Associate Manager, Alternate Information Systems Security Manager

About The Position

Requirements

• Minimum of 5+ years of experience in cybersecurity.
• Demonstrable expertise motivating, influencing, and managing cybersecurity personnel.
• Provable experience at SME level with authorization package submission tools (e.g., eMASS) that leads to successful Authorizations to Operate (ATO) and Authority to Connect (ATC).
• Proven ability to drive the Risk Management Framework (RMF) process, collaborate with government authorities (e.g., DCSA) for approvals, and conduct risk and vulnerability assessments in accordance with the DCSA Assessment & Authorization Guide (DAAG) and the National Industrial Security Program Operating Manual (NISPOM).
• Demonstrated capability to manage multiple projects simultaneously in a dynamic, high tempo environment.
• Proven competency implementing information assurance and cybersecurity standards, directives, and policies (e.g., NIST) within classified, risk based frameworks.

Nice To Haves

• DoD 8140/8570 IAT/M or IASAE Level-III Certification, such as: CISM, CISSP, CISSP-ISSAP, CISSP-ISSEP, or CCISO.
• Experience leading teams in a hybrid work environment.
• Develop and implement a comprehensive information system security strategy, ensuring that all components and processes are properly secured, compliant with regulatory requirements, and aligned with organizational objectives.
• Demonstratable experience conducting internal and external customer assessments, including: o Identifying areas for improvement o Providing recommendations for remediation o Developing and implementing corrective action plans
• Proven ability to evaluate proposed changes or additions to the information system, including: o Assessing their security relevance o Providing advisory support to the ISSM o Ensuring compliance with relevant regulations and standards
• Proven experience implementing new and complex technologies at an enterprise level, including: o Ensuring seamless integration with existing systems o Minimizing disruption to operations o Providing training and support to users

Responsibilities

• Attracting, retaining, and developing cyber talent to ensure a skilled and effective classified cyber security team.
• Oversee the planning, implementation, testing, and monitoring of classified cyber-security measures.
• Assess and mitigate classified system security threats and risks throughout the program life cycle.
• Oversee the validation of classified system security requirements, leading teams to ensure accurate and comprehensive assessments.
• Direct the development and maintenance of technical system security documentation, leading teams to produce high-quality and compliant documents.
• Proven experience in executing security hardening on Windows and RHEL operating systems, based on approved DISA STIGs.
• Demonstrated experience in implementing NIST SP 800-53 security controls to ensure compliance with industry standards (Windows, Linux, Network, etc).
• Coordinate activities with the Information System Security Manager (ISSM) to ensure systems are secure and compliant.

Benefits

• Medical
• Dental
• Vision
• Life Insurance
• Short-Term Disability
• Long-Term Disability
• 401(k) match
• Flexible Spending Accounts
• EAP
• Education Assistance
• Parental Leave
• Paid time off
• Holidays