Information Systems Security Manager

Hidden Level is transforming airspace safety with innovative, scalable drone detection and airspace technology.

We provide real-time, actionable data to enhance security across various environments.

As we expand, we're looking for an Information Systems Security Manager (ISSM) who is responsible for the oversight, implementation, and sustainment of security compliance programs within secure enclaves and enterprise systems.

This includes ensuring strict adherence to NISPOM, NIST SP 800-171, CMMC (Cyber Security Model Certification), and other applicable regulatory frameworks.

The ISSM plays a key leadership role in risk management, secure systems architecture, audit readiness, and the overall protection of Controlled Unclassified Information (CUI). Location: This position is on-site in Syracuse, NY, with local travel between offices required.

Responsibilities: + Support the Information Technology Department with implementation of SP NIST 800-171, and CMMC Level 2 or higher requirements for all systems.

+ Ensure ongoing compliance with the Defense Federal Acquisition Regulation Supplement (DFARS), NISPOM, and Defense Counterintelligence and Security Agency (DCSA) requirements.

+ Maintain the organizationu2019s System Security Plans (SSPs), Plans of Action and Milestones (POA&Ms), and security control documentation.

+ Develop, maintain, and enforce IT and cybersecurity policies, procedures, and standards (e.g., Access Control, Secure Media Handling, Training, Encryption, etc.). + Conduct periodic risk assessments, monitor vulnerability scans, and coordinate remediation plans with Information Technology staff.

+ Maintain compliance status in the Supplier Performance Risk System (SPRS) and other government reporting portals.

+ Lead or support investigations of security incidents, including coordination with external partners or government agencies.

+ Ensure audit logs and monitoring tools are in place to detect unauthorized activity and meet logging requirements.

+ Serve as the lead advisor to Information Systems security Officers (ISSO). and staff within the secure cage and classified areas.

+ Conduct regular security trainings in accordance with NIST and DoD requirements across the organization.

+ Collaborate with proposal teams to write security and compliance-related sections for new government contracts.

+ Provide security subject matter expertise during security control design or infrastructure changes.

+ Report directly to the IT Security Manager, playing a major role in the growth of the company.

+ Assist the IT Security Manager with developing IT and security policies and procedures to enable all aspects of the business.

+ Help guide sensible IT decisions by working with management and teammates to create an environment of trust and productivity.

What Weu2019re Looking For: + Ability to collaborate with cross-functional teams to develop solutions that serve the entire company.

+ Ability to work in a fast-paced environment and overcome technical challenges through teamwork and collaboration.

+ Excellent written and oral communication skills, coupled with the ability to listen, question, and understand stakeholder needs.

+ Deep knowledge of IT best practices, industry standards, policies, and regulations.

+ A keen attention to detail and great project management skills, including organization, planning, time management and prioritization.

Required Qualifications: + Bacheloru2019s degree (or equivalent) in Information Security, Computer Science, or a related field; advanced degree or certifications (e.g., CISSP, CISM). + 5+ years related professional experience developing and maintaining NISPOM, NIST 800-171, NIST 800-53 or CMMC compliance in a company.

+ Experience configuring and testing security policies that comply with NISPOM, NIST, CMMC and Federal standards for best security practices.

+ Familiarity with eMASS, SCAP tools, ACAS/Nessus, and Microsoft security tools.

Experience using Windows, Linux and MacOS operating systems is preferred.

+ Must have or be able to obtain a Secret security clearance / Must be able to meet security eligibility requirements required by the position Preferred Qualifications: + Certification programs such as FedRAMP, SOC-2, and similar + Working experience with US export regulations + Knowledge of cloud-based servers and solutions and their security strengths and weaknesses Compensation and Benefits: Hidden Level offers a competitive salary and a comprehensive benefits package, including health insurance, paid parental leave, flexible time off, 401(k) with employer contributions, life insurance, disability insurance, and potential stock options.

Salary Range : The anticipated salary range for this position based out of Syracuse, NY is estimated at $88,000 to $100,000 annually.

Please note that the salary information is a general guideline only.

Hidden Level considers factors such as (but not limited to) scope and responsibilities of the position, candidate's work experience, education/ training, key skills as well as market and business considerations when extending an offer.

Equal Opportunity Employer: Hidden Level is an Equal Opportunity/ Affirmative Action employer.

All qualified individuals are encouraged to apply and will be considered for employment without regard to race, color, religion, national origin, sex (including pregnancy), sexual orientation, gender identity, age, veteran, disability status, or any other federal, state, or locally protected category.

Security Note: Due to the nature of Hidden Levelu2019s technology only U.S.

citizens can be considered for this position.