Security Compliance Manager

About The Position

Requirements

• Bachelor's Degree in a relevant field such as Cybersecurity, Information Technology, Computer Science, or a related discipline
• 5+ years experience in cybersecurity, IA, or a related field

Responsibilities

• Program Protection Advise or assist the MMO to conduct program protection planning and develop Program Protection Plans (PPPs)
• Monitor and protect MMO programs, products, and services from threats and vulnerabilities
• Conduct threat awareness education in coordination with organizational or enterprise (DoD, DAF, AFMC, and/or AFRL) sources to inform program protection planning and execution
• Advise or assist the MMO to implement a comprehensive OPSEC program covering all MMO programs, products, and services
• Review publications, presentations, or information prior to public release in coordination with organizational OPSEC policy and processes
• Review prime contractor OPSEC plans and provide recommendations to the MMO to improve OPSEC posture across all stakeholders
• Facilitate threat informed OPSEC awareness education and training
• Advise or assist the MMO to implement industrial security controls and ensure prime contractor and subcontractor compliance with regulations such as the National Industrial Security Program Operating Manual (NISPOM)
• Implement and monitor security controls that protect classified information from point of initiation to destruction
• Perform access control functions for restricted secure areas, process inbound and outbound classified packages, and coordinate courier services at appropriate classification levels
• Facilitate training and awareness on the protection of classified information
• Coordinate personnel security actions
• Coordinate with the government security office to organize and track inbound and outbound visit requests through Defense Information System for Security (DISS) or other systems as required
• Escort facility visitors and assist in access control procedures
• Review, track, and monitor security clearance processing actions and organization-specific security awareness and education requirements necessary to maintain access
• Advise or assist the MMO to secure the confidentiality, integrity, and availability of critical information systems necessary for the conduct of MMO activities
• Coordinate system access requests and authorizations and coordinate the transfer of classified data at multiple levels of security
• Review prime contractor or subcontractor System Security Plans (SSPs) and provide recommendations to the MMO to improve cybersecurity posture across all stakeholders
• Facilitate threat-informed cybersecurity awareness education and training
• Advise or assist in the design, implementation, and maintenance of a comprehensive incident management and response plan
• Coordinate MMO response activities during training events, tabletop exercises, or real-world incidents.
• Maintain a Continuity of Operations Plan (COOP)
• Advise or assist in the preparation and generation of required security monitoring and control documentation related to MMO processes, products, and services
• Ensure that documentation complies with all applicable law, regulation, and security standards