INFORMATION SYSTEMS SECURITY MANAGER SKILLS, EXPERIENCE, AND JOB REQUIREMENTS

Published: Sep 16, 2025 - The Information Systems Security Manager has expertise in security engineering, system administration (Windows/Linux), and secure facility operations, with proven ability to develop System Security Plans and RMF documentation. This role requires deep knowledge of NISPOM, ICD, JSIG, and NIST standards, along with experience in Assessment & Authorization, security tools, scripting, and compliance frameworks such as DISA STIGs and SRGs. The Manager also needs strong leadership, communication, and problem-solving skills to troubleshoot issues, manage security plans, and lead the deployment of secure systems.

Essential Hard and Soft Skills for a Standout Information Systems Security Manager Resume
  • RMF Implementation
  • Security Documentation
  • Vulnerability Scanning
  • Network Security
  • Incident Response
  • Continuous Monitoring
  • Patch Management
  • Compliance Validation
  • System Auditing
  • Security Engineering
  • Team Leadership
  • Communication Skills
  • Problem Solving
  • Risk Evaluation
  • Change Management
  • Collaboration Skills
  • Training Delivery
  • Mission Support
  • Security Culture
  • Vendor Relations

Summary of Information Systems Security Manager Knowledge and Qualifications on Resume

1. BS in Network Engineering with 5 years of Experience

  • Related work experience in the field of security authorization.
  • In-depth knowledge of the security authorization processes and procedures as defined in the Risk Management Framework.
  • Familiar with the ICD503, CNSSI1253, NIST SPs 800-37, 800-53, etc.
  • Experience in several of the following areas: knowledge of current security tools, hardware/software security implementation, different communication protocols, and encryption techniques/tools.
  • Familiarity with commercial security products, security authorization techniques, security incident management, and PKI and authorization services.
  • Must have at least a DOD 8570 IAM Level 1 Certification (CompTIA Security+CE).
  • Experience working with the Xacta IA Manager.
  • Highly analytical and effectively able to troubleshoot and prioritize needs, requirements, and other issues.
  • Committed to continuous learning because of the constantly developing nature of cyber attacks.
  • Ability to quickly learn new concepts, data formats, and software.
  • A self-motivated, independent, detail-oriented, responsible team player who exhibits exceptional relationship management skills.

2. BS in Computer Science with 9 years of Experience

  • Expertise with Risk Management Framework (RMF) process and requirements.
  • Strong understanding of Information Systems security best practices and use of security tools and practices.
  • Hold CISSP or DoD IAT/IAM Level II Certification.
  • Ability to manage multiple projects in a dynamic, demanding environment.
  • Experience with Windows servers and an Active Directory environment.
  • Understanding of Information Systems security best practices and use of security tools and practices.
  • Hands-on experience with securing cloud environments (AWS, Azure, or DoD cloud platforms), including identity management and compliance controls.
  • Skilled in conducting vulnerability assessments, prioritizing remediation, and coordinating with teams for timely patch management.
  • Experience drafting, reviewing, and enforcing security policies in line with NIST, DoD, and other regulatory frameworks.
  • Able to apply knowledge to complex practical situations.
  • Strong organizational skills, quick learner, and demonstrated problem-solving abilities.
  • Ability to work well independently and as part of a team.
  • Excellent interpersonal and communication skills, both verbal and written, and can effectively communicate and coordinate with a wide range of internal and external customers.

3. BS in Information Systems with 7 years of Experience

  • Experience in an industrial security program, and knowledge of the DoD or other government security regulatory manuals.
  • In-depth Knowledge of NISPOM, National Industrial Security Program Operating Manual (NISPOM).
  • Completion of the Defense Security Service Academy (DSSA) NISPOM Chapter 8 Requirements.
  • System Administration experience with Windows/Server 2008R2/2016/2019/WXP/W7/W10.
  • Knowledge or experience with object-oriented programming languages, syntax, principles, and design (C#).
  • Knowledge or experience with networking and security, including Networks, Domains, Servers, Certificates, and Security.
  • Experience leading multi-disciplinary teams and assignments.
  • Ability to act as a resource on security policies and procedures.
  • Ability to present analysis with clarity and professionalism, and must be comfortable interacting with senior-level management and portraying a strong professional image.
  • Good project management skills with a focus on timely completion of tasks and the ability to identify and assess a changing array of risks.
  • Ability to communicate effectively both written and orally with all levels of personnel and management.
  • Ability to work well in a dynamic team environment with demands for high volume, good quality personal production.
  • Great organizational skills, an ability to prioritize tasks, be flexible to changing priorities, and perform in a multi-tasked, fast-paced environment.

4. BS in Cybersecurity with 10 years of Experience

  • Experience in information security engineering/architecture/operations.
  • Computer operating systems administration experience (Windows and Linux).
  • Information technology experience working in a secure IS processing facility.
  • Experience in writing System Security Plans (SSPs) and other RMF artifacts as an ISSO or related role.
  • Deep domain knowledge of National Industrial Security Program Operating Manual (NISPOM), Intelligence Community Directives (ICD) security requirements, or the Risk Management Framework (RMF).
  • Working experience in Assessment and Authorization (A&A) processes aligned with NISPOM, ICD, and JSIG security frameworks/policies.
  • Experience with hardware, software, and processes necessary to develop security solutions.
  • Experience with security tools for monitoring, assessing, and analyzing systems.
  • Experience with Linux and Windows Operating Systems and scripting languages.
  • Knowledge of best practices and security requirements, including DISA STIGs, SRGs, and IA tools.
  • Knowledge of NIST publications, such as SP 800-37, 800-53, and 800-171.
  • Excellent organizational and communication skills, and the ability to effectively interact with managers and technical staff.
  • Ability to identify and troubleshoot complex security issues within systems or networks.
  • Ability to develop and execute security plans, such as Vulnerability Management Plan, Security Assessment Plan, Incident Response Plan, etc.
  • Ability to lead design, development, integration, testing, and deployment of security solutions.

5. BS in Software Engineering with 11 years of Experience

  • Directly related Cyber Security experience, and must currently possess DoDD 8570.01-M IAM level III certified credentials (CISSP, CISM, GSLC, or CCISO).
  • Experience with network security and/or systems security, which includes any of the following: architecture, topology, protocols, components, and/or principles.
  • Experience with configuring and/or auditing operating systems.
  • Experience in any of the following: DoD Manuals 8500 series, NIST Special Publications (800-53, 800-37, etc.) SNAC Guides, Nessus, SCAP, NISPOM, ICD-503, and/or ACAS.
  • Experience in executing leadership and managerial duties (i.e., performance development, career coaching, mentoring, training, resource management, budget management, etc.).
  • Experience in the oversight and execution of the Assessment & Authorization processes (Certification & Accreditation), as defined in JSIG/RMF.
  • Experience in the execution and management of Information Systems (IS) incident response and administrative inquiries/investigations in collaboration with the Investigations department.
  • Experience in the oversight and execution of a continuous monitoring/improvement program, including self-inspections, security control assessments, training, log management systems, automated inventory utilities, etc.
  • Experience providing technical security expertise and oversight for complex, cross-domain, heterogeneous classified networked environments in collaboration with internal/external Customers, Information Technology (IT), and other Raytheon Missiles & Defense Business Units.
  • Experience with various types of special test equipment (STE) and/or platform IT.
  • Knowledge in UNIX, Linux, Solaris, IRIX, SUSE, and MAC operating systems.
  • Experience working with the customer, both internal and external, in the development of Basis of Estimates (BOEs) and contract negotiations.
  • Experience with any of the following: NISPOM, JAFAN 6/3, DCID 6/3, JSIG/RMF, and ICD-503 or equivalent requirements to include technical computer/network system auditing.
  • Experience in professional engagements with internal and external customers (i.e., AOs, DAOs, SCAs, Program Managers, etc.), to include negotiating controls/requirements with government Contracting Activities.
Relevant Information
Cybersecurity Manager Skills, Experience, and Job Requirements
Data Security Manager Skills, Experience, and Job Requirements
Information Security Project Manager Skills, Experience, and Job Requirements
Information Security Risk Manager Skills, Experience, and Job Requirements