INFORMATION SYSTEM SECURITY MANAGER (ISSM) III (Req 25 065)

About The Position

Requirements

• Master's degree in computer science, information technology, or an equivalent STEM degree from an accredited institution.
• Eight (8) years of experience coordinating with various levels of an organization to oversee and manage information security program implementation.
• Experience managing cyber strategy, personnel, infrastructure, policy enforcement, emergency planning, security awareness, and/or other resources.
• Certification Requirement: CAP, CASP+ CE, CISM, CISSP (or Associate), GSLC, CCISO, or HCISPP is required.
• An Active Secret Security Clearance is required.

Responsibilities

• Supports IT security goals and objectives and reduces overall organizational risk.
• Assists with the collection of data needed to meet system cybersecurity reporting.
• Communicates the value of IT security throughout all levels of the organization stakeholders.
• Assists with security improvement actions as they are evaluated, validated, and implemented.
• Assists with cybersecurity inspections, tests, and reviews for the network environment.
• Assists with identifying alternative information security strategies to address organizational security objectives.
• Assists with interpretation of patterns of noncompliance to determine their impact on levels of risk and/or overall effectiveness of the enterprise's cybersecurity program.
• Participates in an information security risk assessment during the Security A&A process.
• Assists with the tracking of audit findings and recommendations to ensure that appropriate mitigation actions are taken.
• Assists with the identification of security requirements specific to an IT system in all phases of the system life cycle.
• Assists with the successful implementation and functionality of security requirements and appropriate IT policies and procedures that are consistent with the organization's mission and goals.
• Assists programs in resolving findings identified during internal and external review processes.
• Assists with Quality Assurance (QA) reviews for RMF package submissions.
• Develops findings reports and recommends corrective actions for identified deficiencies.
• Coordinates with programs to resolve findings identified during internal and external review processes.
• Reports system compliance in DON Application and Database Management System (DADMS), Department of Defense Information Technology Portfolio Repository Department of the Navy (DITPR-DON), and VRAM.
• Assists with facilitating communication between all RMF stakeholders throughout the RMF process.
• Assists with monitoring systems for upcoming authorization conditions/stipulations, upcoming or past due POA&M items, and SLCM activities.

Benefits

• Generous benefits package including a 401k with employer match.
• Full-time employees are eligible for family medical, dental, and vision benefits.
• Ancillary benefits including life and accidental death and dismemberment insurance.
• Short- and long-term disability insurance.
• Flexible spending accounts.
• Long-term care insurance.
• Accident, hospital, and critical illness insurance.
• 2 weeks vacation leave accrual per year, increasing with tenure.
• 7 days sick leave.
• 11 paid holidays.
• Additional leave time available for bereavement, jury duty, and military training days.