MetroStar · 18 hours ago
Sr. Information Systems Security Manager II (6395)
Washington, DC
Full-time
Onsite
Senior Level, Lead/Staff
$207K/yr - $253K/yr
8+ years expMetroStar is focused on building the best teams and delivering exceptional technology services. As a Sr. Information Systems Security Manager II, you will lead cybersecurity governance and risk management for critical systems, ensuring compliance and security posture through effective risk management and collaboration with government stakeholders.
Artificial Intelligence (AI)Cloud Data ServicesCyber SecurityInformation TechnologyMachine LearningManagement ConsultingMobileSoftware
No H1B
Security Clearance RequiredU.S. Citizen Only
Responsibilities
Serve as the primary cybersecurity authority for the program, owning program-level cybersecurity governance and RMF execution
Lead control implementation, assessment, authorization, and continuous monitoring activities across systems and enclaves
Coordinate directly with Government Authorizing Officials (AO), Security Control Assessors (SCA), and program leadership
Oversee ATO issuance, maintenance, audits, POA&Ms, and security reporting using RMF tooling such as Xacta and SNAP
Define, enforce, and validate cybersecurity requirements across contractor and partner teams
Integrate cybersecurity controls and risk management into Agile and DevSecOps workflows
Identify, assess, and proactively mitigate cybersecurity risk, providing risk-based recommendations to senior stakeholders
Communicate security posture, risk, and compliance status clearly to executive and Government leadership to support informed decision-making
Qualification
Required
Active Top Secret security clearance with SCI eligibility required
8+ years of experience in cybersecurity, including specialized experience supporting DoD and Intelligence Community environments
Possess DoD 8140 certification aligned to the 722 Information Systems Security Manager work role, such as Security+ or GSEC, SSCP, CAP, CASP+, CISSP, CCSP, CISM, CISSP-ISSMP, or GSLC
Demonstrated expertise applying the Risk Management Framework, including defining, implementing, and enforcing security requirements for programs, systems, or enclaves
Proven experience serving as the cybersecurity authority for a program or organization, with responsibility for security posture, compliance, and risk acceptance
Hands-on experience overseeing system authorization activities, continuous monitoring, security assessments, and control validation
Demonstrated experience drafting and revising security policies, procedures, and supporting documentation in compliance with applicable directives
Operational experience coordinating with system owners, engineers, auditors, and government stakeholders to manage risk and maintain authorization
Ability to contribute immediately with minimal ramp-up in a mission-critical operational environment
Required technical certifications include CISSP or CISM
Preferred
Bachelor's degree in Computer Science, Cybersecurity, Information Systems, or a related technical field is strongly preferred. Relevant experience may substitute for education requirements
Benefits
Health, dental, and vision insurance
401(k) retirement plan with company match
Paid time off (PTO) and holidays
Parental Leave and dependent care
Flexible work arrangements
Professional development opportunities
Employee assistance and wellness programs
Company
MetroStar
MetroStar is a leading provider of secure digital transformation and Artificial Intelligence (AI)-enabled solutions, specializing in delivering cutting-edge IT services to government agencies and defense organizations.
501-1000 employees
Funding
Current Stage
Late StageTotal Funding
unknown2025-11-12Acquired
Leadership Team
Robert Santos
President and Co-Founder
Recent News
Washington Technology
2025-11-14
2023-09-19
Company data provided by crunchbase