Weston Solutions, Inc. · 5 days ago
Information Security Systems Manager
Wonder how qualified you are to the job?
Environmental ConsultingWaste Management
Insider Connection @Weston Solutions, Inc.
Responsibilities
Manages Risk Management Framework (RMF) processes and product maintenance for assigned systems.
Security Controls Implementation: Oversee the implementation and maintenance of security controls in accordance with the System Security Plan (SSP) and company policies.
ATO Maintenance: Ensure assigned systems maintain their Authority to Operate (ATO) through independent security assessment and authorization.
Access Controls Oversight: Manage access controls, ensuring proper implementation and management.
Audit Log Review: Regularly review audit logs to identify security incidents or anomalies.
Risk Assessment: Conduct assessments of controls to ensure proper implementation and effectiveness. Must have a strong working knowledge of the RMF process.
Document Management: Provide requested documents to auditors, ensuring accuracy and sensitivity labeling.
Vulnerability Management: Evaluate new vulnerabilities and coordinate corrective actions.
Collaboration: Work closely with Security Engineers, Operations Center, and subject matter experts.
Compliance Tracking: Track findings from vulnerability and compliance scans in the Corrective Action Plan (CAP) and manage them in the Cyber Security Assessment and Management (CSAM) system.
Manages and performs security compliance continuous monitoring.
CMMC/CUI Support – Help with procedures, evidence and testing compliance for the Cybersecurity Maturity Model Certification requirements for Controlled Unclassified Information (CUI).
Capable of researching regulations and making applicability determinations.
Qualification
Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.
Required
Minimum of 5 years in information security roles, including ISSM or ISSO responsibilities.
Candidate must be a U.S. citizen and possess an active DoD Secret Clearance at the minimum.
Preferred
Bachelor’s degree in a related field.
CISSP, CISM, or other relevant certifications.
Familiarity with basic PC troubleshooting, configuration, and system maintenance.
Ensure compliance with NISPOM, DAAPM, and other applicable regulations.
Familiarity with routing protocols.
Knowledge of security impact assessments.
eMASS experience.
ATO package development, including generating security documentation for requirements, security control assessment, STIG and SCAP tools Standard Operating Procedures, test results, etc.
Strong communication and collaboration abilities.
Attention to detail and analytical thinking.
Ability to work independently and as part of a team.
Benefits
Medical
Dental
Vision
Life and disability plans
Critical illness and accident plans
Work/Life flexibility
Professional development opportunities
Company
Weston Solutions, Inc.
Weston is a national environmental and infrastructure services firm committed to safety and client value driven to be our clients’ most effective and efficient service provider for both straightforward and complex projects.