La Jolla Logic
Information Systems Security Manager (ISSM)- Colorado Springs, CO
La Jolla Logic, Denver, Colorado, United States, 80285
Information Systems Security Manager (ISSM)- Colorado Springs, CO
Pay $100000.00 - $130000.00 / year Employment type: Full-Time Job Description
La Jolla Logic
is looking for a qualified
Information Systems Security Manager (ISSM)
to support the Cyber Team in the development and fielding of Defensive Cyber Operations capabilities for the US Space Force (Colorado Springs, CO) utilizing DevSecOps environments and lean agile practices in order to establish enterprise level safeguards such as computer and network systems security and cyber situational awareness, damage assessment and recovery, cyber threat recognition, attribution and mitigation, and active response methodologies across Enterprise Ground Services (EGS) in response to evolving threats and changes to the cyber environment. The program’s goal is to ensure delivery of critical infrastructure services and limit or contain the impact of a potential cybersecurity event and to protect the following mission sets: Protected Communications, Missile Warning, Military Strategic Communications (MILSATCOM), Position Navigation and Timing (PNT), Ballistic Missile Command and Control, Space Domain Awareness (SDA), Nuclear Command Control and Communications (NC3), and Command and Control Satellite Operations (C2 Sat Ops). Salary Range: $100,000-$130,000 Responsibilities
Provide weekly reports on RMF Assessment and Accreditation (A&A) sustainment activities. Participate in RMF A&A related meetings and briefs, to include developing agendas, maintaining minutes and action item lists. Provide expert recommendations for Defense Information Systems Agency (DISA) Security Implementation Security Guide (STIG) implementation and risk mitigation. Lead Assessment and Authorization (A&A) activities for DoD and Intelligence Systems in accordance with Risk Management Framework and ICD-503 guidelines. Support offensive architecture analysis and design of defense-in-depth solutions. Develop and assess system security plans including security concepts of operation, risk management matrix, security control traceability matrix, security test procedures, and plan of action and milestones. Analyze static code scans and dynamic code scans to validate Application Security and Development STIG compliance. Lead and coordinate security test event teams to achieve accreditation milestones. Verify and validate vulnerability resolutions and/or mitigations. Effectively communicate work plans, milestones (POAM), and obstacles to clients; able to communicate, explain, or defend ideas or information clearly. Ability to effectively develop system security plans, procedures, and other security documentation. Resolve non-routine problems with area of assigned responsibility and timely direct complex problems, questions, or complaints to Program Manager. Ability to analyze disparate data and produce a readable, understandable summary to Program Manager, with recommendations for corrective action, as needed; evaluate effectiveness of applied security control. Requirements
Bachelor’s degree
in related field. 8+
years of relevant experience. Active
Secret
security clearance:
U.S. Citizenship is required. DoD 8570 Certification ( Security+
or equivalent required,
CISSP
highly desired). Experience with IAVMs, DISA STIGs, POA&Ms, and related Federal/DoD policies and regulations. Experience with the security authorization process including the review of system security documentation, i.e., System Security Plans (SSP), system boundary definition, systems security plan, configuration management plan, contingency plan, and interconnection security agreements (e.g., MOUs, ISAs). Demonstrated expertise in national Cybersecurity policies, DoD or Intelligence Community A&A processes and procedures, and industry best practices on complex systems. Expertise in vulnerability assessment, control allocation, and risk mitigation. Understanding of offensive and defensive security tactics, techniques, and procedures. Experience with cloud architectures is a plus. Ability to negotiate effectively with higher-level Government leads, managers, functional managers, customers, industry partners, and teammates. Demonstrated leadership skills (supervisory experience, building teams, building customer relationships). Strong interpersonal and mentoring skills, and the ability to effectively build and lead teams. Good planning and organizational skills, as well as strong oral and written communications skills. About La Jolla Logic
La Jolla Logic (LJL) is an advanced technology and information system security solutions firm founded in 2011 in San Diego, CA. LJL's mission is to provide reliable, high-quality, and best value advanced technology, specialty cybersecurity, engineering, and Development Security and Operations (DevSecOps) driven solutions to Department of Defense and commercial customers. La Jolla Logic recently joined forces with Boecore and the opportunities are endless! Boecore is an aerospace and defense engineering company headquartered in Colorado Springs, CO that delivers engineering solutions in support of operational system development, fielding, and mission operations for the Space Force, Air Force, Missile Defense, and other DoD clients. Currently, LJL has a competitive compensation package that includes: Medical, Dental, and Vision Coverage 401K Matching Educational Reimbursement Extensive PTO for Vacation and Sick Leave Paid Holidays Applicants requiring reasonable accommodations in the application and/or interview process should notify HR at hr@lajollalogic.com. La Jolla Logic, a Boecore Company is an equal opportunity employer that is committed to diversity and inclusion in the workplace.
#J-18808-Ljbffr
Pay $100000.00 - $130000.00 / year Employment type: Full-Time Job Description
La Jolla Logic
is looking for a qualified
Information Systems Security Manager (ISSM)
to support the Cyber Team in the development and fielding of Defensive Cyber Operations capabilities for the US Space Force (Colorado Springs, CO) utilizing DevSecOps environments and lean agile practices in order to establish enterprise level safeguards such as computer and network systems security and cyber situational awareness, damage assessment and recovery, cyber threat recognition, attribution and mitigation, and active response methodologies across Enterprise Ground Services (EGS) in response to evolving threats and changes to the cyber environment. The program’s goal is to ensure delivery of critical infrastructure services and limit or contain the impact of a potential cybersecurity event and to protect the following mission sets: Protected Communications, Missile Warning, Military Strategic Communications (MILSATCOM), Position Navigation and Timing (PNT), Ballistic Missile Command and Control, Space Domain Awareness (SDA), Nuclear Command Control and Communications (NC3), and Command and Control Satellite Operations (C2 Sat Ops). Salary Range: $100,000-$130,000 Responsibilities
Provide weekly reports on RMF Assessment and Accreditation (A&A) sustainment activities. Participate in RMF A&A related meetings and briefs, to include developing agendas, maintaining minutes and action item lists. Provide expert recommendations for Defense Information Systems Agency (DISA) Security Implementation Security Guide (STIG) implementation and risk mitigation. Lead Assessment and Authorization (A&A) activities for DoD and Intelligence Systems in accordance with Risk Management Framework and ICD-503 guidelines. Support offensive architecture analysis and design of defense-in-depth solutions. Develop and assess system security plans including security concepts of operation, risk management matrix, security control traceability matrix, security test procedures, and plan of action and milestones. Analyze static code scans and dynamic code scans to validate Application Security and Development STIG compliance. Lead and coordinate security test event teams to achieve accreditation milestones. Verify and validate vulnerability resolutions and/or mitigations. Effectively communicate work plans, milestones (POAM), and obstacles to clients; able to communicate, explain, or defend ideas or information clearly. Ability to effectively develop system security plans, procedures, and other security documentation. Resolve non-routine problems with area of assigned responsibility and timely direct complex problems, questions, or complaints to Program Manager. Ability to analyze disparate data and produce a readable, understandable summary to Program Manager, with recommendations for corrective action, as needed; evaluate effectiveness of applied security control. Requirements
Bachelor’s degree
in related field. 8+
years of relevant experience. Active
Secret
security clearance:
U.S. Citizenship is required. DoD 8570 Certification ( Security+
or equivalent required,
CISSP
highly desired). Experience with IAVMs, DISA STIGs, POA&Ms, and related Federal/DoD policies and regulations. Experience with the security authorization process including the review of system security documentation, i.e., System Security Plans (SSP), system boundary definition, systems security plan, configuration management plan, contingency plan, and interconnection security agreements (e.g., MOUs, ISAs). Demonstrated expertise in national Cybersecurity policies, DoD or Intelligence Community A&A processes and procedures, and industry best practices on complex systems. Expertise in vulnerability assessment, control allocation, and risk mitigation. Understanding of offensive and defensive security tactics, techniques, and procedures. Experience with cloud architectures is a plus. Ability to negotiate effectively with higher-level Government leads, managers, functional managers, customers, industry partners, and teammates. Demonstrated leadership skills (supervisory experience, building teams, building customer relationships). Strong interpersonal and mentoring skills, and the ability to effectively build and lead teams. Good planning and organizational skills, as well as strong oral and written communications skills. About La Jolla Logic
La Jolla Logic (LJL) is an advanced technology and information system security solutions firm founded in 2011 in San Diego, CA. LJL's mission is to provide reliable, high-quality, and best value advanced technology, specialty cybersecurity, engineering, and Development Security and Operations (DevSecOps) driven solutions to Department of Defense and commercial customers. La Jolla Logic recently joined forces with Boecore and the opportunities are endless! Boecore is an aerospace and defense engineering company headquartered in Colorado Springs, CO that delivers engineering solutions in support of operational system development, fielding, and mission operations for the Space Force, Air Force, Missile Defense, and other DoD clients. Currently, LJL has a competitive compensation package that includes: Medical, Dental, and Vision Coverage 401K Matching Educational Reimbursement Extensive PTO for Vacation and Sick Leave Paid Holidays Applicants requiring reasonable accommodations in the application and/or interview process should notify HR at hr@lajollalogic.com. La Jolla Logic, a Boecore Company is an equal opportunity employer that is committed to diversity and inclusion in the workplace.
#J-18808-Ljbffr