Information Systems Security Manager

About The Position

Requirements

• 8+ years of combined experience working in defensive/offensive cybersecurity, information assurance, penetration testing, or related fields.
• Knowledge of the Department of Navy and Naval Air Systems Command (NAVAIR), including digital infrastructure/environments, DevSecOps, Continuous Integration/Continuous Development (CI/CD), and continuous Authority to Operate (cATO).
• Proven experience in designing, implementing, and maintaining multi-level security architectures across cloud, infrastructure, and platform applications.
• Strong technical expertise in identifying and developing cyberspace operations requirements, processes, and security controls.
• Experience designing and operating enterprise security controls and conducting incident response.
• Analytical skills to assess capability development requirements, system architectures, and emerging cybersecurity technologies.
• Excellent written and verbal communication skills.
• Ability to work independently and in a fast-paced team environment with changing priorities.
• Ability and motivation to learn new skills in an evolving information security landscape.
• Bachelor’s degree in Information Technology, Cybersecurity, Computer Science, Information Systems, Data Science, Software Engineering, or a related technical discipline. Certificates in cybersecurity, specific systems, or tools may be accepted in lieu of a degree on a case-by-case basis.
• Active Secret clearance required, with the ability to obtain Top Secret/SCI eligibility.
• Working knowledge of Windows and Linux operating systems.
• IAM Level 2 Certification: CompTIA Security+, Certified Ethical Hacker (CEH), Certified Information Systems Security Professional (CISSP), GIAC Certified Incident Handler (GCIH), CompTIA Network+, CompTIA Cybersecurity Analyst (CySA+), Certified Authorization Professional (CAP).

Nice To Haves

• Proficiency in using security tools such as Splunk, ArcSight, Microsoft Sentinel, FortiSIEM, SwimLane, QRadar, and LogPoint for monitoring, assessing, and reporting system security vulnerabilities.
• Hands-on experience with security monitoring, log analysis, threat intelligence, and digital forensics to identify and respond to system anomalies.
• Experience with defending against known attack vectors.

Responsibilities

• Manage and oversee the security posture of information systems.
• Ensure compliance with DoD standards and the Risk Management Framework (RMF).
• Maintain the confidentiality, integrity, and availability of critical systems and data.
• Support onsite operations and potentially grow a team for scaling cybersecurity capabilities.
• Design, implement, and maintain multi-level security architectures across cloud, infrastructure, and platform applications.
• Identify and develop cyberspace operations requirements, processes, and security controls.
• Design and operate enterprise security controls.
• Conduct incident response.
• Assess capability development requirements, system architectures, and emerging cybersecurity technologies.
• Articulate complex issues to both technical and non-technical stakeholders.
• Monitor, assess, and report system security vulnerabilities using security tools.
• Identify and respond to system anomalies through security monitoring, log analysis, threat intelligence, and digital forensics.
• Defend against known attack vectors.

Benefits

• Medical insurance
• Financial benefits
• Other benefits