Title:  Manager, Information System Security Manager

Job Title: Manager, Information System Security Manager (ISSM)
Job Code: 20952
Job Location: Ashburn, VA (On-site)
Job Schedule: 9/80 

Job Description: 
The Cyber Intelligence Manager/Information System Security Manager (ISSM) is part of an Information Security team supporting a wide variety of existing and developing computer network, communications systems, and projects. The Manager/ISSM partners with senior leadership to implement goals and execute strategic endeavors. 

Essential Functions: 
•    Direct supervision of a team of ISSOs, responsible for training, mentoring, timecards, and periodic reviews etc. 
•    Partner with Cybersecurity leads in strategic planning, funding allocations, and implementation of solutions to ensure best in practice.
•    Manage, develop, and conduct risk assessment procedures for verification of RMF/Assessment and Authorization (A&A) safeguards to meet various regulatory requirements based upon NISPOM/DAAPM, RMF, JSIG, and NIST 800 series (800-53, 800-171 etc.) guidelines.
•    Author, provide oversight, and timely delivery of various artifacts supporting Authority to Operate (ATO). 
•    Lead and/or partner working groups that establish/review/upgrade policies and procedures, solutions, and automation.  
•    Manage inputs into Risk Management Framework process activities and related documentation (e.g., system life-cycle support plans, concept of operations, operational procedures, and maintenance training materials).
•    Performs security reviews, audit security controls, identify gaps in security architecture, and develop corrective or mitigating actions. 
•    Coordinates with internal/external partners to establish system security designs. 
•    Monitor cyber compliance by performing self-inspections, participating in customer inspections, and tests/reviews of the IS to ensure that systems are operating as authorized/accredited and that conditions have not changed.
•    Configuration change management processes (including hardware/software changes, account management, media control procedures, disposition, Assured File Transfers (AFT) and related documentation) in accordance with policies and procedures.
•    Performs ISSM/ISSO duties in their absence. 
•    Provide leadership and oversight in absence of senior leadership.
•    Ensure that all acquisitions, procurements, and outsourcing efforts address information security requirements consistent with organization goals.
•    Ability to obtain and maintain Top Secret clearance and any additional clearances as required. 
•    Ability to lift to 20 lbs.
•    Up to 15% travel may be required.
•    Performs other duties as required and assigned by senior leadership.
 

Qualifications: 
•    Active DoD Secret clearance with current 6-year update with ability to obtain Top Secret.

•    Bachelor’s with a minimum 9 years prior relevant experience with various operating systems (Windows, RHEL, Cisco), Windows server systems, thin client architecture, system virtualization, WANs/LANs, Stand-alone IS, and other related peripherals. Master’s with a minimum of 7 years prior relevant experience. In lieu of a degree, minimum of 13 years of prior related experience. 

•    Must obtain 8140 Certification (CISSP, CISM etc.) within six (6) months of hire.
 

Preferred Additional Skills:
•    Bachelor’s/Master’s degree in STEM or a related field and/or equivalent experience desired.
•    Existing 8140 Certification (CISSP, CISM etc.).
•    Demonstrate basic organizational, decision-making, and problem-solving skills.
•    Well versed in risk management, mitigation, and customer service.
•    Excellent written and verbal presentation skills.

•    Experience in Special Access Programs (SAPs) and/or Collateral environments.
•    Experience with SPLUNK, Security Center, Trellix Suite (DLP etc.), DISA STIGs, eMASS, Group Policy, and other software/systems.
•    Proficiency with Microsoft Office products.