Information System Security Manager Description & Requirements We are seeking a dedicated and experienced Information System Security Manager (ISSM) to join our team at the Department of Defense Office of the CIO (SAP CIO) in Arlington, Virginia.
This position is on-site, five days a week, and requires an active TS/SCI clearance. Job-Specific Essential Duties and Responsibilities:- Develop, review, endorse, and recommend action by the Authorizing Official (AO) of system assessment documentation.
- Ensure that the Security Control Assessors (SCA) authorization package is accomplished and a valid Authorization determination has been given for all authorization boundaries under your purview.
- Maintain an applicable repository for all system authorization documentation and modifications.
- Collaborate with key stakeholders to ensure security engineering initiatives align with the operational needs within the SAP IT.
- Advise appropriate senior leadership or Authorizing Official of changes affecting the organization's cybersecurity posture.
- Supervise or manage protective or corrective measures when a cybersecurity incident or vulnerability is discovered.
- Oversee policy standards and implementation strategies to ensure procedures and guidelines comply with cybersecurity policies.
Job-Specific Minimum Requirements: - Active TS/SCI Security Clearance.
- Bachelor's Degree in Information Systems, Computer Science, Engineering, Business, or related field required.
- 4 years of relevant work experience may be considered in lieu of degree requirement. An Associates' degree and 2 years of work experience may also be considered in lieu of the degree requirement.
- 8+ years of experience with the execution and management of large-scale Information Technology (IT) projects. This includes over 2 years of direct experience in leading and executing enterprise-wide IT solutions in the private or public sector. Experience includes: Project management of technically and functionally diverse and complex IT projects; Implementing detailed management techniques such as Earned Value Analysis; It solution architectural analysis and design; Software and system developmental and acceptance testing; Acting as manager and overall point of contact for a specific project within an overall enterprise-wide IT solution project.
- CCSP or equivalent certification required.
Preferred Skills and Qualifications: - Cloud certification is a plus.
- Knowledge and experience preforming network security assessments.
- Knowledge of network security architecture concepts including topology, protocols, components, and principle (e.g., application of defense-in-depth).
- Experience in cloud environments and securing workloads.