Job Description A security team that we are collaborating with right now is actively seeking to expand in the software development industry. This company is in San Diego, CA, and is a multidisciplinary innovation firm that creates cutting-edge artificial intelligence solutions for a safe and independent future. They are looking for a full-time Information Security System Manager to be an asset to their team.
In this role, you will be a valuable contributor in this position and work alongside a team of top-tier security experts. The Information Security System Manager designs information system solutions using the Risk Management Framework (RMF). The ISSM is responsible for obtaining and maintaining system evaluations and authorizations through government agencies. In an effort to build a diverse, inclusive, and authentic workforce, we encourage candidates to apply even if their previous experiences do not perfectly match all qualifications.
Required Skills & Experience - Minimum of 10 years of ISSO, ISSM, or Cybersecurity policy or engineering experience
- Proficient with multiple Government information security policies and regulations: e.g. Risk Management Framework (RMF), ICD-503, JSIG, and NIST 800 series special publications
- Experience with management of Microsoft Windows servers and desktop operating systems required
- Experience with security-relevant tools, systems, and applications such as: NESSUS, ACAS, DISA STIGs, SCAP, and HBSS
Duties & Responsibilities - Willing to travel on company business between our two locations in Irvine, CA and Poway, CA or to customer sites
- Leads the design, development and implementation of programs, procedures and systems for secure facilities; ensures facility compliance with requirements for classified information system processing
- Conducts risk and vulnerability assessments of planned and installed information systems to identify vulnerabilities, risks, and protection needs
- Assesses system security threats and risks and provide leadership in the implementation of corrective action
- Leads security reviews, tests, and audits of information technology systems and DoD Cybersecurity On-Site Inspections; ensures periodic self-inspections are conducted
What you will be doing - Responsible for overseeing and managing the information security program within an organization.
- Ensure the confidentiality, integrity, and availability of an organization's information assets, including digital data, systems, networks, and other sensitive information.
- Protect the organization's information from unauthorized access, cyber threats, and data breaches.
- Developing and implementing information security policies, procedures, and guidelines to mitigate risks and ensure compliance with industry standards and regulations.
- Assess the organization's security posture, identify vulnerabilities and potential threats, and develop strategies to mitigate those risks.
- Manage security incidents, conduct security awareness training, and collaborate with stakeholders across the organization to foster a culture of security