Cyber Security Manager

Join to apply for the Cyber Security Manager role at Y-12 National Security Complex Recruiter at Y-12 National Security Complex Location: Oak Ridge, TN Job Title: Cybersecurity Authorization Manager Organization: Chief Information Security Off (50003144) Job Specialty: Cyber Security What You'll Do The Cybersecurity Authorizations Manager is responsible for the Cybersecurity Authorization's team, overseeing information system and software continuous authorization to operate, certification, and technical testing.

This role involves developing documentation for new and existing information systems, managing security controls, and collaborating with the security operations team to address cyber risks and threats.

The manager reports to the Chief Information Security Officer (CISO) and works with various managers and teams, requiring an expert understanding of the NIST Risk Management Framework (RMF). The position is based at the Y-12 National Security Center in Oak Ridge, Tennessee.

Specific Job Responsibilities Design, test, and implement secure operating systems, networks, and database products.

Conduct risk assessments and recommend application design improvements.

Utilize encryption, perform penetration and vulnerability analyses, and conduct security research.

Compile security reports for regulatory agencies.

Serve as an Alternate Information System Security Manager (A-ISSM). Implement and stay updated on the NIST RMF and supporting elements.

Monitor and develop mitigations for cyber risks and threats.

Maintain communication with stakeholders and develop cybersecurity training.

Prioritize and coordinate cybersecurity team activities.

Ensure security measures are integrated into IT projects.

Manage compliance activities, including vulnerability mitigation.

Establish policies for cyber controls and monitoring.

Support compliance with DOE/NNSA and NIST standards.

Standardize and automate cybersecurity processes.

Develop work plans within budget and schedule constraints.

Establish metrics, perform audits, and assessments.

Hire, develop, and retain cybersecurity experts.

Support operational and cybersecurity incident response.

Travel approximately 10% per year as required.

Required Knowledge & Training Knowledge of Federal cybersecurity standards (e.g., NIST, DoD STIGs, CNSSI 1253). Risk identification and mitigation skills.

Experience with automated compliance tools and documentation.

Ability to train and mentor staff.

Strong communication skills.

Experience leading self-assessments and audits.

Certifications such as CISSP, CEH, GSIP, or CISM.

Familiarity with compliance scanning tools, ITIL, and project management.

Knowledge of DOE cybersecurity requirements and supporting the DOE/NNSA mission.

What You Can Expect Meaningful work supporting national and global security missions.

Collaborative colleagues and professional growth opportunities.

Competitive pay and benefits.

Work-life balance with flexible options.

Minimum of 5 years of relevant experience with a Bachelor's degree.

Additional Details Seniority level: Mid-Senior level Employment type: Full-time Job function: Information Technology Industry: Defense and Space Manufacturing #J-18808-Ljbffr