Find a job 
Featured Companies 
Featured Universities 
For Companies At a Glance
- Tasks: Lead cybersecurity efforts to protect critical DoD cloud systems and implement risk management frameworks.
- Company: Join Avint, a dynamic company dedicated to cybersecurity excellence.
- Benefits: Enjoy competitive salary, health benefits, 401K, generous PTO, and professional development support.
- Why this job: Make a real impact in national security while advancing your career in a supportive environment.
- Qualifications: Must have an active Top-Secret clearance and extensive experience in DoD cybersecurity.
- Other info: 100% on-site role at Hanscom Air Force Base with excellent growth opportunities.
The predicted salary is between 132000 - 140000 £ per year.
Avint is hiring an Information Systems Security Manager (ISSM) - SME to support and protect critical DoD cloud-based systems. In this role, you’ll be part of a high-performing team responsible for implementing and overseeing all phases of the Risk Management Framework (RMF) while supporting day-to-day cybersecurity operations. You’ll work at the intersection of security, compliance, and mission impact, helping ensure systems are secure, resilient, and aligned with DoD and Air Force requirements.
This role is 100% ON-SITE at Hanscom Air Force Base in MA and requires an ACTIVE Top-Secret clearance.
The individual in this role will be a member of the team implementing and overseeing all phases of the RMF process and day-to-day cybersecurity activities for DoD cloud-based systems. Primary responsibilities include:
- Supporting the system/application authorization and accreditation (A&A) effort, including assessing and guiding the quality and completeness of A&A activities, tasks, and resulting artifacts mandated by governing DoD and Air Force policies.
- Recommending policies and procedures to ensure the reliability of and accessibility to information systems and to prevent and defend against unauthorized access to systems, networks, and data.
- Conducting risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risks, and protection needs.
- Promoting awareness of security issues among management and ensuring sound security principles are reflected in organisations’ visions and goals.
- Conducting systems security evaluations, audits, and reviews.
- Recommending systems security contingency plans and disaster recovery procedures.
- Recommending and implementing programs to ensure that systems, network, and data users are aware of, understand, and adhere to systems security policies and procedures.
- Participating in network and systems design to ensure implementation of appropriate systems security policies.
- Facilitating the gathering, analysis, and preservation of evidence used in the prosecution of computer crimes.
- Assessing security events to determine impact and implementing corrective actions.
- Ensuring the rigorous application of information security/cybersecurity policies, principles, and practices in the delivery of all IT services.
- Performing the Information System Security Engineer (ISSE) duties in an Information Assurance Workforce System Architecture and Engineering (IASAE) position as outlined in AFI 33-200, AFI 33-210 and AFMAN 33-285 for assigned systems.
- Performing the Information System Security Officer (ISSO) duties as outlined in DoDI 8510.01 for assigned systems/applications.
- Performing the Information System Security Manager (ISSM) duties as outlined in DoDI 8510.01 for assigned systems/applications.
Technical Areas of Expertise:
- Expert knowledge of NIST RMF processes, policies, and DoD directives.
- Expert ability to create and revise standard operating procedures (SOPs), work instructions (WI), and Tactics, Techniques, and Procedures (TTPs).
- Expert ability to create presentations and present policies, guidance, and procedures to varied audiences including senior leadership levels.
- A demonstrated expertise in RMF process.
- Customer service skills.
- A demonstrated ability (including knowledge and experience) to perform tasks related to AF cyber security.
- Knowledge of cloud-based solutions is a plus.
Qualifications:
- Active DoD Top Secret clearance.
- Master's Degree in a Related Field.
- IAM Level III Certification (CISSP is desired).
- 15 years of experience, of which 5 must be in the DoD.
- In-depth knowledge of DoD cyber security policies and regulations.
- Experience in providing security recommendations to senior leadership.
- Bachelor’s Degree and 10 years of prior experience; additional experience may be considered in lieu of degree.
- Candidate must have valid CISSP, Clearance, eMASS experience, DoD/RMF experience, on-site work.
Joining Avint is a win-win proposition! You will feel the personal touch of a small business and receive BIG business benefits, including competitive salaries, full health, a unique 401K plan, and generous PTO and Federal Holidays. Additionally, we encourage every Avint employee to further their professional development. To assist you in achieving your goals, we offer reimbursement for courses, exams, and tuition. Interested in a class, conference, program, or degree? Avint will invest in YOU and your professional development!
Avint is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity employer.
Salary: $165,000-$175,000 based on experience.
Information Systems Security Manager (ISSM) - SME employer: Avint
Contact Detail:
Avint Recruiting Team
StudySmarter Expert Advice 🤫
We think this is how you could land Information Systems Security Manager (ISSM) - SME
✨Tip Number 1
Network like a pro! Reach out to folks in the cybersecurity field, especially those who work with DoD systems. LinkedIn is your best mate here; connect, engage, and don’t be shy to ask for informational chats.
✨Tip Number 2
Prepare for interviews by brushing up on the Risk Management Framework (RMF) and DoD policies. We want you to be the go-to expert in the room, so practice explaining complex concepts in simple terms.
✨Tip Number 3
Showcase your experience with cloud-based solutions and cybersecurity operations. Use real-life examples to demonstrate how you've tackled security challenges in past roles—this will make you stand out!
✨Tip Number 4
Don’t forget to apply through our website! It’s the best way to ensure your application gets the attention it deserves. Plus, we love seeing candidates who are proactive about their job search.
We think you need these skills to ace Information Systems Security Manager (ISSM) - SME
Some tips for your application 🫡
Tailor Your Application: Make sure to customise your CV and cover letter to highlight your experience with the Risk Management Framework (RMF) and DoD cybersecurity policies. We want to see how your skills align with the specific requirements of the Information Systems Security Manager role.
Showcase Your Expertise: Don’t hold back on showcasing your knowledge of NIST RMF processes and your ability to create standard operating procedures. We’re looking for someone who can demonstrate their technical expertise clearly and confidently in their application.
Be Clear and Concise: When writing your application, keep it clear and to the point. Use bullet points where possible to make your achievements stand out. We appreciate a well-structured application that’s easy to read!
Apply Through Our Website: We encourage you to apply directly through our website. It’s the best way for us to receive your application and ensures you don’t miss any important updates about the hiring process. Plus, we love seeing applications come through our own platform!
How to prepare for a job interview at Avint
✨Know Your RMF Inside Out
Make sure you have a solid grasp of the Risk Management Framework (RMF) processes and policies. Brush up on NIST guidelines and DoD directives, as these will likely come up during your interview. Being able to discuss specific examples of how you've implemented RMF in past roles will show you're the right fit for the job.
✨Showcase Your Cybersecurity Expertise
Prepare to discuss your experience with cybersecurity operations, especially in relation to cloud-based systems. Highlight any risk and vulnerability assessments you've conducted and be ready to explain how you’ve recommended policies to enhance security. This will demonstrate your hands-on knowledge and ability to protect critical systems.
✨Communicate Clearly with Confidence
Since you'll be presenting policies and procedures to varied audiences, practice articulating complex information in a clear and concise manner. Consider doing mock interviews with friends or colleagues to refine your delivery. Confidence in your communication can set you apart from other candidates.
✨Prepare Questions for Them
Interviews are a two-way street, so think of insightful questions to ask about the team dynamics, ongoing projects, or the company’s approach to professional development. This shows your genuine interest in the role and helps you assess if Avint is the right fit for you.
