Save save Director, National Security Information to job cart Job number 982555 Travel 0-25 % Profession Business Programs & Operations Role type People Manager Employment type Full-Time The security of our nation and preservation of our nation's interest are critical to the safety and prosperity of the United States. The Microsoft Corporation is proud to have the opportunity to serve as a trusted company of high-risk systems and is seeking a qualified candidate to join our National Security organization as a Director of National Security Information Systems in Reston, Virginia. The selected candidate is responsible for Implementing Government Cyber Security policy & providing guidance (ie NIST, NISPOM, DAAPM, etc.) and is accountable to co-lead efforts to establish strict program control processes to ensure mitigation of risks. They will partner with appointed FSOs, CSSOs, CPSOs, business and customers to set establish goals, gather performance metrics, document, and streamline relevant processes and execute strategies that enable the business. They will engage with system engineers, program managers to perform assessments of systems and networks within an environment, identify deviations with DoD/DISA defined acceptable configurations or local policy. Ensure Information System (IS) assessments are achieved through passive evaluations such as compliance audits and active evaluations in cloud environments. If you have experience implementing NIST RMF requirements for National Security Systems, this is an exciting opportunity, and you are encouraged to apply today. Responsibilities Security Clearance Requirements : The successful candidate must be a US citizen and have an active US Government Security Clearance based on a Tier 5 investigation, formerly Single Scope Background Investigation (SSBI) and pass a polygraph. Candidate must be able to travel to customer sites as required. The selected candidate must be able to start within 30 days of offer acceptance. Program control processes or content for assessment artifacts in scope will include: Continuous Monitoring in accordance with the RMF Process and maintain system security plans (SSP) Maintain knowledge in system controls for system accreditations for a high scale cloud environment. Understand engineering cloud requirements to apply controls in compliance of the NIST Risk Management Framework (RMF), and FEDRAMP. Coordination with engineering leadership to enable delivery of Microsoft products & services and provide effective incident response. Understanding Federal Government Policies relating to systems security, Continuous Monitoring, test development and validation testing to enable communication to internal and external customers. Development of audit trail artifacts / Information System (IS) self-assessment checklists. Execution of investigations and/or incidents to meet Federal requirements. Develop, create, implement, and support physical and operations security (OpSec) policies, plans, processes and training material that position the National Security Team and offices to operate in a manner that is compliant with relevant US Government (and/or other unique environment) security standards and requirements for the physical design, construction, and operation of highly confidential and regulated projects. Document and improve processes around confidentiality, security, and compliance to ensure the work that is being done is conducted per Government standards. Monitor and audit field sites and supplier processes and methods to assess the state and health of physical and program security. Receive notifications of incidents and events, assess, and drive root cause analysis (RCA) and remediation plans appropriately. Collaborate across internal groups, external suppliers, and customers. Provide subject matter expertise on topics such as: confidentiality, citizenship requirements, security clearances, and information sharing and operations security protocols to internal teams unfamiliar with Federal security requirements. Represent Microsoft in engagements with external entities and the US Government. Required to travel throughout the metro DC area to maintain system accreditation. Qualifications Basic Qualifications: Bachelor's Degree in a Cyber Security or related Information Technology discipline. Eligible or active CISSP, CISM, CASP, or equivalent certification or higher for DoD 8570 IAM Level II or III requirements. Minimum of 8 years working as an ISSM/ISSO with at least 3 years of experience being in an ISSM role. Active TS/SCI Security Clearance with Polygraph (most recent Tier 5 investigation within the last 4 years). 10 years of relevant experience, or 5 years of experience with applicable Master's degree. At least one year of direct experience with an intelligence community or signals intelligence activity. The successful candidate will possess excellent communication and presentation skills as well as can interface effectively with employees and customers of all levels. Ability to travel to customer locations upon request. Preferred Qualifications: 2 years of information assurance experience, including evaluating, testing, certifying and accrediting of classified and sensitive but unclassified information systems as well as Commercial Off The Shelf (COTS) and Government Off The Shelf (GOTS) products. 2 years of network/system administration. Experience with analysis and evaluation of both hardware and software in support of Intelligence Community (IC), Department of Defense, and other Federal Government Agencies. Experience assessing and auditing network penetration testing, antivirus planning assistance, risk analysis and incident response. Experience applying security risk assessment methodology to system development, including threat model development, vulnerability assessments, and resultant security risk analysis. Experience or knowledge of construction for a secure area, ICD 705 Experience managing COMSEC, keying devices, lifecycle planning. The successful candidates must have an active US Government Top Secret Clearance with access to Sensitive Compartmented Information (SCI) based on a Single Scope Background Investigation (SSBI) with Polygraph. Ability to meet Microsoft, customer and/or government security screening requirements are required for this role. Failure to maintain or obtain the appropriate US Government clearance and/or customer screening requirements may result in employment action up to and including termination. Clearance Verification: This position requires successful verification of the stated security clearance to meet federal government customer requirements. You will be asked to provide clearance verification information prior to an offer of employment. Microsoft is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to age, ancestry, color, family or medical care leave, gender identity or expression, genetic information, marital status, medical condition, national origin, physical or mental disability, political affiliation, protected veteran status, race, religion, sex (including pregnancy), sexual orientation, or any other characteristic protected by applicable laws, regulations and ordinances. We also consider qualified applicants regardless of criminal histories, consistent with legal requirements. If you need assistance and/or a reasonable accommodation due to a disability during the application or the recruiting process, please send a request via the Accommodation request form . Benefits/perks listed below may vary depending on the nature of your employment with Microsoft and the country where you work. Save save Director, National Security Information to job cart This site is hosted for Microsoft by Phenom People