Information Systems Security Manager

Job Description

Job Description

KDA, Inc, headquartered in Alexandria, Virginia, has been operating in the United States for more than 20 years. We produce world-leading Remote Weapon Systems (RWS) for the US Army, Marine Corps, and allies at our Johnstown, Pennsylvania factory. We have delivered more than 20,000 PROTECTOR RWS to 28 countries. The National Advanced Surface-to-Air System (NASAMS) is a highly mobile and tailorable capability that protects the airspace of 13 countries and Washington, DC. In 2027, we will do final assembly, test, and sustainment of the Naval Strike Missile and Joint Strike Missile systems at a new factory in southern Virginia.

Join us, and you’ll be part of a high performing team that develops advanced technology solutions to protect people and critical infrastructure in countries around the world. Explore your potential and discover what your future could be with Kongsberg Defense & Aerospace, Inc.

Kongsberg Defense & Aerospace, Inc. is seeking a dedicated and vigilant Information Systems Security Manager (ISSM) to support our growing Toano, VA location. In this key role, you will oversee the cybersecurity posture of our information systems, ensuring full compliance with federal requirements and implementing robust security controls that safeguard the integrity of our technology environment.

As the ISSM, you will take a hands‑on approach to selecting, deploying, and managing security technologies while driving day‑to‑day security operations and leading project‑based improvements across the program. You will also play a critical role in developing, implementing, and enforcing company policies that protect our data and technology assets.

This is an opportunity to shape and strengthen a security program within a mission‑driven organization where your expertise directly supports operational readiness and organizational resilience.

Responsibilities:

• Responsible for supporting adherence to all aspects of a rigorous Risk Management Framework (RMF) compliance program stipulated by NISPOM/DAAPM, STIGs and associated NIST publications.
• Obtain and maintain Authority to Operate (ATO) approvals for various systems by adhering to the Risk Management Framework (RMF).
• Manage cybersecurity efforts throughout the RMF process for one or more assigned programs(s) to include the development and management of System Security documentation, Plans of Action and Milestones (POA&Ms), assessing and auditing systems security controls, and continuous monitoring of controls.
• Provide oversight for all classified systems compliance and ensure the execution of the self-inspection process.
• Ensure all security authorization, certification and accreditation documents in relation to all classified systems are up to date.
• Ensure continuous monitoring (e.g. weekly, monthly, etc.) in accordance with cognizant security authority and company requirements.
• Coordinate security-related activities with information security architects, information system owners and information system security officers and other stakeholders.
• Develop, implement, maintain, oversee and enforce comprehensive security plans, standards and procedures for KDA Inc’s classified systems and facilities.

EDUCATIONAL REQUIREMENTS:

• Bachelor’s degree in information security, information technology, computer science or related field is strongly preferred.

NUMBER OF YEARS AND TYPE OF EXPERIENCE REQUIRED:

• At least 7 years of experience with security, best practices, risk management, and emergency response procedures.
• Must be able to obtain or currently possess an Active Secret Clearance, and IAM Level II certification commensurate with DoD 8570.1M requirements.
• ISSM or relevant cybersecurity experience.
• Customer focused, excellent communicator and ability to work with limited supervision.
• Strong organizational skills.
• Able to interface with other IA team members, other security disciplines (industrial security, physical security, etc.), program personnel and government security representatives.
• Experience with the development of core documentation including System Security Plans, Standard Operating Procedures, Plan of Actions and Milestones, Remediation Plans, and Configuration Management Plans.
• Experience with auditing and certifying compliance of various systems (Windows, Linux, Network Devices and peripherals).
• Experience with development and delivery of IA-related briefings and training material.
• Experience with compliance and vulnerability scanning tools (Nessus, SCAP).

Kongsberg Defense & Aerospace Inc. is part of Kongsberg Gruppen (KONGSBERG), an international knowledge-based group that supplies high technology systems and solutions to its customers engaged in oil and gas production, the merchant marine, and the defense and aerospace industries. Kongsberg Protech Systems USA performs final assembly and testing of Remote Weapon Stations. The company also performs repair and overhaul (R&O) of Remote Weapon Stations that come back from field operations.

In addition to competitive wages, we provide an excellent package of benefits, which presently includes company-paid health, vision and dental insurance, 401(k) with competitive match, a 9/80 work schedule, life insurance and paid time off (PTO).

Kongsberg Defense & Aerospace, Inc. is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any other applicable state or federal protected class. Kongsberg Defense & Aerospace, Inc. provides affirmative action in employment for qualified Individuals with a Disability and Protected Veterans in compliance with Section 503 of the Rehabilitation Act and the Vietnam Era Veterans’ Readjustment Assistance Act.

Job Type: Full-time

Pre-employment Requirements:

KDA, Inc. requires all candidates to successfully complete a pre‑employment physical, drug and alcohol screening, and a background investigation as part of the hiring process.

Benefits:

401(k) matching

Dental insurance

Flexible schedule

Flexible spending account

Health insurance

Health savings account

Life insurance

Paid time off

Referral program

Tuition reimbursement

Vision insurance

Schedule:

980 schedule

Hybrid option (M & F) after 6-12 months probationary period

Ability to commute/relocate:

Toano, VA: Reliably commute or planning to relocate before starting work (Required).

Education:

Bachelor’s degree in information security, information technology, computer science or related field is strongly preferred.

Experience:

At least 7 years of experience with security, best practices, risk management, and emergency response procedures.

Training:

6 months (+)

Work Location:

In person/Hybrid