Be an early applicantLess than 25 applicants

Company

Modern Technology Solutions, Inc. (MTSI) · 1 day ago

Information System Security Manager (ISSM)

United States

Full-time

Remote

Senior Level, Lead/Staff

$170K/yr - $190K/yr

14+ years exp

Maximize your interview chances

Information Technology

Growth Opportunities

No H1B

U.S. Citizen Only

Security Clearance Required

Hiring Manager

Michael "Hoagie" Hoagland, USN Ret. PRC, CIR 🛰️ 🛰️ 🛰️

Insider Connection @Modern Technology Solutions, Inc. (MTSI)

Discover valuable connections within the company who might provide insights and potential referrals.
Get 3x more responses when you reach out via email instead of LinkedIn.

Responsibilities

Maintaining a repository of security documentation including Systems Security Plans, Information Assurance Standard Operating Procedures, Continuous Monitoring Plans, Security Control Traceability Matrices, Risk Assessments, Plan of Action & Milestones (POA&M), equipment specifications, practices, and procedures.

Developing and implementing a security assessment plan.

Performing risk assessments and making recommendations to DoD agency customers.

Advising government program managers on security testing methodologies and processes.

Scheduling, performing, and maintaining records of required auditing, patching, maintenance, software/hardware changes, and scanning.

Developing, reviewing, endorsing, and recommending action to the AO or AODR pertaining to system assessment documentation.

Ensuring approved procedures are in place for clearing, sanitizing, and destroying various types of hardware and media.

Maintaining a repository for all system authorization documentation and modifications.

Developing policies, procedures, and corrective measures for responding to and reporting security incidents and violations.

Ensuring proper protection or corrective measures have been taken when an incident or vulnerability has been discovered within a system.

Developing and conducting test procedures for verification Assessment and Authorization (A&A) and RMF safeguards to meet customer requirements based on DoD, Federal, and organizational cybersecurity requirements.

Employing customer-approved procedures for sanitizing and releasing system components and media.

Maintaining a repository of security authorizations for ISs under the program office’s purview.

Assessing changes to an IS by performing periodic self-inspections, tests, and reviews of the IS program to ensure that systems are operating as authorized/accredited.

Ensuring corrective actions are taken for identified findings and vulnerabilities.

Maintaining a working knowledge of IS functions, security policies, technical security safeguards, and operational security measures.

Coordinating with the Program Security Officer (PSO), Program Security Representative (PSR) and Contractor Program Security Officer (CPSO) to define, implement and maintain information security policies, strategies, and procedures.

Implementing policies and procedures for responding to security incidents, and for investigating and reporting security violations and incidents.

Ensuring the development, documentation, and presentation of classified IS security education, awareness, and training activities.

Qualification

Find out how your skills align with this job's requirements. If anything seems off, you can easily click on the tags to select or unselect skills to reflect your actual expertise.

CybersecuritySAPSCIInformation AssuranceRisk AssessmentsA&A documentationFederal security requirementsSIEMIncident responseCustomer service skillsCloud development toolsDoD 8140.03 certificationProgramming languagesScripting languagesHardware/software configuration management

Required

14+ years or more of experience in Cybersecurity (ISSO, ISSE, ISSM) or related discipline.

Minimum of five (5) years of experience in SAP, SCI, or Collateral Information Systems (IS).

Knowledge of cyber tools such as SIEM, vulnerability detection, scripting languages and/or programming languages.

Able to demonstrate understanding of cybersecurity needs of systems at various stages of the system development life cycle.

Experience with A&A documentation and system authorization artifacts for Special Access Program (SAP) and Secure Compartmentalized Information (SCI) systems.

Knowledge of federal security requirements and mandates (e.g., RMF, Federal Information Processing Standards (FIPS), National Standards of Information Technology (NIST)).

Experience with Assured File Transfers (AFTs), IS sanitization and destruction procedures, PEDs, contaminations, incident response, virus scanning, privileged user access, and hardware/software configuration management.

Excellent oral and written communication skills.

Strong customer service skills; being able to work with personnel across multiple disciplines of the organization.

Strong organizational skills and ability to manage multiple tasks concurrently.

Ability to work well independently or as a team member.

Working knowledge of cloud development tools such as GitLab, Artifactory, JIRA & SonarQube.

A successful candidate should be a self-starter who possesses initiative, excellent communication skills, the ability to lead diverse teams, to collaborate effectively with cross-functional teams, and a proven problem solver.

Bachelor’s or Master’s degree in information technology or related technical field.

DoD 8140.03 'Cyberspace Workforce Qualification and Management Program'.

Top Secret, SCI eligible.

U.S. Citizenship is required for this position.