Jobs · Management · Florida

Information Systems Security Manager (ISSM) - Active TS/SCI

MDAEdge · Eglin Air Force Base, FL · 1 mo ago
On-siteManagementFull-time

Key Responsibilities

  • Perform oversight of information system security program policy, with emphasis on integrating SAP network infrastructures.
  • Develop and oversee operational security implementation policy and guidelines based on Risk Management Framework (RMF) and JSIG authorization process.
  • Advise on RMF assessment and authorization issues, risk assessments, and recommendations for DoD customers.
  • Advise government program managers on security testing methodologies and processes.
  • Evaluate authorization documentation and provide written recommendations to government PMs.
  • Develop and maintain a formal Information Systems Security Program.
  • Ensure IAOs, network administrators, and cyber security personnel receive required technical and security training.
  • Develop, review, endorse, and recommend action on system assessment documentation.
  • Establish approved procedures for clearing, sanitizing, and destroying hardware and media.
  • Develop and execute security assessment plans to verify protection levels.
  • Maintain repository for all system authorization documentation and modifications.
  • Develop policies and procedures for responding to security incidents, including investigation and reporting.
  • Ensure corrective measures for discovered incidents or vulnerabilities.
  • Establish data ownership, accountability, access rights, and special handling requirements for each authorization boundary.
  • Develop and implement information security education, training, and awareness program.
  • Evaluate threats and vulnerabilities to determine additional safeguards.
  • Assess system, environment, and operational changes affecting authorization.
  • Ensure valid authorization determination for all boundaries.
  • Review AIS assessment plans.
  • Coincide with PSO or security officials on external information systems.
  • Conduct periodic security posture assessments.
  • Institute and implement Configuration Control Board (CCB) charter.
  • Ensure configuration management for security-relevant changes to software, hardware, and firmware.
  • Ensure periodic testing using intrusion/attack detection tools.
  • Ensure system recovery and reconstitution processes match availability levels.
  • Keep all authorization documentation current and accessible.
  • Address system security requirements across the life cycle.
  • Participate in self-inspections and periodic security reviews.
  • Coincide with ISSE on technical security issues.
  • Provide expert research, analysis, leadership, mentoring, and quality assurance for cyber security and IT team members.
  • Develop Assured File Transfers (AFT) per JSIG.

Required Qualifications

  • Active TS/SCI clearance with eligibility for Special Access Program Information.
  • Willingness to submit to Counterintelligence polygraph.
  • Bachelor's degree in related field or equivalent experience (4+ years).
  • 7-9 years experience with RMF and JSIG authorization process.
  • Prior experience in ISSO or ISSM roles.
  • Working knowledge of DoD, National, service, and agency security policies, manuals, and standards.
  • Meet DoD Directive 8570.01-M IAT Level II or IAM Level II certification within 6 months of hire.
  • Native or bilingual proficiency in English.
  • 7+ years total relevant experience.

Similar jobs