Information Systems Security Manager (ISSM)

Effective 27 September 2025, federal agencies may only accept resumes up to two pages in length to comply with the OPM Merit Hiring Plan. To ensure your resume can be considered further for opportunities, please resubmit a resume that does not exceed two pages. Please see additional recommendations for formatting your resume at the following link: https://help.test.usajobs.gov/faq/application/documents/resume/page-limit. AFLCMC encourages two-page resumes. Be sure to include your contact information, relevant experience (with information on day/month/year experience began and ended), and information on education, certifications or licensures, and three professional references.<br><br>Come be a part of something big! Fueled by innovation, talent, and ambition, the Air Force Civilian Service (AFCS) is seeking cybersecurity professionals to protect and deploy war-winning capabilities for the United States Air Force. This isn't just another IT job; it's a commitment to national security.<br><br>The Role<br><br>The Air Force Civilian Service (AFCS) is looking for a Full-Time Information Systems Security Manager (ISSM) (NH-2210-03) to join the Air Force Life Cycle Management Center (AFLCMC) at Hanscom AFB, MA.<br><br>This position may close at any time.<br><br>Apply Now!<br><br>Salary: $101,375 to $156,715 per year (Hanscom AFB Locality)<br><br>Incentives: Recruitment, Retention, and Relocation incentives may be available for highly qualified candidates.<br><br>Position Summary<br><br>As a Program ISSM, you will be the cornerstone of the cybersecurity posture for mission-critical Air Force systems. You are the senior security leader responsible for navigating the complexities of DoD regulations and real-world threats. We are seeking a proactive leader who not only understands security procedures but can also analyze emerging risks, implement effective mitigations, and clearly communicate the security landscape to program leadership.<br><br><strong>Qualifications & Requirements<br><br></strong>U.S. Citizenship is required.<br><br>Security Clearance:  You must possess a current and active Top Secret security clearance. Candidates with active TS/SCI are highly preferred. This is a condition of employment.<br><br>Certifications:  You must hold a current DoD 8140/8570 IAM Level II or III certification. The most common are CISSP or CISM.<br><br>Experience: 3-10 years of hands-on experience in information security, information assurance, or cybersecurity, with a clear progression of responsibilities.<br><br>Education:  A bachelor's degree in Cybersecurity, Computer Science, Information Technology, or a related technical field is highly desired.<br><br>Key Responsibilities<br><br>Lead Risk Management Framework (RMF) Execution: Drive the entire assessment and authorization (A&A) lifecycle for complex systems to achieve and maintain their Authority to Operate (ATO). This includes developing and maintaining System Security Plans (SSPs) and managing Plans of Action and Milestones (POA&Ms).<br><br>Develop & Enforce Security Policy: Architect, implement, and enforce security policies and procedures aligned with NIST, CNSSI, and other DoD standards to ensure a robust and compliant security posture.<br><br>Oversee Vulnerability & Incident Management: Direct the vulnerability management program using tools like Nessus and ACAS. Lead and support incident response activities from detection and investigation through to reporting and recovery.<br><br>Provide Technical Security Leadership: Serve as the security subject matter expert, applying a deep understanding of network architecture, operating systems (Windows/Linux), and security tools (SIEM, Splunk, etc.) to safeguard the entire information ecosystem.<br><br>To receive additional information about current and future job openings with AFCS via email notification, please subscribe at www.Afciviliancareers.com and sign up to “Get Career Updates."<br><br>AFCS is an Equal Opportunity Employer.<br><br>