Information System Security Manager (ISSM) - *Active Clearance Required*
GENERAL JOB SUMMARY
Responsible for managing Information Systems (IS) security principles and policies, including the Risk Management Framework (RMF), Security Technical Implementation Guides (STIGs), 32 CFR Part 117 National Industrial Security Program Operating Manual (NISPOM), Defense Counterintelligence and Security Agency (DCSA) Assessment and Authorization Process Manual (DAAPM), DoD 5200.01 Information Security Program and Protection of Sensitive Compartmented Information (SCI), and DoD 5205.07 Special Access Program (SAP) Security Manual. Safeguards networks against unauthorized modification, destruction, or disclosure. Researches, evaluates, designs, tests, recommends, communicates, and implements new security software or devices.
ESSENTIAL JOB FUNCTIONS
- Establish and maintain classified computer systems following DOD, NISPOM, and Joint Special Access Program Implementation Guide (JSIG), including but not limited to: Responsible for network address assignment, routing protocols, and routing table configuration as well as configuration of authentication and authorization.
- Utilize SIEM/SEM tools to conduct regular system auditing and conduct trend analysis.
- Develop Security Assessment Reports (SAR) and investigate environmental risk to create Risk Assessment Reports (RAR).
- Develops and maintains a formal information system (IS) security program. Develops and maintains System Security Plans (SSP) and related documentation such as the Plan of Action & Milestones (POA&M), Risk Assessment Report, and Continuous Monitoring Strategy.
- Implements, enforces, communicates, and may develop internet, network, or other information security policies or security plans for data, internet, software applications, and hardware, telecommunications, and computer installations.
- Maintains the hardware and software that comprises the network (data, voice, and video); including the deployment, maintenance and monitoring of active network gear; switches, routers, firewalls, and appliances.
- Ensures audit records are collected and analyzed in accordance with policies and procedures.
- Responds to IS security incidents including investigation and report detail.
- Maintain a working knowledge of system functions, security policies, technical security safeguards, and operational security measures to restrict unauthorized use of data systems and databases.
- Safeguards all users' security clearances, authorization, need-to-know, and ensures they are aware of their security responsibilities before granting access to the IS.
- Afford assistance with the development and implementation of an effective IS security education, training, and awareness program. Conducts initial and annual required training of privileged and general users.
- Conduct proof of concept and present proposals for new hardware and software.
- Manage disaster recovery functions for information systems.
- Serve as member of the configuration change board (CCB).
- Assess changes to the system/operational needs that could affect system(s) accreditation.
- Voting/veto member of the CCB for all systems.
- Assume ISSO responsibilities as necessary and assist in other disciplines of Security as needed to support the program(s).
- Provide technical guidance as a non-voting member of the configuration change board.
- Serve as a member of the COMSEC Team.
- Other duties may be assigned.
SUPERVISORY RESPONSIBILITY
No
KNOWLEDGE, SKILLS & ABILITIES
- Ability to maintain sensitive and confidential information as required by government standards.
- Ability to interact effectively with peers and supervisors.
- Ability to interact appropriately with the public when necessary.
- Ability to adhere to workplace rules.
- Ability to effectively communicate professionally in writing or verbally with all levels of personnel.
EDUCATION AND EXPERIENCE
- Required: Must have DoD 8570 IAM Level III certification (i.e., CISM, CISSP or GSLC) or the ability to obtain within 6 months from appointment.
- Must have DoD 8570 IAM Level II certification (i.e., CASP CE, CISM or CISSP) or the ability to obtain within 6 months from appointment.
- Must have working knowledge of TCP/IP, network switching, routing and infrastructure cabling. Must be able to configure switches by using work instructions.
- Must have solid work experience with Linux and Windows Operating Systems, DISA STIGS, and SCAP Compliance, including executing Security STIG/Hardening on Windows Operating Systems.
- Required to have and maintain a U.S. security clearance at the appropriate level (requires U.S. Citizenship).
WORK ENVIRONMENT/PHYSICAL REQUIREMENTS
- Office and/or manufacturing environment.
- Ability to stand and sit for long periods of time.
- Ability to perform repetitive motion (keyboarding, 10-key, phones).
- May be required to lift up to 50 pounds in accordance with KUAS General Safety Training guidelines.
- May work extended hours or weekends and have on-call schedule/duties.
TRAVEL REQUIREMENTS
25% travel may be required between customer site and/or other Kratos Unmanned Division locations.
Job Benefits
- Medical, Dental & Vision Insurance Coverage
- Life/ADD & Short/Long Term Disability Insurance
- 401(k) Savings Plan
- Employee Stock Purchase Plan (ESPP)
- Paid Time-Off (PTO)
- Holidays
- Education Reimbursement
Company Information
- Kratos Defense & Security Solutions, Inc., is a leading defense technology company focused on unmanned systems, satellite communications, cyber security/warfare, microwave electronics, missile defense, training, and combat systems.
- The company's customers include the U.S. federal government, foreign governments, commercial enterprises, and state and local government agencies.
- Kratos Unmanned Aerial Systems (KUAS), a division of Kratos Defense, is renowned for its expertise in developing, delivering, integrating, and supporting high-performance, cost-effective, jet-powered Unmanned Aerial Systems (Targets and Tactical).
Company Commitment
- Kratos Defense is an Equal Opportunity Affirmative Action Employer.
- EEO, Minorities, Females, Vet, Disabled, Sexual Orientation, Gender Identity or any other protected class.
- All qualified job seekers are encouraged to apply.
- Kratos Defense is committed to America's veterans by providing opportunities for them to continue contributing after service to our nation.
- We also work to provide reasonable accommodations to individuals with disabilities.
Pay Transparency
The company will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant.
Job Applicant Privacy Notice
If you require an accommodation to navigate or apply to our careers site, please send your request to HRAccessibility@kratosdefense.com or call 858-964-2916. Any inquires not related to requesting an accommodation will be discarded.
Pay Transparency
The company will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant.