Information Systems Security Manager- ISSM

Employer
CACI
Location
Albuquerque, NM, United States of America
Posted
Nov 23, 2022
Closes
Dec 23, 2022
Ref
272354
Function
IT
Hours
Full Time
Information Systems Security Manager- ISSM

Job Category: Information Technology

Time Type: Full time

Minimum Clearance Required to Start: Top Secret

Employee Type: Regular

Percentage of Travel Required: None

Type of Travel: None

CACI is seeking a cleared experienced Information Systems Security Manager for its cyber security team in Albuquerque, NM. If you are looking for your next career challenge supporting a unique mission we would like to speak with you. In this role, you will be the Cyber Security subject matter expert supporting both in house and external customer efforts. As a valued member of the team, you will work with multiple entities ensure that various cyber security requirements are implemented appropriately. This position requires travel within the Continental US.

More About the Role:
  • Provide over-sight to ensure systems are operated, maintained, and disposed of in accordance with security policies and procedures as outlined in the security plan.
  • Coordinate Assess and Authorize (A&A), Configuration Management (CM), and Release Management requirements for the client's systems in accordance with DoD Instructions
  • Ensure application, system, environment, or organizational changes do not have an adverse effect on the security posture of the system security compliance and assessment
  • Monitor and validate vulnerability postures in Assured Compliance Assessment Solution (ACAS), and ensure all systems comply with DISA Security Technical Implementation Guidelines (STIG)s and with CSSP HBSS requirements
  • Verify the implementation of delegated aspects of the system security program locally as well as across customer related systems.
  • Preparation and submission of Authority to Operate documentation to eMASS and XACTA
  • Conduct periodic assessments of authorized systems and provide the ISSO or System Administrators with corrective actions for all identified findings and vulnerabilities.
  • Ensure audit records are collected and analyzed in accordance with the security plan.
  • Report all security-related incidents to Facility Security Officer and assist with formal reporting to impacted customers and DCSA oversight.
  • Formally notifying the customer(s) of any changes to a system that could affect authorization to operate.
  • Ensure user activity monitoring data is analyzed, stored, and protected in accordance with the DCSA policies and procedures.
  • Develop and execute the continuous monitoring strategy.
  • Development and oversight of cyber security awareness training program.
  • Travel to other locations or customer sites as necessary.
  • Perform other duties as assigned.
  • Work in a team environment.


You'll Bring These Qualifications:

  • Current Top Secret Clearance
  • A Bachelor of Science Degree in Information Technology/Systems, Computer Science, Computer Engineering, or Electrical Engineering with 5-7 years related experience
  • An understanding of the relationship between system controls and how they affect system security
  • A minimum of 5 years monitoring system NIST compliance using available workflow tools
  • A minimum of 3 years using eMASS as a system certification and accreditation tracking tool
  • A minimum of 3 years of practical experience transitioning to and operating within RMF in DoD applications
  • Experience in initial risk assessment activities and ability to assist Authorizing Official risk determination with risk acceptance
  • Advanced knowledge of information technology and networking, including a working knowledge in one of the following: IP Networking, cyber security, or software development
  • Advanced knowledge and understanding of Windows Server, Active Directory, DHCP, DNS and WSUS/SCCP
  • Advanced knowledge of Microsoft Windows and Linux software applications and other applications as required
  • Must hold at least one active Department of Defense 8570.01-M IAT/IAM Level III certification.
    • CASP+CE
    • CCNP Security
    • CISA
    • CISSP (or Associate)
    • GCED
    • GCIH
    • CCSP
    • CISM
    • GSLC
    • CCISO


These Qualifications Would be Nice to Have:
  • Experience as an ISSO/ISSM managing systems approved to process classified information including working knowledge of the National Industrial Security Program Operating Manual (NISPOM), Intelligence Community Directives (ICD 503, etc.), Joint SAP Implementation Guide (JSIG), and Risk Management Framework (RMF) as prescribed in NIST SP 800-53, SP 800-53A, and SP 800-137.
  • Knowledge of Air Force cyber security policies.
  • Experience submitting ATO documentation in eMASS and Xacta.
  • Willingness and ability to quickly learn new technologies
  • Active TS/SCI security clearance


Company Overview: At CACI, you will have the opportunity to make an immediate impact by providing information solutions and services in support of national security missions and government transformation for Intelligence, Defense, and Federal Civilian customers. CACI is an Equal Opportunity Employer - Females/Minorities/Protected Veterans/Individuals with Disabilities.

As a federal contractor, CACI is subject to any federal vaccine mandates or other customer vaccination requirements. All new hires are required to report their vaccination status.

Similar jobs