Information Systems Security Manager

IT Systems Engineer / Information Systems Security Manager (ISSM)

The Applied Research Laboratory for Intelligence & Security (ARLIS) at the University of Maryland is seeking an IT systems Engineer who will also serve as an Information Systems Security Manager (ISSM) to support advanced research programs at the intersection of technology and national security. This role operates within a mission-driven environment focused on delivering secure, scalable, and high-performance computing and information systems in support of classified and unclassified research. ARLIS works at the intersection of academic innovation and intelligence community priorities, addressing complex, real-world national security challenges.

The ideal candidate is a hands-on technical leader with deep expertise in systems engineering, cybersecurity, and compliance frameworks, capable of operating in highly regulated environments while enabling cutting-edge R&D. Final offer is contingent upon the candidate's ability to successfully obtain the necessary interim Secret security clearance, as determined by the U.S. Government, prior to commencing employment.

Key Responsibilities:

• Design, implement, and maintain secure IT systems and infrastructure supporting research and operational environments.
• Serve as ISSM, ensuring compliance with applicable federal cybersecurity frameworks (e.g., NIST RMF, ICD 503, CNSSI).
• Lead system authorization activities, including ATO/ATO renewals, continuous monitoring, and security documentation.
• Develop, implement, and enforce security policies, procedures, and controls across classified and controlled environments.
• Partner with research teams to enable secure execution of AI/ML, data science, and advanced analytics workloads.
• Oversee vulnerability management, incident response, and risk mitigation strategies.
• Manage identity, access control, auditing, and system hardening in accordance with mission requirements.
• Collaborate with IT operations, networking, and cloud teams to ensure resilient and compliant system architectures.
• Support audits, inspections, and stakeholder engagements with government sponsors and oversight bodies.
• Contribute to strategic IT initiatives that advance ARLIS research capabilities and infrastructure.

Physical Demands:

Sedentary work performed in a normal office environment; exerts up to 10 pounds of force occasionally and/or negligible amount of force frequently or constantly to lift, carry, push, pull or otherwise move objects, including the human body. Ability to attend meetings both on and off campus. Spending long hours in front of a computer screen.

Licenses/ Certifications: N/A

Minimum Qualifications:

Education: Bachelor's degree from an accredited college or university.

Experience: Three (3) years of professional experience in IT systems engineering, cybersecurity, or IT infrastructure. One (1) year of experience leading or supervising professional staff.

Other: Additional work experience as defined above may be substituted on a year for year basis for up to four (4) years of the required education.

Other: Must be able to obtain a U.S. security clearance. If selected, you must meet the requirements for access to classified information and will be subject to a government security clearance investigation that includes criminal and credit history checks, as well as verification of U.S. citizenship, birth, education, employment, and military history.

Knowledge, Skills, & Abilities:

Knowledge of federal cybersecurity frameworks and standards, including NIST Risk Management Framework (RMF), ICD 503, and CNSSI requirements for classified and controlled systems.

Knowledge of cybersecurity principles such as system hardening, identity and access management, vulnerability management, and secure system architecture design.

Knowledge of system authorization processes, including Authorization to Operate (ATO) development, renewal, and continuous monitoring requirements.

Knowledge of secure research computing environments, including infrastructure supporting AI/ML, data science, and high-performance computing workloads.

Skill in designing, implementing, and maintaining secure IT systems and infrastructure in complex or research-driven environments.

Skill in leading ATO lifecycle activities, including documentation, security control implementation, assessment coordination, and continuous monitoring.

Skill in vulnerability management, incident response coordination, and risk mitigation planning.

Skill in collaborating across IT operations, cloud, networking, and research teams to ensure secure and compliant system operations.

Ability to serve effectively as an Information Systems Security Manager (ISSM) with accountability for system security and compliance.

Ability to interpret and apply federal cybersecurity requirements to operational and research environments.

Ability to manage competing priorities across multiple systems while maintaining compliance with security and accreditation requirements.

Ability to communicate complex cybersecurity requirements to technical teams, leadership, and external oversight bodies.