Modern Technology Solutions, Inc. (MTSI)
Information Systems Security Manager (ISSM)
Modern Technology Solutions, Inc. (MTSI), Dayton, Ohio, United States, 45444
Information Systems Security Manager (ISSM)
As an Information Systems Security Manager with MTSI you will be responsible for the security posture of assigned information systems, ensuring compliance with relevant security policies, procedures, and regulations. You will work closely with system administrators, developers, network engineers, and other stakeholders to implement, maintain, and monitor security controls, and to ensure the confidentiality, integrity, and availability of organizational data and systems. This position will be located at Wright-Patterson AFB.
Overview Information systems security management duties focused on ensuring compliance with security policies and regulations, implementing and maintaining security controls, and supporting secure system design, development, and operations.
Responsibilities
Create, implement, and maintain system-specific security policies, standards, and procedures, ensuring alignment with organizational and regulatory requirements (e.g., NIST, ISO, HIPAA, PCI DSS) and effective communication and enforcement.
Conduct regular risk assessments and vulnerability scans to identify security vulnerabilities and threats, and develop and implement mitigation strategies with tracked remediation efforts.
Implement and maintain a comprehensive suite of security controls, including access controls, intrusion detection systems, firewalls, anti-malware software, and data loss prevention (DLP) solutions, ensuring optimal configuration and adherence to best practices.
Participate in security incident response activities, including investigation, containment, eradication, and recovery; document incidents and capture lessons learned to improve future responses.
Develop and deliver engaging security awareness training programs for users and system administrators, fostering a culture of security awareness.
Ensure continuous compliance with security regulations and standards (e.g., NIST, ISO, HIPAA, PCI DSS); prepare for and participate in security audits and assessments; maintain comprehensive documentation to support compliance efforts.
Collaborate with system administrators, developers, network engineers, and other stakeholders to integrate security into all phases of system design, development, and operation.
Provide security advisory support to project teams and business units, communicating risks and offering informed recommendations to management.
Stay informed about the latest threats and technologies; recommend and implement ongoing improvements to security policies, procedures, and controls; participate in industry security forums.
Maintain accurate documentation of security configurations, policies, procedures, and incident responses; develop and maintain system security plans (SSPs) and other essential security documentation.
Qualifications
8+ years in information security, with at least 3 years in a role as an ISSM or similar.
Strong understanding of cybersecurity principles, risk management methodologies, and security controls.
Experience with security assessment tools, such as vulnerability scanners and penetration testing tools.
Experience with security technologies, such as firewalls, IDS/IPS, anti-malware, and DLP solutions.
Knowledge of operating systems (Windows, Linux), networking protocols, and cloud computing environments.
Education
Master’s degree in Computer Science, Information Systems, Cybersecurity, or a related field. 8 additional years of relevant experience may be substituted for a master’s degree.
Certifications and Skills
Relevant security certifications are highly desirable (e.g., CISSP, CISM, CompTIA Security+, GIAC certifications such as GSEC, GCIH, GCIA).
Familiarity with scripting languages (e.g., Python, PowerShell) is a plus.
Creative problem-solving, analytical skills, ability to work under pressure, and strong business judgment.
Ability to establish priorities, work independently, manage multiple projects, and proceed with objectives with minimal supervision.
Excellent interpersonal and relationship-building skills across diverse technical and non-technical groups.
Clearance Requirements
Active DoD TS/SCI with in-scope SSBI and SAP eligibility required. U.S. Citizenship is required.
Perks & Benefits
Vacation: New hires accrue 20 days of PTO and 10 holidays per year.
Health Insurance: Zero deductible plans available.
Flexible Schedules: Flex schedules.
Professional Development: Up to $10,000 annual education/training reimbursement.
ESOP: Funded stock ownership plan.
401k Match: 6% match with immediate vesting.
Bonus Program: Semi-annual bonus opportunity.
Mentorship: Career mentorship programs.
About MTSI Modern Technology Solutions, Inc. (MTSI) is an employee-owned engineering services and solutions company specializing in cybersecurity, AI, autonomy, and mission assurance. For more information, please visit www.mtsi-va.com.
EEO Statement: MTSI is committed to Equal Employment Opportunity and providing reasonable accommodations to applicants and employees with disabilities.
#J-18808-Ljbffr
Overview Information systems security management duties focused on ensuring compliance with security policies and regulations, implementing and maintaining security controls, and supporting secure system design, development, and operations.
Responsibilities
Create, implement, and maintain system-specific security policies, standards, and procedures, ensuring alignment with organizational and regulatory requirements (e.g., NIST, ISO, HIPAA, PCI DSS) and effective communication and enforcement.
Conduct regular risk assessments and vulnerability scans to identify security vulnerabilities and threats, and develop and implement mitigation strategies with tracked remediation efforts.
Implement and maintain a comprehensive suite of security controls, including access controls, intrusion detection systems, firewalls, anti-malware software, and data loss prevention (DLP) solutions, ensuring optimal configuration and adherence to best practices.
Participate in security incident response activities, including investigation, containment, eradication, and recovery; document incidents and capture lessons learned to improve future responses.
Develop and deliver engaging security awareness training programs for users and system administrators, fostering a culture of security awareness.
Ensure continuous compliance with security regulations and standards (e.g., NIST, ISO, HIPAA, PCI DSS); prepare for and participate in security audits and assessments; maintain comprehensive documentation to support compliance efforts.
Collaborate with system administrators, developers, network engineers, and other stakeholders to integrate security into all phases of system design, development, and operation.
Provide security advisory support to project teams and business units, communicating risks and offering informed recommendations to management.
Stay informed about the latest threats and technologies; recommend and implement ongoing improvements to security policies, procedures, and controls; participate in industry security forums.
Maintain accurate documentation of security configurations, policies, procedures, and incident responses; develop and maintain system security plans (SSPs) and other essential security documentation.
Qualifications
8+ years in information security, with at least 3 years in a role as an ISSM or similar.
Strong understanding of cybersecurity principles, risk management methodologies, and security controls.
Experience with security assessment tools, such as vulnerability scanners and penetration testing tools.
Experience with security technologies, such as firewalls, IDS/IPS, anti-malware, and DLP solutions.
Knowledge of operating systems (Windows, Linux), networking protocols, and cloud computing environments.
Education
Master’s degree in Computer Science, Information Systems, Cybersecurity, or a related field. 8 additional years of relevant experience may be substituted for a master’s degree.
Certifications and Skills
Relevant security certifications are highly desirable (e.g., CISSP, CISM, CompTIA Security+, GIAC certifications such as GSEC, GCIH, GCIA).
Familiarity with scripting languages (e.g., Python, PowerShell) is a plus.
Creative problem-solving, analytical skills, ability to work under pressure, and strong business judgment.
Ability to establish priorities, work independently, manage multiple projects, and proceed with objectives with minimal supervision.
Excellent interpersonal and relationship-building skills across diverse technical and non-technical groups.
Clearance Requirements
Active DoD TS/SCI with in-scope SSBI and SAP eligibility required. U.S. Citizenship is required.
Perks & Benefits
Vacation: New hires accrue 20 days of PTO and 10 holidays per year.
Health Insurance: Zero deductible plans available.
Flexible Schedules: Flex schedules.
Professional Development: Up to $10,000 annual education/training reimbursement.
ESOP: Funded stock ownership plan.
401k Match: 6% match with immediate vesting.
Bonus Program: Semi-annual bonus opportunity.
Mentorship: Career mentorship programs.
About MTSI Modern Technology Solutions, Inc. (MTSI) is an employee-owned engineering services and solutions company specializing in cybersecurity, AI, autonomy, and mission assurance. For more information, please visit www.mtsi-va.com.
EEO Statement: MTSI is committed to Equal Employment Opportunity and providing reasonable accommodations to applicants and employees with disabilities.
#J-18808-Ljbffr