Share Email Opening Apply Now
Title

Information Systems Security Manager (ISSM) 

Category Security  
Description

Systems & Technology Research (STR) is a small and growing company focused on providing innovative, technology-based solutions to defense, intelligence and national security problems with a position available for a Information Systems Security Manager (ISSM) with current TS/SCI clearance.

Job Description:

The ISSM is responsible for classified programs’ Cybersecurity/Risk Management Framework (RMF) posture in accordance with USG directives and program requirements.

Responsibilities for this position include implementation and oversight of certification & accreditation, lifecycle processes, configuration change management, account management, media control procedures and related documentation. Candidates must be familiar with conducting internal self-inspections of the cybersecurity program, executing an effective cybersecurity program to include continuous system audit reviews, education and training and information system delivery and maintenance.

This position will also be responsible for conducting investigations related to any information systems security violation involving classified information:

  • Provide Information Systems Security Manager (ISSM) support to classified computers in a DoD computing environment.
  • Develop/conduct risk assessment procedures for verification of Assessment and Authorization (A&A) RMF safeguards to meet various regulatory requirements based upon the JSIG RMF for DoD IT, plus ICD 503, JSIG, NIST & STIG guidelines
  • Monitor cybersecurity Program compliance by performing periodic self-inspections, tests and reviews of the IS programs to ensure that systems are operating as authorized/accredited and that conditions have not changed
  • Work with program personnel to include System Administrators to ensure audit functions are performed properly
  • Develop corrective solutions and maintain associated documentation (to include required reports) as appropriate
  • Coordinate with program/project stakeholders, IA staff, the Facility Security Officer (FSO), Contractor Program Security Officers (CPSOs) and other Security and IT team members to define, implement and maintain an acceptable information systems security posture
  • Assist program personnel at offsite locations to ensure they meet USG certification requirements and are properly trained to execute the cybersecurity program effectively and maintain security compliance
  • Preparation and maintenance of security Assessment and Authorization documentation (e.g., IA Standard Operating Procedures (SOP), SSP, MSSP, RAR, SCTM)
  • Maintain day-to-day security posture and continuous monitoring of IS including security event log review and analysis.
  • Ensure system security measures comply with applicable government policies, provide configuration management and accurately assess the impact of modifications and vulnerabilities for each system.
  • Maintain thorough understanding of NIST 800-53 controls, determines controls applicable to the application, and document implementation in Security Controls Traceability Matrix (SCTM).

 
Position Requirements

Basic Qualifications:

  • Extensive knowledge and experience with assessment and authorization requirements as outlined in the NISPOM Chapter 8, DAAPM, RMF, ICD 503, JSIG, NIST RMF & STIG and other USG IS/Security-related policies
  • Candidate must provide evidence of DoD 8570 IAM Level III compliance: CISA, CISM, CISSP or the ability to obtain within 6 months upon being hired
  • Active TOP SECRET security clearance with ability to obtain an SCI with CI poly
  • Experience with configuration/certification and auditing/analysis Windows/Linux operating systems and system virtualization in Peer-to-peer, LAN & WAN networks
  • Excellent communications skills
  • Demonstrated strong critical thinking and problem-solving skills
  • Detail oriented and self-motivated
  • Ability to effectively prioritize multiple projects
  • Ability to work with people in a team environment and deal effectively with changing project priorities
  • Candidate must have demonstrated professional customer service skills
  • Two (2) to four (4) years’ experience as an ISSM implementing NISPOM Chapter 8, DAAPM, ICD503 and/or JISG IS requirements
  • Experience with Windows/Linux or similar operating environments

STR seeks to provide an outstanding work environment for its employees with excellent benefits and competitive compensation. Full-time employees enjoy 401(k), profit sharing, health and welfare benefits, subsidies for training and conference attendance to foster continued learning and development, and a casual yet technically challenging work environment.

STR is dedicated to fostering a diverse and inclusive workforce where all employees, regardless of race, ethnicity, gender, neurodiversity, or other personal characteristics, feel valued, included, and empowered to achieve their best. We recognize that each employee’s backgrounds, experiences, and perspectives are essential for providing our customers with innovative solutions to challenging national security problems. STR’s commitment to attracting, retaining, and engaging talented and diverse professionals is demonstrated by our participation, sponsorship, and support in local and national minority organizations.

Applicants must be US Citizens.

 
Req Number SEC-19-00007  
EOE Statement We are an equal employment opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, disability status, protected veteran status or any other characteristic protected by law.  

This position is currently accepting applications.

Apply Now




 


AppOne.comTM 1999-2019 HR Services, Inc.
Click here for technical assistance.