Information Systems Security Manager (ISSM)

The ISSM will be responsible for system security, testing, and system accreditation activities including developing and maintaining cybersecurity RMF and ATO related documentation. Develop and update System Security Plans (SSP), developing corrective action plans, receive approval, and track implementation of corrective actions in designated tool. Key Responsibilities Serve as an Information Systems Security Manager (ISSM). Implement the risk management framework for classified systems, typically following the Defense Counterintelligence Security Agency DCSA DAAPM or JSIG process and supporting communications with cognizant security authorities. Serve as the primary service desk resource for classified systems. Produce and maintain Body of Evidence (BoE) documentation to include risk assessments, SSP’s, and POA&M’s. Maintain the day-to-day security posture and continuous monitoring for all systems, including patching and updates. Review and implement DD254 requirements of all classified systems Maintain eMASS account and provide system awareness for all approved ATO’s WORK ENVIRONMENT / PHYSICAL REQUIREMENTS This position is required to work predominately in an office setting. Entry to laboratory environment will require use of PPE. Physical requirements include the ability to: Perform work utilizing a computer for extended periods of time Sit for extended periods of time without being able to leave the work area Stand for extended periods of time without being able to leave the work area Climb stairs in performing the work Lift up to 10 pounds Walk for reasonable distances in performing the work EDUCATION AND EXPERIENCE: Must be a United States citizen Must have active in-scope TOP SECRET clearance/or be able to get one and be able to obtain and maintain access to Sensitive Compartmented Information (SCI) and/or any necessary Special Access Programs (SAP) Bachelor of Science (IT - related discipline preferred) 5+ years of experience in Information Technology (IT) in a classified environment, or 3+ years of experience as an ISSM/ISSO in government/industrial security or an intelligence career field KNOWLEDGE, SKILLS AND ABILITIES REQUIRED: Knowledge of technical standards relating to information system security; experience administering Windows and Linux operating systems, experience with large-scale server systems, thin client architecture, system virtualization and other related peripherals Experience with Certification and Authorization requirements as outlined in the 32CFR Part 117 NISPOM, RMF for DoD IT, ICD 503, JSIG/JAFAN & NIST RMF Thorough understanding of US Government (specifically DoD) IS security policies Strong communication skills, strong critical thinking and problem-solving skills; self-motivated with ability to effectively prioritize multiple projects; ability to work with people in a team environment and deal effectively with changing project priorities Ability to manage time, make sound decisions, take independent action, analyze problems and provide focused solutions High degree of attention to detail DoDD 8140/DoD 8570 approved (Technician Level 2-3) certification required within 6 months of hire