Information Systems Security Manager

About The Position

Requirements

• Bachelor’s degree in Computer Science, Information Assurance, Information Security System Engineering, or a related field from an accredited university.
• Minimum of 8 years of experience as an Information Systems Security Engineer/Manager on programs or contracts working within the customer space.
• Proficiency in the Risk Management Framework (RMF) and conducting cybersecurity risk assessments.
• Expertise in network technology and systems security engineering, including identifying and documenting security weaknesses in operating systems, software, firmware, network hardware, and architecture design.
• Experience developing and documenting system security requirements and conducting gap analyses.
• Practical experience with security monitoring and incident response capabilities.
• Familiarity with NIST Special Publications 800 Series, CNSSI 1253, and DoD 8500.
• Ability to confidently present briefings to senior-level DoD officials, both in prepared and ad hoc discussions.
• Strong ability to work independently, manage schedules, and deliver results with minimal direction.

Nice To Haves

• Certification at IAT Level II or higher.
• Certification at IAM Level II or higher.
• Familiarity with emerging technologies such as Zero Trust and Cloud Computing.
• Proficiency with security tools for vulnerability scanning, penetration testing, and security auditing.
• Experience supporting Cyber Plan and Policy at the national level.
• Experience with configuration management and change management processes in secure environments.
• Experience with the NC3 community and/or the DLA Contracting Services Office (DCSO).

Responsibilities

• Conducting cybersecurity risk assessments and providing prioritized mitigation recommendations to support mission objectives.
• Designing, implementing, and operating real-time capabilities to detect, analyze, and mitigate threats and vulnerabilities.
• Evaluating candidate architectures against defined security requirements, identifying gaps, and recommending mitigation strategies.
• Researching and assessing emerging technologies for cybersecurity effectiveness.
• Developing and implementing innovative solutions to address stakeholder needs and enhance security capabilities.
• Collaborating with stakeholders to define security objectives, requirements, and validation methods.
• Validating and verifying system security requirements and establishing secure system designs.
• Developing, implementing, and integrating security systems and components across networking, computing, and multi-enclave environments with varying data protection requirements.
• Identifying and implementing information security functionality to ensure consistent application of agency security policies and enterprise solutions.
• Supporting security planning, risk analysis, certification, and awareness activities for system and network operations.
• Reviewing Certification and Accreditation (C&A) documentation for completeness and compliance, providing actionable feedback.

Benefits

• Pay and benefits are fundamental to any career decision.
• That's why we craft compensation packages that reflect the importance of the work we do for our customers.
• Employment benefits include competitive compensation, Health and Wellness programs, Income Protection, Paid Leave and Retirement.
• More details are available here.