Information System Security Manager (ISSM)

Dine Development Corporation•Wright-Patterson AFB, OH

1d•Onsite

About The Position

North Stone is seeking an ISSM/ISSO to support an Air Force program. We are seeking motivated cybersecurity professionals to help us develop a secure information systems that will keep some of the most innovative projects safe. As a member of our team, you'll create system security plans, make cyber risk decisions, and conduct audits on classified information systems.

Requirements

Must be able to pass a NAC background check. US citizenship required.
Have acquired a BS in Computer Science, Cyber Security, or a related field; 8+years of relevant cybersecurity experience.
Must have one of the following current certifications: CASP+, CISSP, CISSP Associate, CAP, or GSLC.
Have 3+ years working with the RMF, DAAPM, NISPOM, JSIG or other equivalent security frameworks.
Understand Risk Management Framework and NIST 800-53 and how this aligns to FISCAM
Familiarity with eMass, or like product, and methods for receiving an application only ATO
Familiar with performing Security validation testing through a DevSecOps process and within the Cloud Environment
Experience with SI on implementing Static and Dynamic Code Security Scanning with products like SonarQube, Checkmarx, or Twistlock
Must have at least 5-8 years DoD experience and worked in a numerous AF PMOs; understands documentation required from PMO to successfully implement a new system
Ability to identify risks of implementing technology solutions and analyze the impact on achieving desired business outcomes
Experience building sustainable and transferrable architecture for automated testing
Have the ability to work on-site at the customer facility (at WPAFB) if geographically located within 50 miles of the base.
This contractor and subcontractor shall abide by the requirements of 41 CFR 60-1.4(a), 60-300.5(a) and 60-741.5(a). These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, national origin, or for inquiring about, discussing, or disclosing information about compensation, or any other basis prohibited by law. We participate in E-Verify.

Nice To Haves

Preference will be given to candidates within that commuting radius.

Responsibilities

Manage the program's migration from NIST SP 800-53 Rev 4 to Rev 5"
Develops, implements, and maintains data strategy to ensure quality and accessibility
Develops/maintains the definition and documentation of architectural standards, reference architectures processes, operating models, and logical and physical data/associated data management resources
Ensure unclassified systems follow government and APL regulations while still meeting program demands and operating in an accredited state.
Lead all aspects of SSP development, maintenance, accreditation/re-accreditation, and oversight, including conducting periodic reviews to ensure compliance.
Lead contact for IS security inspections, tests, and reviews by oversight authorities.
Other duties as assigned.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume