Information Systems Security Manager (ISSM)

If you are looking to be a key member of a talented team of IT professionals and you want to contribute to the success of a customer focused business operation, PRECISION CUSTOM COMPONENTS, LLC wants to speak with you!

Based in York, Pennsylvania, PCC began over 100 years ago as a manufacturer of energy related equipment for government and commercial customers. Today, PCC is a major domestic supplier to the Commercial Nuclear Industry, Departments of Energy and Defense, as well as NASA, Naval shipyards and other industrial and government customers.

For more information, visit: www.pcc-york.com

Benefits: Offering a comprehensive benefits package including medical, dental, vision, 401K (plus company match), life and disability insurance. PCC also offers, flexible spending account (FSA) and generous paid time off (PTO).

The Information Systems Security Manager (ISSM) is responsible for developing, implementing, and managing a comprehensive security program for our organization, focusing on compliance with the Cybersecurity Maturity Model Certification (CMMC) 2.0. This role involves identifying internal resources and coordinating the efforts of team members and third-party contractors or consultants to define and achieve objectives. The security program developed by the ISSM will ensure compliance with NIST SP 800-171, FIPS, and Controlled Unclassified Information (CUI) requirements, and mitigate insider threats. This position requires travel between PCC in York, Pennsylvania, and DC Fabricators in Florence, NJ, approximately 2-3 times per month. Primary work location can be at either site. This role is 100% on-site, not remote or hybrid.

Key Responsibilities:

• Define, develop and implement a comprehensive security program in accordance with NISPOM and cleared industry standards in collaboration with senior management and stakeholders.
• Ensure compliance with CMMC 2.0 standards and manage the assessment and audit process.
• Ensure compliance with NIST SP 800-171, FIPS, FISMA, and other federal regulations governing industrial and cybersecurity
• Lead efforts to safeguard Controlled Unclassified Information (CUI), No Foreign Nationals (NOFORN) information, Navy Nuclear Propulsion Information (NNPI), and ensure compliance with government contracts.
• Develop insider threat mitigation programs and perform risk assessments.
• Manage System Security Plans (SSP), implement cybersecurity protocols, and oversee security assessments and audits.
• Provide security training and guidance to employees and contractors.
• Oversee facility clearances, ensuring proper management of classified information and personnel security

SKILLS & ABILITIES

Education:

• Bachelor's degree in Information Technology, Cybersecurity (or a related field/equivalent experience).
• Certifications such as Security , SSCP, CISSP, CISM, CompTIA Cloud , or similar information security certifications are a plus.

Experience:

• Minimum of five (5) years of experience in information security industry, industrial security, or related role.
• Active DoD Security Clearance (or ability to obtain one).

Technical Skills:

• Experience in information security management, with a focus on CMMC 2.0 assessments.
• Experience with CUI, NOFORN, and NNPI requirements and implementing security measures in government contracting environments.
• Strong working knowledge of NIST SP 800-171, FIPS, NISPOM, and other relevant security frameworks.
• Familiarity with SIEM tools, continuous monitoring, and incident response protocols.
• Excellent computer skills required. Must have a working knowledge of Microsoft applications such as WORD, Excel, and Outlook, as well as specific programs related to the position.

Other Skills & Abilities:

• Excellent leadership skills, ability to communicate effectively, both verbally and in writing, with a diverse group of associates.
• Ability and willingness to learn new technology to ensure the company’s security is current and robust.
• Ability and willingness to document procedures, policies, and instructions.
• Ability to adjust to constantly changing priorities.
• Exceptional problem-solving abilities and decision-making skills to quickly identify and resolve issues that arise in security management.
• Time management skills to ensure all projects are completed in a timely manner while also addressing any urgent security issues.
• Will require up to 25% travel, to our sister site in Florence, New Jersey.
• US Citizenship required at time of hire.

PCC is an Equal Opportunity/Affirmative Action Employer - Minorities/Females/Protected Veterans/Disabled/Sexual Orientation/Gender Identity

Job Type: Full-time

Pay: $100,000.00 - $120,000.00 per year

Benefits:

• 401(k)
• 401(k) matching
• Dental insurance
• Employee assistance program
• Flexible spending account
• Health insurance
• Life insurance
• Paid time off
• Vision insurance

Schedule:

• Day shift
• Monday to Friday

Education:

• Bachelor's (Required)

Experience:

• information security industry: 8 years (Required)

Willingness to travel:

• 25% (Required)

Work Location: In person

Salary : $100,000 - $120,000