Information Systems Security Manager (ISSM)

At HDR, our employee-owners are fully engaged in creating a welcoming environment where each of us is valued and respected, a place where everyone is empowered to bring their authentic selves and novel ideas to work every day. As we foster a culture of inclusion throughout our company and within our communities, we constantly ask ourselves: What is our impact on the world?

Watch Our Story:' '

Each and every role throughout our organization makes a difference in our ability to change the world for the better. Read further to learn how you could help make great things possible not only in your community, but around the world.

HDR is adding an experienced Information Systems Security Manager (ISSM) to lead and oversee the security posture of information systems supporting federal and sensitive programs. The ISSM serves as the authoritative security lead for system authorization, continuous monitoring, and compliance across classified and unclassified environments, ensuring alignment with NIST, RMF, CMMC, and federal cybersecurity requirements. This role partners closely with Corporate Security, IT, Legal, project teams, and external stakeholders to ensure HDR systems are designed, authorized, and operated securely throughout their lifecycle.

Primary Responsibilities

Governance & Risk Management

Serve as the ISSM for assigned systems, overseeing compliance with NIST SP 800-53, RMF, and applicable federal security requirement

Lead system authorization activities including SSP development, risk assessments, POA&M management, and ATO package

Ensure continuous monitoring programs are implemented and maintained

System Security Oversight

Oversee security architecture, boundary definitions, and system interconnection

Validate that security controls are properly implemented and operating as intended

Coordinate vulnerability management, incident response, and remediation activitie

Stakeholder & Program Support

Serve as the primary security advisor to program leadership and system owner

Interface with government customers, assessors, and authorizing official

Support audits, assessments, and external reviews (e.g., DCSA, customer audits)

Policy, Training & Awareness

Contribute to the development and refinement of HDR information security policies and procedure

Support workforce training and awareness related to system security responsibilitie

Mentor ISSOs and technical staff on RMF and compliance best practice

Preferred Qualifications

Experience serving as an ISSM or Senior ISSO

Strong working knowledge of NIST Risk Management Framework (RMF)

Strong working knowledge of NIST SP 800-53 control familie

Experience with System Authorization (ATO) processe

Experience with Continuous Monitoring and POA&M management

Active or previously held U.S. security clearance (Secret or higher)

Experience supporting DoD or DOE program

Familiarity with CMMC Level 2, ITAR, and CUI requirement

Professional certifications such as CISSP, CISM, CAP, GSLC

#LI-KV1

Qualifications

Required Qualifications

• Bachelor's degree in Computer Science/MIS-related area or equivalent work experience
• A minimum of 7 years of experience in planning and support of IT technology and/or security related systems
• A minimum of 2 years of leadership and management experience
• Experience and familiarity with cybersecurity related standards such as NIST 800-171; ISO27001/2
• Experience with cybersecurity system project design and implementation
• In-depth technical knowledge of security architectures, technologies, and best practices
• Ability to develop innovative approaches to problem solving
• Excellent client service and interpersonal skills
• Ability to communicate needs and new ideas with employees and management
• Ability to write technology evaluations and make recommendations to management
• Ability to work with vendors on service requests and other product issues
• Commitment to being an active participant in HDR employee-owned culture
• Experience in working with groups to establish priorities and manage expectations
• Self-starter, with the ability to handle multiple tasks and deadlines with minimal supervision
• Strong verbal and written communication skills
• Capable of performing tasks in a dynamic environment, many times working under tight delivery schedules

What We Believe

HDR is our company. Together, we build on each other's life experiences and perspectives to make great things possible every day. This shapes our collaborative culture, encourages organizational trust and connects us closer to the clients and communities we serve.

Our Commitment

As employee owners, we all have a role in creating an inclusive environment where each of us is welcomed, valued, respected and empowered to bring our authentic selves to work every day.

Our eight Employee Network Groups (Asian Pacific, Black, Hispanic/Latino(a), LGBTQ+, People with Disabilities, Veterans, Women, Young Professionals) help create a sense of belonging and foster a supportive environment where everyone is empowered to engage and contribute. Each group has an executive sponsor and is open to all employees.