ClearanceJobs
Information Systems Security Manager (ISSM), Senior
ClearanceJobs, Washington, District of Columbia, us, 20022
Information System Security Manager (ISSM)
CGI Federal has an exciting opportunity for an ISSM within our Intel sector advancing the national security mission through cutting edge technology. You must have a passion for keeping pace with rapidly evolving technology advancements and leveraging your knowledge on a highly collaborative team to deliver state-of-the-art capabilities. The Information System Security Manager (ISSM) develops, implements, and maintains an organization's information security program, overseeing day-to-day security operations, managing risk assessments and incident response, ensuring compliance with government regulations, and advising leadership on security posture. Key duties include developing security plans and documentation, conducting technical and administrative assessments, managing security personnel, and coordinating with government authorization authorities for classified systems. Your future duties and responsibilities include: Security Operations Management: Oversee daily security operations for both classified and unclassified systems, ensuring policies and procedures are established and followed. Risk Management: Conduct risk assessments, vulnerability analyses, and investigations to identify and mitigate threats and vulnerabilities. Compliance and Authorization: Implement and manage security plans, ensuring information systems comply with government regulations (like the Risk Management Framework - RMF) and maintain Authorization to Operate (ATO) status. Documentation: Create, review, and manage security-related documentation, including System Security Plans (SSPs), Risk Assessment Reports (RARs), and other cybersecurity artifacts. Incident Response: Develop and implement incident response plans, oversee investigations of security breaches, and ensure proper measures are taken to address incidents and vulnerabilities. Team Leadership: Attract, retain, and develop a skilled cybersecurity team, and oversee the implementation of security policies by team members. Configuration Management: Manage the configuration of systems, hardware, and firmware to maintain security integrity and control changes to systems. Strategic Leadership: Advise senior management and stakeholders on the organization's security posture, risks, and cybersecurity requirements. Awareness and Training: Develop and implement information security education and training programs to raise employee awareness of security issues. Required qualifications to be successful in this role include: Education and/or Experience: Bachelor's degree and/or 5 to 8 years of experience Security Clearance: TS/SCI required with the ability to obtain a TS/SCI with Poly highly desired Technical Expertise: Proficiency in cybersecurity principles, risk management frameworks (like RMF), and security technologies. Leadership: Ability to lead and develop a cybersecurity team. Communication: Strong communication skills to advise leadership, interface with government agencies, and collaborate with various stakeholders. Risk Assessment: Expertise in conducting technical and administrative assessments to evaluate security risks. Regulatory Knowledge: Understanding of government regulations and compliance standards (such as DoD, NIST, FIPS, and CNSS policies) relevant to information systems security. CGI Federal's benefits are offered to eligible professionals on their first day of employment to include: Competitive compensation Comprehensive insurance options Matching contributions through the 401(k) plan and the share purchase plan Paid time off for vacation, holidays, and sick time Paid parental leave Learning opportunities and tuition assistance Wellness and Well-being programs Skills: Intelligence
CGI Federal has an exciting opportunity for an ISSM within our Intel sector advancing the national security mission through cutting edge technology. You must have a passion for keeping pace with rapidly evolving technology advancements and leveraging your knowledge on a highly collaborative team to deliver state-of-the-art capabilities. The Information System Security Manager (ISSM) develops, implements, and maintains an organization's information security program, overseeing day-to-day security operations, managing risk assessments and incident response, ensuring compliance with government regulations, and advising leadership on security posture. Key duties include developing security plans and documentation, conducting technical and administrative assessments, managing security personnel, and coordinating with government authorization authorities for classified systems. Your future duties and responsibilities include: Security Operations Management: Oversee daily security operations for both classified and unclassified systems, ensuring policies and procedures are established and followed. Risk Management: Conduct risk assessments, vulnerability analyses, and investigations to identify and mitigate threats and vulnerabilities. Compliance and Authorization: Implement and manage security plans, ensuring information systems comply with government regulations (like the Risk Management Framework - RMF) and maintain Authorization to Operate (ATO) status. Documentation: Create, review, and manage security-related documentation, including System Security Plans (SSPs), Risk Assessment Reports (RARs), and other cybersecurity artifacts. Incident Response: Develop and implement incident response plans, oversee investigations of security breaches, and ensure proper measures are taken to address incidents and vulnerabilities. Team Leadership: Attract, retain, and develop a skilled cybersecurity team, and oversee the implementation of security policies by team members. Configuration Management: Manage the configuration of systems, hardware, and firmware to maintain security integrity and control changes to systems. Strategic Leadership: Advise senior management and stakeholders on the organization's security posture, risks, and cybersecurity requirements. Awareness and Training: Develop and implement information security education and training programs to raise employee awareness of security issues. Required qualifications to be successful in this role include: Education and/or Experience: Bachelor's degree and/or 5 to 8 years of experience Security Clearance: TS/SCI required with the ability to obtain a TS/SCI with Poly highly desired Technical Expertise: Proficiency in cybersecurity principles, risk management frameworks (like RMF), and security technologies. Leadership: Ability to lead and develop a cybersecurity team. Communication: Strong communication skills to advise leadership, interface with government agencies, and collaborate with various stakeholders. Risk Assessment: Expertise in conducting technical and administrative assessments to evaluate security risks. Regulatory Knowledge: Understanding of government regulations and compliance standards (such as DoD, NIST, FIPS, and CNSS policies) relevant to information systems security. CGI Federal's benefits are offered to eligible professionals on their first day of employment to include: Competitive compensation Comprehensive insurance options Matching contributions through the 401(k) plan and the share purchase plan Paid time off for vacation, holidays, and sick time Paid parental leave Learning opportunities and tuition assistance Wellness and Well-being programs Skills: Intelligence