DescriptionOVERVIEW
Serves as the Information System Security Manager (ISSM) for stand-alone and networked classified information systems with responsibilities for all Risk Management Framework (RMF) activities required to obtain and maintain the Authorization to Operate (ATO) for all systems.
RESPONSIBILITIES
This position description is subject to change at any time as needed to meet the requirements of the program or company.
- Develops and maintains operational security posture to ensure classified information systems (IS) security policies, standards, and procedures are established and followed.
- Manages a team of subordinate employees providing taskings and guidance to that team.
- Laision with adjacent program security components as well as US government counterparts and outside contractor employees to ensure compliance with government guidelines, regulations, and company policies.
- Provides subject matter expertise to security leadership and senior management personnel concerning the application of best practices as well as maintain adherence to US government regulations for classified IT systems.
- Initiates, updates, and maintains classified information system authorization information in the Enterprise Mission Assurance Support Service (eMASS). Prepares and updates all artifacts and control documentation in accordance with the current version of the DCSA Assessment and Authorization Process Manual (DAAPM)
- Performs auditing, vulnerability/risk assessment analysis to support Assessment and Authorization (A&A).
- Develops documentation for A&A in accordance with applicable policies, procedures, and operating instructions.
- Provides configuration management (CM) for information system security software, hardware, and firmware.
- Oversees changes to the system and assesses the security impact of those changes.
- Conduct assessment tests that include verification that the features and assurances required for each protection level are functional.
- Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, A&A packages, and Security Controls Traceability Matrix (SCTM).
- Applies a full range of Information Assurance (IA) policies, principals and techniques to maintain security integrity of information systems processing classified information.
- Maintains records on workstations, servers, routers, firewalls, intelligent hubs, network switches, etc. to include system upgrades.
- Ensure all Assured Information Security (AIS) authorization documentation is current and accessible to properly authorized individuals.
- Maintains operational security posture for an information system or program.
- Develops and updates the system security plan and other IA documentation.
- Provides CM for security-relevant information system software, hardware, and firmware.
- Assists with the management of security aspects of the information system and perform day-to-day security operations of the system.
- Provides support for a program, organization, system, or enclave's information assurance program.
- This position requires strong customer service and communication skills in order to effectively interact with the Vectrus staff and sponsor representatives.
- Overseas remote ISSO/ISSM operations. This position is for the Dahlgren facility ISSM.
QUALIFICATIONS
Education/Experience: One year related experience may be substituted for one year of education, if degree is required.
- Bachelor's degree in IT related field or equivalent.
- Minimum (8) years of experience in a related field.
Certifications Required:
- Certified Information Systems Security Professional (CISSP) certification (IAM Level III).
- Previous eMASS experience highly desired.
Other Requirements:
- Must be a United States citizen.
- Active Top-Secret clearance required.
Skills and Technology Used:
- Uses up-to-date technical knowledge, skills, and experience to effectively perform jobs and contribute to the success of the department.
- Takes initiative to lead and supports team members in dealing with change.
- Displays effective problem-solving skills.
Benefits:
- Medical, Dental, Vision, 401(k), Life, AD&D, Short Term Disability, Long Term Disability, and other ancillary plans.
Time off:
- Paid Time Off (PTO), Holidays, Bereavement, and Jury Duty
Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities
The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)
Equal Opportunity Employer – minorities/females/veterans/individuals with disabilities/sexual orientation/gender identity.