Information Security Manager

Information Security Manager

SG2 Recruiting is seeking an information security manager to support IC client in the Washington DC Metro area. The information security manager (ISM) will apply their proactive approach to safeguarding organizational data and systems. Key responsibilities will include leading incident response, implementing security measures, managing system vulnerabilities, and ensuring compliance through evaluation and accreditation processes. The ISM will also develop security policies, provide training, and oversee the maintenance of security infrastructure, all while analyzing threat intelligence to mitigate risks and maintain a robust security posture.

What You Will Be Doing:

• Recommending, scheduling, and implementing IA-related repairs.
• Coordinating and supporting all applications and operations.
• Leading teams and supporting actions to quickly resolve or mitigate IA problems for the IS environment.
• Supporting the installation of new or modified hardware, operating systems, and software applications, ensuring integration with security requirements.
• Identifying and determining whether a security incident indicates a violation of law requiring specific legal action.
• Directing and implementing operational structures and processes to ensure an effective security program, including boundary defense, incident detection and response, and key management.
• Providing direction and supporting system developers regarding the correction of security problems identified during testing.
• Evaluating functional operations and performance in light of test results and recommending actions regarding Certification and Accreditation (C&A).
• Examining IS vulnerabilities and determining actions to mitigate them.
• Monitoring and evaluating the effectiveness of IS security procedures and safeguards.
• Analyzing security incidents and patterns to determine remedial actions to correct vulnerabilities.
• Supporting the development and implementing of the IS termination plan to ensure that security incidents are avoided during shutdown and long-term protection of archived resources is achieved.
• Implementing vulnerability countermeasures.
• Providing support for IA customer service performance requirements.
• Providing support for the development of IA-related customer support policies, procedures, and standards.
• Writing and maintaining scripts required to ensure security.
• Implementing and maintaining perimeter defense systems, including, but not limited to, intrusion detection systems, firewalls, and grid sensors.
• Scheduling and performing regular and special backups.
• Establishing logging procedures, such as important IS events, services and proxies, and log archiving facilities.
• Providing training for IAT Level I and II personnel.
• Analyzing IAVAs, ICVAs, and IAVBs for impact and taking or recommending appropriate action.

What You Will Need:

• Active TS/SCI with a CI polygraph
• Ability to commute to Alexandria, VA office five (5) days per week
• Doctorate degree in a STEM-related technical field with 8 years of relevant experience
• Or master's degree with 10 years of related experience
• Or bachelor's degree with 12 years of experience
• OR associate's degree with 14 years of experience
• OR high school diploma with 16 years of experience
• One or more of the following certifications: GIAC Security Expert (GSE) Certified Information Systems Auditor (CISA), GIAC Certified Incident Handler Certification (GCIH), or Certified Information Systems Security Professional (CISSP) required

About Client:

Client does not discriminate based on race, sex, color, religion, age, national origin, marital status, disability, veteran status, genetic information, sexual orientation, gender identity, or any other reason prohibited by law in providing employment opportunities and benefits.