Information Systems Security Manager
Job Locations
US-VA-Rosslyn
ID |
2024-8250
|
Category |
Other
|
Type |
Regular Full-Time
|
Overview
The Information Systems Security Manager (ISSM) is responsible for implementing and overseeing cyber hygiene for all refugee operational activities within the Refugee Processing Center (RPC). Reporting directly to the Project Manager and Deputy Project Manager for the RPC project.
Responsibilities include, but are not limited to the duties listed below
Education, Requirements and Qualifications
- US citizen with the ability to obtain a Secret or Top Secret/SCI security clearance is required.
- BS degree in Computer Science, or other IT related fields, Cyber, or Information Assurance or 10+ years of experience as an ISSO in lieu of a Bachelor's degree
- CISSP certification is required.
- PMP certification is preferred.
- Minimum of five (5) years of progressive management experience
- At least ten (10) years of hands-on experience in developing and implementing RMF framework and A&A processes, specifically focused on developing SSP packages for achieving ATO for FISMA system.
- Ability to prepare management, business, technical, and personnel reports, reviews, and documents for internal and external use.
- Broad range of knowledge and experience with Security and System Architecture
- Understanding of, and experience applying industry security policies, regulations, and guidelines such as NIST, FISMA, and SANs top 20 controls, etc.
- Knowledge of change control and change management process, project management, Enterprise Architecture frameworks, SDLC, Security Policy.
- Knowledge of ports, protocols, and the OSI Model.
- Knowledge of key security capabilities such as e-forensics, logging/SIEM, risk management, PKI, IPsec, vulnerability management, A&A, continuous monitoring, disaster recovery, network, and endpoint security.
- Experience conducting analysis and providing recommendations on new or existing security capabilities.
- Excellent communication skills, with the ability to effectively communicate complex security concepts to technical and non-technical stakeholders.
- Experience working with IP networking, networking protocols, and understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, electronic mail, and access-lists.
- Experience working with internet, web, application, and network security techniques.
- Experience working with relevant operating system security (Windows, Solaris, Linux, etc.)
- Strong analytical and problem-solving skills to troubleshoot and resolve security issues.
- Ability to perform and interpret vulnerability assessments.
- Ability to balance and prioritize work and work in a team environment.
- Experience with the Federal government, preferably with Department of State or DHS
Need help finding the right job?
We can recommend jobs specifically for you!
Click here to get started.
|