Purpose and Scope:

The Information Security Manager serves as the strategic lead for the Cybersecurity Team, bridging organizational objectives with technical execution. This role is responsible for coordinating the resources, talent, and security strategy required to protect the hybrid ecosystem, including Cloud, IT, and Operational Technology (OT) environments. The position functions as a key advisor to NASA stakeholders, ensuring that the organization’s security posture remains resilient, compliant, and aligned with modern Zero Trust principles.

Job Duties and Essential Responsibilities:

• Lead the transition toward a Zero Trust Architecture (ZTA), focusing on identity-centric security, least-privileged access, and continuous verification across all networks.
• Manage security requirements for Cloud and hybrid deployments, ensuring controls are integrated into the broader security strategy.
• Manage and report on critical contract performance metrics, ensuring all deliverables meet or exceed stakeholder expectations.
• Advise senior leadership on evolving risk levels, providing data-driven insights to inform mission-critical decisions.
• Lead the end-to-end A&A process to obtain and sustain Authorization to Operate (ATO). Ensure all artifacts within the NASA Information Security Management System are accurate and audit ready.
• Oversee the implementation of NIST-based technical and operational controls. Track audit findings and drive the closure of Plan of Action and Milestones (POA&Ms).
• Champion security awareness across the organization, ensuring both general and privileged users are equipped to defend against modern threats and malicious code.
• Development and maintenance of required system plans and policies: Configuration Management Plan (CMP), Contingency Plan (CP), Continuity of Operations (COOP) and Disaster Recovery Plan (DRP) (as required), and Incident Response Plan (IRP).
• Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, A&A packages, and Interconnection Agreements.
• Knowledge of supply chain security and supply chain risk management policies, requirements, and procedures.
• Knowledge of laws, policies, procedures, or governance relevant to cybersecurity for critical infrastructures.
• On occasion, work extended hours (other than normal business hours) to support contractual requirements to meet customer needs.

Required Education/Certifications/Experience:

• BS/BA in Computer Science or Information Systems. Equivalent experience may be substituted for degree
• Minimum 10+ years cybersecurity experience as ISSO or ISM.
• Active Security+ required.
• Experience with NIST/FISMA frameworks and the RMF process.

Preferred Education/Certifications/Experience:

• CISSP, CCSP (Certified Cloud Security Professional), CISM, or CCISO certifications are highly preferred.

Required Minimum Position Knowledge, Skills, and Abilities:

• Understanding of hybrid environments (Cloud/On-prem) and the unique security requirements of OT/Industrial Control Systems.
• Proven ability to translate complex technical risks into actionable business language for non-technical stakeholders.

Other Requirements:

• Must be a U.S. citizen and able to obtain and maintain required clearances/badges as required by program and position.
• Must have the ability to communicate in English, both verbal and written in an effective manner.
• Must have and maintain a valid driver’s license.

Work Environment, Physical Demands, and Mental Demands:

This position involves work typical of an office environment with no unusual hazards; occasional lifting to 20 pounds; constant sitting with use of computer terminal; constant use of sight abilities while reviewing documents; constant use of speech/hearing abilities for communication; constant mental alertness; must possess planning/organizing skills and must be able to work under deadlines. Field work will consist primarily of site walk downs in support of design projects and system trouble shooting Site hazard training and Personal Protective Equipment are provided.

Company Conformance Statement

In the performance of their respective tasks and duties all employees are required to conform to the following:

• Perform quality work within deadlines with or without direct supervision.
• Interact professionally with other employees, customers, and suppliers.
• Work independently while understanding the necessity for communicating and coordinating work efforts with other employees and organizations.

Employees are required to:

• Comply with all applicable safety and health-related rules, regulations, and procedures.
• Work safely themselves and help their teammates work safely.
• Assist supervisors and managers in identifying and mitigating potentially hazardous conditions.
• Help the organization maintain a safe and healthy workplace.

Compensation Details:

The compensation range or hourly rate listed for this position is provided as a good-faith estimate of what the company intends to offer for this role at the time this posting was issued. Actual compensation may vary based on factors such as job responsibilities, education, experience, skills, internal equity, market data, applicable collective bargaining agreements, and relevant laws.

Benefits Overview:

Our health and welfare benefits are designed to support you and your priorities. Offerings include:

• Health, dental, and vision insurance

• Paid time off and holidays

• Retirement benefits (including 401(k) matching)

• Educational reimbursement

• Parental leave

• Employee stock purchase plan

• Tax-saving options

• Disability and life insurance

• Pet insurance

Note: Benefits may vary based on employment type, location, and applicable agreements. Positions governed by a Collective Bargaining Agreement (CBA), the McNamara-O'Hara Service Contract Act (SCA), or other employment contracts may include different provisions/benefits.

Original Posting:

Amentum anticipates this job requisition will remain open for at least three days, with a closing date no earlier than three days after the original posting. This timeline may change based on business needs.

Amentum is proud to be an Equal Opportunity Employer. Our hiring practices provide equal opportunity for employment without regard to race, sex, sexual orientation, pregnancy (including pregnancy, childbirth, breastfeeding, or medical conditions related to pregnancy, childbirth, or breastfeeding), age, ancestry, United States military or veteran status, color, religion, creed,  marital or domestic partner status, medical condition, genetic information, national origin, citizenship status, low-income status, or mental or physical disability so long as the essential functions of the job can be performed with or without reasonable accommodation, or any other protected category under federal, state, or local law. Learn more about your rights under Federal laws and supplemental language at Labor Laws Posters.