Information Systems Security Manager (ISSM)
About The Position
This role will serve as the Information Systems Security Manager (ISSM) for the Torrance and Cypress, CA facilities. The ISSM is responsible for maintaining the overall system security posture of classified programs and technical security capabilities at Mercury sites. The ISSM manages the process to protect classified information. Primary function is the implementation of all classified security policy, procedures, and government security requirements required by the United States Government. Additionally, the ISSM is responsible for the implementation of the Department of Defense (DoD) Risk Management Framework (RMF), outline classified security policies and procedures and assures compliance with all applicable government regulations. The ISSM will work closely with the Corporate Security team to ensure compliance with DoD and other U.S. Government system requirements.
Requirements
- Bachelor’s degree
- Typically requires 5 years of prior relevant experience
- Must be a U.S. Citizen
- Active US Secret security clearance with the ability to obtain Top Secret clearance.
- Must have Security+ or obtain certification within 6 months of hire.
- Linux admin experience
Nice To Haves
- Advanced Degree in a related field
- Typically requires 3 years experience
- E Mass Data Base Experience
- ISSM Certification
Responsibilities
- Collaborate with the Corporate ISSM to ensure all accredited information systems meet RMF requirements.
- Prepare, maintain, and upload System Security Plans (SSPs) and supporting artifacts in eMASS.
- Ensure SSPs accurately reflect system configuration and required security controls.
- Support certification testing and assessments conducted by the Cognizant Security Agency (CSA).
- Develop and maintain procedures supporting Configuration Management (CM) for security relevant hardware, software, and firmware.
- Ensure compliance with DoD certification and accreditation requirements, including DoDI 8510.01 (RMF for DoD IT).
- Install, update, and maintain security-related software tools to detect malicious code, viruses, and unauthorized intrusions.
- Maintain the physical security for site(s) to include intrusion detection system, access control, CCTV, security locks, and GSA security containers.
- In partnership with the FSO, implement procedures for marking, handling, transporting, sanitizing, and destroying media containing classified information.
- Conduct periodic hardware and software inventory assessments. Identifies system security control shortcomings and serves as lead for remediating deficiencies.
- Conduct audits, performs analysis, and investigates security incidents such as data spills, data integrity and malicious events.
Benefits
- lifelong learning
- comprehensive skills training
- tuition reimbursement
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
