented Information (SCI), and DoD 5205.07 Special Access Program (SAP) Security Manual.
Safeguards networks against unauthorized modification, destruction, or disclosure. Researches, evaluates, designs, tests, recommends, communicates, and implements new security software or devices. Implements, enforces, communicates, and may develop internet, network, or other information security policies or security plans for data, internet, software applications, and hardware, telecommunications, and computer installations.
- Responsible for network address assignment, routing protocols, and configuration of authentication and authorization.
- Utilize SIEM/SEM tools to conduct regular system auditing and trend analysis.
- Develop Security Assessment Reports (SAR) and investigate environmental risk to create Risk Assessment Reports (RAR).
- Develop and maintain a formal information system (IS) security program, including System Security Plans (SSP), Plan of Action & Milestones (POA&M), Risk Assessment Report, and Continuous Monitoring Strategy.
- Develop, implement, and enforce IS security policies.
- Maintain hardware and software that comprises the network (data, voice, and video); deploy, maintain and monitor active network gear, switches, routers, firewalls, and appliances.
- Ensure audit records are collected and analyzed in accordance with policies and procedures.
- Respond to IS security incidents, including investigation and detailed reporting.
- Maintain knowledge of system functions, security policies, technical security safeguards, and operational security measures to restrict unauthorized use of data systems and databases.
- Ensure all users have requisite security clearances, authorization, need‑to‑know, and are aware of their security responsibilities before granting access to the IS.
- Assist with development and implementation of an effective IS security education, training, and awareness program.
- Conduct initial and annual required training of privileged and general users.
- Conduct proof of concept and present proposals for new hardware and software.
- Manage disaster recovery functions for information systems.
- Serve as member of the…
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).