ClearanceJobs
Information System Security Manager Level 3
ClearanceJobs, Fort George Meade, Maryland, United States
Information System Security Manager Level 3
Provide management support for a program, organization, system, or enclave's information assurance program. Provide management support for proposing, coordinating, implementing, and enforcing information system security policies, standards, and methodologies. Manage operational security posture for an information system or program to ensure information system security policies, standards, and procedures are established and followed. Provide management of security aspects of the information system and perform day-to-day security operations of the system. Assist ISSEs and ISSOs with evaluating security solutions to ensure they meet security requirements for processing classified information. Manage the performance of vulnerability/risk assessment analysis to support security authorization. Provide management support to configuration management (CM) for information system security software, hardware, and firmware. Manage changes to systems and assess the security impact of those changes. Manage the process and preparation of documentation reviews to include system security plans (SSPs), risk assessment reports, certification and accreditation (C&A) packages, and system requirements traceability matrices (SRTMs). Security clearance requirements: This position requires all candidates to be U.S. citizens and possess an active TS/SCI security clearance with a polygraph. Responsibilities
Perform requirements gathering and analysis of said requirements Perform functional analysis to identify required tasks and their interrelationships Identify and map current security infrastructure as a foundation to define future programs Collaborate with engineers on systems integration efforts Plan and coordinate implementation of IT security programs and policies Analyze user needs to determine functional and cross-functional requirements Gather and organize technical information about an organization's mission goals and needs, existing security products, and ongoing programs in the multi-level security arena Perform functional allocation and identify resources required for each task Perform risk analysis that also includes risk assessment Enable government planning, coordination, and oversight of organizational implementation of information security services Enable design and implementation of future IT systems and related security Assist program managers with administrative and technical oversight with specific program's within the portfolio Facilitate issue resolution through integrated product teams and technical exchange meetings (TEM) Provide support for a program, organization, system, or enclave's information assurance program Provide daily oversight and direction to contractor ISSOs Oversee efforts of engineering staff to design, develop, engineer, and implement solutions to security requirements Interact with customers, IT staff, and high-level corporate officers to define and achieve required cybersecurity objectives Serve as the program's ISSM Enable the government with the development and implementation of IT security services Collaborate with engineers on systems integration and life cycle requirements Advise program managers on administrative and technical oversight matters in regards to portfolio programs Enable program managers with administrative and technical oversight assistance with specific program's within the portfolio Enable design and implementation of future IT systems and related security. Qualifications
Required education & years of experience: Twelve (12) years of work-related experience in the field of security authorization is required. Bachelor's degree in computer science, cyber security or IT engineering is required. In lieu of a bachelor's degree, an additional four (4) years of work-related experience may be substituted. Required Skills
Experience in the following areas: current security tools, hardware/software security implementation; different communication protocol and encryption techniques/tools. Knowledge of commercial security products, security authorization techniques, security incident management, and PKI and authorization services. Required Certifications (Must Possess One of the Following)
CAP CASP+ CE CISM CISSP (or associate) GSLC CCISO HCISPP WOOD Consulting Services, Inc. is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.
Provide management support for a program, organization, system, or enclave's information assurance program. Provide management support for proposing, coordinating, implementing, and enforcing information system security policies, standards, and methodologies. Manage operational security posture for an information system or program to ensure information system security policies, standards, and procedures are established and followed. Provide management of security aspects of the information system and perform day-to-day security operations of the system. Assist ISSEs and ISSOs with evaluating security solutions to ensure they meet security requirements for processing classified information. Manage the performance of vulnerability/risk assessment analysis to support security authorization. Provide management support to configuration management (CM) for information system security software, hardware, and firmware. Manage changes to systems and assess the security impact of those changes. Manage the process and preparation of documentation reviews to include system security plans (SSPs), risk assessment reports, certification and accreditation (C&A) packages, and system requirements traceability matrices (SRTMs). Security clearance requirements: This position requires all candidates to be U.S. citizens and possess an active TS/SCI security clearance with a polygraph. Responsibilities
Perform requirements gathering and analysis of said requirements Perform functional analysis to identify required tasks and their interrelationships Identify and map current security infrastructure as a foundation to define future programs Collaborate with engineers on systems integration efforts Plan and coordinate implementation of IT security programs and policies Analyze user needs to determine functional and cross-functional requirements Gather and organize technical information about an organization's mission goals and needs, existing security products, and ongoing programs in the multi-level security arena Perform functional allocation and identify resources required for each task Perform risk analysis that also includes risk assessment Enable government planning, coordination, and oversight of organizational implementation of information security services Enable design and implementation of future IT systems and related security Assist program managers with administrative and technical oversight with specific program's within the portfolio Facilitate issue resolution through integrated product teams and technical exchange meetings (TEM) Provide support for a program, organization, system, or enclave's information assurance program Provide daily oversight and direction to contractor ISSOs Oversee efforts of engineering staff to design, develop, engineer, and implement solutions to security requirements Interact with customers, IT staff, and high-level corporate officers to define and achieve required cybersecurity objectives Serve as the program's ISSM Enable the government with the development and implementation of IT security services Collaborate with engineers on systems integration and life cycle requirements Advise program managers on administrative and technical oversight matters in regards to portfolio programs Enable program managers with administrative and technical oversight assistance with specific program's within the portfolio Enable design and implementation of future IT systems and related security. Qualifications
Required education & years of experience: Twelve (12) years of work-related experience in the field of security authorization is required. Bachelor's degree in computer science, cyber security or IT engineering is required. In lieu of a bachelor's degree, an additional four (4) years of work-related experience may be substituted. Required Skills
Experience in the following areas: current security tools, hardware/software security implementation; different communication protocol and encryption techniques/tools. Knowledge of commercial security products, security authorization techniques, security incident management, and PKI and authorization services. Required Certifications (Must Possess One of the Following)
CAP CASP+ CE CISM CISSP (or associate) GSLC CCISO HCISPP WOOD Consulting Services, Inc. is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.