Information System Security Manager 2

About The Position

Requirements

• Ability to configure and review security functions of information systems.
• Ability to conduct security analyses, including security configurations and risk assessments.
• Ability to lead a team of Information System Security Officers and monitor performance.
• Familiarity working with DoD/IC Security Control Assessors.
• Familiarity with C2G/C2C interconnected systems and/or Wide Area Network (WAN) environments.
• Understanding of virtual environments and containerization tools/technologies.
• Ability to identify systemic security issues based on the analysis of vulnerabilities and configuration data.
• Ability to apply techniques for detecting host and network based intrusions using intrusion detection technologies.
• Ability to function effectively in a dynamic, fast paced environment.
• Strong interpersonal skills with effective verbal and written communication skills.
• Clear and structured thought processes and coherent decision making skills.
• Bachelors Degree in Computer Science/Cybersecurity/Information Technology or equivalent field of study required.
• 3-5 years of experience as an ISSM, or performing as an ISSO, implementing DCSA Assessment and Authorization Process Manual (DAAG), DoD Joint Special Access Program Implementation Guide (JSIG), and/or Intelligence Community Directive (ICD) 503 Risk Management, Certification and Accreditation requirements.
• Applicants selected for this position will be required to obtain and maintain a government security clearance.
• Current in scope Top Secret security clearance is required.

Responsibilities

• Use cyber defense tools for continuous monitoring and analysis of systems to identify malicious activity.
• Document and escalate incidents that may cause ongoing and immediate impact to the environment.
• Perform cyber defense trend analysis and reporting.
• Work with stakeholders to resolve computer security incidents and vulnerability compliance.
• Provide advice and input for Disaster Recovery, Contingency, and Continuity of Operations Plans.
• Perform security reviews, identify gaps in security architecture, and develop a security risk management plan.
• Perform risk analysis whenever an application or system is implemented or changed.
• Ensure successful implementation and functionality of security requirements and appropriate IT policies and procedures.
• Leads assigned team to facilitate effective execution of the Risk Management Framework (RMF).
• Mentor and train Information System Security Officer personnel.
• Perform other duties as assigned.

Benefits

• Draper supports many programs to improve work-life balance including workplace flexibility, employee clubs ranging from photography to yoga, health and finance workshops, off site social events and discounts to local museums and cultural activities.