Information Systems Security Manager
MANTECH · Colorado Springs, CO · 1 wk ago
On-siteInformation TechnologyFull-time
Responsibilities
- Perform oversight of the development, implementation and evaluation of information system security program policy.
- Special emphasis placed upon integration of existing SAP network infrastructures.
- Perform analysis of network security, based upon the DCID 6/3, DITSCAP, DIACAP, JSIG, and/or NISPOM Chapter 8 certification and accreditation processes.
- Advises customer on IT certification and accreditation issues.
- Develop policies and procedures for responding to security incidents, and for investigating and reporting security violations and incidents.
- Ensure proper protection or corrective measures have been taken when an incident or vulnerability has been discovered within a system.
- Evaluate threats and vulnerabilities to ascertain whether additional safeguards are needed.
- Assess changes in the system, its environment, and operational needs that could affect the accreditation.
- Evaluate system recovery processes to ensure that security features and procedures are properly restored.
- SAOSS PWS - 44 of 83
- SMC Specialized Acquisitions & Operations Security Support
- SMC/SY FA8819-18-C-1001
- Ensure that system security requirements are addressed during all phases of the system life cycle.
- Participate in self-inspections; identify security discrepancies and report security incidents.
- Coordinate all technical security issues outside of area of expertise or responsibility with SSE.
- Provide expert research and analysis in support of expanding programs and area of responsibility.
- Perform file transfers between local systems to storage devices.
- Provide leadership, mentoring, and quality assurance for Team Members.
Requirements
- Bachelor’s degree in a related field or 4 additional years of direct experience will be considered in lieu of degree.
- 6+ years of relevant Information Systems Security experience.
- 4+ years of experience working within an SCI environment.
- Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Technician Level 3 (CASP CE/CCNP/CISA/CISSP) and Information Assurance Manager Level 2 (CGRC/CASP CE/CISM/CISSP/CCISO) within 6 months of the date of hire.
- Must complete training on Joint Security Implementation Guidance (JSIG) and Risk Management Framework (RMF).
Qualifications
- Minimum Qualifications: Bachelor’s degree in a related field or 4 additional years of direct experience will be considered in lieu of degree. 6+ years of relevant Information Systems Security experience. 4+ years of experience working within an SCI environment. Must meet position and certification requirements outlined in DoD Directive 8570.01-M for Information Assurance Technician Level 3 (CASP CE/CCNP/CISA/CISSP) and Information Assurance Manager Level 2 (CGRC/CASP CE/CISM/CISSP/CCISO) within 6 months of the date of hire. Must complete training on Joint Security Implementation Guidance (JSIG) and Risk Management Framework (RMF).
- Preferred Qualifications: 2+ years of SAP experience highly desired. Working knowledge of Microsoft Office (Word, PowerPoint, and Excel). Familiar with security policy/manuals and the appropriate ICDs/JAFANs/DOD Manuals and other guiding policy documents. Ability to work in a dynamic environment and effectively interact with numerous DOD, military/civilian personnel and industry partners. Working knowledge of Microsoft Office (Word, PowerPoint, and Excel). Possess a high degree of originality, creativity, initiative requiring minimal supervision. Willingness to travel within the organizational Area of Responsibility (AOR) (note - could be extensive, and will include both air and ground transportation).
Clearance Requirements
- Current Top Secret Clearance with SCI Eligibility.
- Eligibility for access to Special Access Program Information.
- Willingness to submit to a polygraph.
Physical Requirements
- Must be able to remain in a stationary position 50%.
- The person in this position frequently communicates with co-workers, management and customers, which may involve delivering presentations.
- Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer.