1

Issm Jobs in Alabama (NOW HIRING)

next page

Showing results 1-20

Issm information

See Alabama salary details

$41.7K

$107.3K

$167.2K

How much do issm jobs pay per year?

As of Jul 16, 2026, the average yearly pay for issm in Alabama is $107,250.00, according to ZipRecruiter salary data. Most workers in this role earn between $86,100.00 and $125,100.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive in the Issm position, and why are they important?

To excel as an Information System Security Manager (ISSM), you need a strong background in information security, risk management, and compliance, typically supported by a degree in cybersecurity, computer science, or a related field. Familiarity with security frameworks (such as NIST or ISO 27001), vulnerability assessment tools, and certifications like CISSP or CISM are commonly required. Leadership, attention to detail, and effective communication are important soft skills for managing security teams and collaborating across departments. These skills help ensure organizational data is protected, compliance standards are met, and business operations remain secure.

What is an ISSM job?

An Information Systems Security Manager (ISSM) is responsible for overseeing and implementing cybersecurity policies for an organization's information systems. They ensure compliance with security standards, manage risk assessments, and coordinate with security teams to protect sensitive data. ISSMs work closely with IT and leadership to develop and enforce security strategies that align with regulatory requirements.

What are the typical daily responsibilities of an Information System Security Manager (ISSM)?

An ISSM’s daily responsibilities often include overseeing the implementation and monitoring of security controls, performing regular risk assessments, and ensuring compliance with relevant security policies and regulations. You may also coordinate incident response efforts, review system access logs, and provide guidance to IT staff on best practices. Additionally, ISSMs frequently interact with auditors, senior management, and cross-functional teams to report on security findings and advise on system improvements. This role requires staying current with emerging threats and adapting security strategies to protect organizational assets effectively.

How much does an ISSM make?

An Information Systems Security Manager (ISSM) typically earns between $100,000 and $160,000 annually, depending on experience, certifications like CISSP, and the organization. Salaries in the Washington, D.C. area tend to be higher due to the demand for cybersecurity expertise in government and defense sectors.

What is the career path of the ISSM?

An Information Systems Security Manager (ISSM) typically advances through roles such as cybersecurity analyst, security engineer, and security architect before reaching the ISSM position. Career progression often involves gaining certifications like CISSP and experience in information security management, with opportunities to move into senior leadership or specialized security roles.

What can I do with an information systems management degree?

An information systems management degree prepares individuals for roles such as IT manager, systems analyst, network administrator, or cybersecurity manager. These positions involve overseeing technology infrastructure, managing IT projects, and ensuring data security, often requiring knowledge of project management, networking, and relevant certifications like CISSP or PMP.

Can you make $200,000 in cyber security?

Cybersecurity professionals, including roles like ISSM (Information Systems Security Manager), can earn $200,000 or more with extensive experience, advanced certifications (such as CISSP or CISM), and leadership responsibilities. Salaries vary based on industry, location, and organization size, with senior and specialized positions typically offering higher compensation.
What are popular job titles related to Issm jobs in Alabama? For Issm jobs in Alabama, the most frequently searched job titles are:
What job categories do people searching Issm jobs in Alabama look for? The top searched job categories for Issm jobs in Alabama are:
What cities in Alabama are hiring for Issm jobs? Cities in Alabama with the most Issm job openings:
Infographic showing various Issm job openings in Alabama as of July 2026, with employment types broken down into 84% Full Time, 10% Part Time, and 6% Contract. Highlights an 94% Physical, 3% Hybrid, and 3% Remote job distribution, with an average salary of $107,250 per year, or $51.6 per hour.

Cloud Information System Security Officer (ISSO) - Mid Level (TS required, eligible for SCI) -

RedTrace Technologies Inc

Huntsville, AL • On-site

Full-time

Medical, Dental, Vision, Retirement, PTO

Posted 10 days ago


Job description

SECURITY CLEARANCE REQUIREMENT: TS, WITH SCI ELIGIBILITY
***POSITION REQUIRES US CITIZENSHIP***
Program Description:
The program provides support in the areas of Cybersecurity and Management to improve the Information Assurance (IA) posture of a federal customer. The contract's support functions are: IA Management, Federal Information Security Management Act (FISMA) coordination and reporting, Risk Management Framework (RMF) application, IA compliance measurements and metrics, Assessment and Authorization (A&A), Vulnerability Management, and Cyber Defense support.
Position Description:
We are seeking a Cloud ISSO to carry out the following duties and responsibilities:
  • Services to support IS Security performed by the Cloud Information System Security Officer (ISSO) at a minimum, shall consist of to the following activities:
  • Ensure the day-to-day implementation, oversight, continuous monitoring, and maintenance of the security configuration, practices, and procedures for each IS
  • Provide liaison support between the system owner and other IS security personnel
  • Ensure that selected security controls are implemented and operating as intended during all phases of the IS lifecycle
  • Ensure that system security documentation is developed, maintained, reviewed, and updated on a continuous basis
  • Conduct required IS vulnerability scans according to risk assessment parameters.
  • Develop Plan of Action and Milestones (POAMs) in response to reported security vulnerabilities
  • Manage the risks to ISs and other agency assets by coordinating appropriate correction or mitigation actions, and oversee and track the timely completion of (POAMs)
  • Coordinate system owner concurrence for correction or mitigation actions
  • Monitor security controls for agency ISs to maintain security Authorized To Operate (ATO)
  • Upload all security control evidence to the Governance, Risk, and Compliance (GRC) application to support security control implementation during the monitoring phase
  • Ensure that changes to an agency IS, its environment, and/or operational needs that may affect the authorization status are reported to the system owner and IS Security Manager (ISSM)
  • Ensure the removal and retirement of ISs being decommissioned in coordination with the system owner, ISSM, and ISSR
  • Provide baseline security controls to the system owner, contingent upon the IS's security categorization, type of information processed and entity type
  • Provide a recommendation to the Authorizing Official, in consultation with the system owner, regarding systems' impact levels and ISs' authorization boundary
  • Ensure that new entities are created in the GRC application with the security categorization of agency ISs
  • Initiate, coordinate, and recommend to the agency Authorizing Official all Interconnection Security Agreement (ISAs), Memorandum of Understanding (MOUs), and Memorandum of Agreement (MOAs) that permit the interconnection of an agency IS with any non-agency or joint-use IS
  • Perform an independent review of the System Security Plan (SSP) and make approval decisions
  • Request and negotiate the level of testing required for an IS with the Enterprise Information Security Section and the agency Authorizing Official
  • Schedule security control assessments in coordination with the system owner.
  • Coordinate IS security inspections, tests, and reviews with the Security and system owner. Submit the final SAA package to the agency Authorizing Official for a security ATO decision
  • Ensure that the Security ATO Electronic Communication (EC) is serialized into Sentinel under the applicable case file number
  • Advise the agency Authorizing Official of IS vulnerabilities and residual risks.
  • Ensure that all POA&M actions are completed and tested
  • Coordinate initiation of an event-driven reauthorization with the agency Authorizing Official
  • Ensure the removal and retirement of agency ISs being decommissioned, in coordination with the SO, ISSM, ISSE, and ISSR

Qualifications:
  • Required to hold at least one of the following certifications: Certified Information Systems Security Professional (CISSP), Global Information Security Professional (GISP), or the CompTIA SecurityX or other certifications exemplifying skill sets such as those described in DoD Instruction 8570.1 Information Assurance Management (IAM) Level II proficiency
  • Additional requirement to hold at least one Security certification from AWS, Azure, or GCP:
    • AWS Certified Security - Specialty
    • (ISC)2 Certified Cloud Security Professional (CCSP)
    • AWS Certified Solutions Architect - Associate
    • AZ-500: Microsoft Certified: Azure Security Engineer Associate
    • Google - Professional Cloud Security Engineer
  • At least 5 years serving as an Information Systems Security Officer (ISSO) at a cleared facility
  • Minimum of 7 years of work experience in a computer science or Cybersecurity related field
  • Familiarity with the use and operation of security tools including Tenable Nessus and/or Security Center, IBM Guardium, HP WebInspect, Network Mapper (NMAP), and/or similar applications
  • Bachelor's and/or advanced degree in computer science, business management, or IT related discipline is preferred.

Employee Benefits:
  • Competitive salary for well qualified applicants
  • 401(k) plan
  • Annual performance bonus
  • Certification and advanced degree attainment bonuses
  • Student Loan / Tuition reimbursement
  • Health Care Insurance (medical, dental, vision)
  • Up to four weeks of paid vacation
  • 11 Federal Holidays, and 3 Floating Holidays
  • Team bonding events

RedTrace Technologies is an EOE employer.