ZipRecruiter

Log In

1

Issm Jobs in Boston, MA (NOW HIRING)

IC-CAP LLC

ISSM 1 102-040

Bedford, MA · On-site

Information System Security Manager (ISSM) 1 primary function serves as a principal advisor on all matters, technical and otherwise, involving the security of information systems under their purview.

next page

Showing results 1-20

All JobsIssm JobsIssm Jobs in Boston, MA

Issm information

See Boston, MA salary details

$50K

$128.6K

$200.4K

How much do issm jobs pay per year?

As of Jun 17, 2026, the average yearly pay for issm in Boston, MA is $128,550.00, according to ZipRecruiter salary data. Most workers in this role earn between $103,200.00 and $149,900.00 per year, depending on experience, location, and employer.

What are the key skills and qualifications needed to thrive in the Issm position, and why are they important?

To excel as an Information System Security Manager (ISSM), you need a strong background in information security, risk management, and compliance, typically supported by a degree in cybersecurity, computer science, or a related field. Familiarity with security frameworks (such as NIST or ISO 27001), vulnerability assessment tools, and certifications like CISSP or CISM are commonly required. Leadership, attention to detail, and effective communication are important soft skills for managing security teams and collaborating across departments. These skills help ensure organizational data is protected, compliance standards are met, and business operations remain secure.

What is an ISSM job?

An Information Systems Security Manager (ISSM) is responsible for overseeing and implementing cybersecurity policies for an organization's information systems. They ensure compliance with security standards, manage risk assessments, and coordinate with security teams to protect sensitive data. ISSMs work closely with IT and leadership to develop and enforce security strategies that align with regulatory requirements.

What jobs make 10000 a month without a degree?

For an ISSM (Information Systems Security Manager) or similar cybersecurity roles, earning $10,000 a month without a degree is possible with extensive experience, certifications like CISSP or CISM, and a strong track record in security management. Other high-paying jobs without degrees include sales, real estate, and certain entrepreneurial ventures, but these often require significant skills, networking, or business acumen. Most high-paying roles in specialized fields typically prioritize experience and certifications over formal education.

What are the typical daily responsibilities of an Information System Security Manager (ISSM)?

An ISSM’s daily responsibilities often include overseeing the implementation and monitoring of security controls, performing regular risk assessments, and ensuring compliance with relevant security policies and regulations. You may also coordinate incident response efforts, review system access logs, and provide guidance to IT staff on best practices. Additionally, ISSMs frequently interact with auditors, senior management, and cross-functional teams to report on security findings and advise on system improvements. This role requires staying current with emerging threats and adapting security strategies to protect organizational assets effectively.

How much does an ISSM make?

An Information Systems Security Manager (ISSM) typically earns between $100,000 and $160,000 annually, depending on experience, certifications, and the organization. Salaries in the Washington, D.C. area tend to be higher due to the demand for cybersecurity expertise and government contracting work.

What is the career path of the ISSM?

An Information Systems Security Manager (ISSM) typically advances through roles such as cybersecurity analyst, security engineer, and security architect before becoming an ISSM. Career progression often involves gaining certifications like CISSP and experience in information security management, with opportunities to move into senior leadership or specialized security roles.

What jobs pay 2000 a day?

High-paying jobs that can earn $2,000 or more per day include specialized roles such as senior corporate lawyers, experienced surgeons, investment bankers, and certain high-level consultants. These positions typically require advanced skills, extensive experience, professional certifications, and often involve demanding schedules or high-pressure environments.
What are popular job titles related to Issm jobs in Boston, MA? For Issm jobs in Boston, MA, the most frequently searched job titles are:
What job categories do people searching Issm jobs in Boston, MA look for? The top searched job categories for Issm jobs in Boston, MA are:
What cities near Boston, MA are hiring for Issm jobs? Cities near Boston, MA with the most Issm job openings:
Issm jobs near you
Infographic showing various Issm job openings in Boston, MA as of June 2026, with employment types broken down into 80% Full Time, 10% Part Time, and 10% Contract. Highlights an 90% In-person, and 10% Hybrid job distribution, with an average salary of $128,550 per year, or $61.8 per hour.

ISSM 1 102-040

IC-CAP LLC

Bedford, MA • On-site

Full-time

Posted 5 days ago

Job description

Information System Security Manager (ISSM) 1 primary function serves as a principal advisor on all matters, technical and otherwise, involving the security of information systems under their purview. Primary support will be working within Special Access Programs (SAPs) supporting Department of Defense (DoD) agencies, such as HQ Air Force, Office of the Secretary of Defense, and Military Compartment efforts. The position will provide day-to-day support for Collateral, Sensitive Compartmented Information (SCI) and Special Access Program (SAP) activities.
Duties May include:
  • Perform oversight of the development, implementation and evaluation of information system security program policy; special emphasis placed upon integration of existing SAP network infrastructures
  • Develop and oversee operational information systems security implementation policy and guidelines of network security, based upon the Risk Management Framework (RMF) with emphasize on Joint
  • Special Access Program Implementation Guide (JSIG) authorization process
  • Advise customer on Risk Management Framework (RMF) assessment and authorization issues
  • Perform risk assessments and make recommendations to DoD agency customers
  • Advise government program managers on security testing methodologies and processes
  • Evaluate authorization documentation and provide written recommendations for authorization to government PMs
  • Develop and maintain a formal Information Systems Security Program
  • Ensure that all IAOs, network administrators, and other cyber security personnel receive the necessary technical and security training to carry out their duties
  • Develop, review, endorse, and recommend action by the AO or DAO of system assessment documentation
  • Ensure approved procedures are in place for clearing, sanitizing, and destroying various types of hardware and media
  • Develop and execute security assessment plans that include verification that the features and assurances required for each protection level functioning
  • Maintain a and/or applicable repository for all system authorization documentation and modifications
  • Institute and implement a Configuration Control Board (CCB) charter
  • Develop policies and procedures for responding to security incidents, to include investigating and reporting security violations and incidents
  • Ensure proper protection or corrective measures have been taken when an incident or vulnerability has been discovered within a system
  • Ensure that data ownership and responsibilities are established for each authorization boundary, to include accountability, access rights, and special handling requirements
  • Ensure development and implementation of an information security education, training, and awareness program, to include attending, monitoring, and presenting local cyber security training.
  • Evaluate threats and vulnerabilities to ascertain whether additional safeguards are needed
  • Assess changes in the system, its environment, and operational needs that could affect the authorization
  • Ensure that authorization is accomplished a valid Authorization determination has been given for all authorization boundaries under your purview
  • Review AIS assessment plans
  • Coordinate with PSO or cognizant security official on approval of external information systems (e.g., guest systems, interconnected system with another organization)
  • Conduct periodic assessments of the security posture of the authorization boundaries
  • Ensure configuration management (CM) for security-relevant changes to software, hardware, and firmware and that they are properly documented
  • Ensure periodic testing is conducted to evaluate the security posture of IS by employing various intrusion/attack detection and monitoring tools (shared responsibility with ISSOs)
  • Ensure that system recovery and reconstitution processes developed and monitored to ensure that the authorization boundary can be recovered based on its availability level determination
  • Ensure all authorization documentation is current and accessible to properly authorized individuals
  • Ensure that system security requirements are addressed during all phases of the system life cycle
  • Develop Assured File Transfers (AFT) on accordance with the JSIG
  • Participate in self-inspections
  • Conduct the duties of the Information System Security Officer (ISSO) if one is not present and/or available.

Education and Experience
Required:
  • Bachelor's degree -OR- 4 additional years of experience in lieu of degree
  • 5-7 years related experience
  • Prior performance in roles such as ISSO or ISSM

Desired:
  • SAP Experience
  • DoD 8570.01-M IAM Level I (in lieu of IAT Level II)

  • Training:
  • Combatting Trafficking in Persons (CTIP)

Security Clearance:
  • Active TS/SCI Clearance and the willingness to sit for a CI polygraph, if needed

IC-CAP provides equal employment opportunities (EEO) to all applicants for employment without regard to race, color, religion, gender, sexual orientation, gender identity or expression, national origin, age, disability, genetic information, marital status.

Apply