Information Systems Security Manager

Donatech

Information Systems Security Manager (ISSM) and Information Systems Security Officer (ISSO)

This position will function as the Information Systems Security Manager (ISSM) and Information Systems Security Officer (ISSO). The Information Systems Security Manager/Officer is responsible for the planning, organization, maintenance and compliance of multiple DOD accredited classified information systems in accordance with the NISPOM, NIST Risk Management Framework, NIST 800-53 requirements, and DCSA Assessment & Authorization Guide.

Provide inspection results, lessons learned, identified threats and reports all violations to the site Security Manager/FSO in the form of briefings and formal reports.

Advanced ability to Manage all aspects of the National Industrial Security Program (NISP). Ensuring National Industrial Security Operating Manual (NISPOM) compliance within the classified AIS systems.

Provides security guidance to company personnel and advises Senior Management.

Responsible for Investigating and reporting security violations/adverse information reports with the cognizant government agency. Conduct general and program specific briefings.

Responsible for the development with and compliance of Security Practice and Procedures (SPP) as its relates to classified AISs.

Participation in the development and execution of security education programs. Responsible for Security reviews to include Intelligence Community and Defense Security Service visits and formal self-inspections overseeing implementation/completion of corrective action plans

Ensuring Closed/Restricted area construction requirements are met, ultimately receiving Self Certification.

Knowledgeable on International requirements to include Government to Government shipments, Foreign Visitor requirements, and Export compliance. Assist with (Information Technology Security requirements to include development,

approval and review of Automated Information Systems. Participate with the local Crisis Management Team. Along with the Facilities Manager, establishes and maintains physical security systems, facility protection, contingency plans and emergency response.

Develops and implements improved methods of inspections, audits, and analysis of security functions to determine performance and cost effectiveness.

Serves as advisor, subject matter expert and liaison for all classified Information Security Systems

Participates as a member of various security working groups and inspection teams.

Ensures the System Security Plan (SSP) and Plan of Action and Milestones (POA&M) are updated to reflect any modifications that increase program risk.

Ensure that Cybersecurity-related events or configuration changes that may impact information systems authorization or security posture are formally reported to the Authorizing Official (AO), Authorizing Official Designated Representative (AODR), Site Project Manager and other affected parties.

Review audit measures to ensure compliance with regulatory requirements. Review inspections, scans and surveys performed by the Cybersecurity Team or any government inspection team on all information systems and system hardware within the demilitarization site

Perform duties as a COMSEC Manager or Alternate (As required)

Act as secondary to the on-site Field Services Support team for the Mason facility, providing hands-on technical support for end-user devices, workstations, laptops, peripherals, printers, and other site IT assets.

Perform installation, configuration, maintenance, troubleshooting, and replacement of IT equipment to sustain local operations and reduce downtime.

Coordinate with cybersecurity, infrastructure, network, and enterprise service teams to ensure timely issue resolution and continuity of site operations.

Skills/Experience:

Requirements

A Bachelor's degree in an appropriate discipline and six (6) years of directly related experience, or equivalent combination of education and experience.

Must have an active final security clearance at the SECRET Level and be able to maintain a U.S. Security Clearance at the final SECRET level. Requires U.S. Citizenship. Must be able to satisfy federal government requirements for access to government information, and having dual citizenship may preclude you from being able to meet this requirement.

Desirable Qualifications:

1. Strong working knowledge of 32 CFR, Part 117 (NISPOM), experience managing industrial security programs, and application of operational security methodology is

essential. Familiarity with Intelligence Community Directives, and Special Access Program policy is a plus.

2. Strong working knowledge of Windows based computer environments and Microsoft Office productivity software.

Current DoD 8570 Level II or higher Baseline Certification (Security+ CE, CAP, GSLC, CASP CE, CISA, CISM, or CISSP).

Experience with Microsoft Windows and/or Linux system administration (2+ years).

Familiarity security configuration control and change management (SCCM).

Experience with networking concepts (switches, network security, TACLANE).

Experience with security concepts (Data Loss Prevention, Active Directory, and Security Log Analysis).

Undergraduate degree in Information Technology, Cyber Security, or related field but candidate with proven experience will not be excluded from consideration

Required Skills:

Current DoD 8570 Level II or higher Baseline Certification (Security+ CE, CAP, GSLC, CASP CE, CISA, CISM, or CISSP).

Experience with Microsoft Windows and/or Linux system administration (2+ years).

Familiarity security configuration control and change management (SCCM).

Experience with networking concepts (switches, network security, TACLANE).

Experience with security concepts (Data Loss Prevention, Active Directory, and Security Log Analysis).

Desired Skills: