Information Systems Security Manager

Fairfax, VA
Commensurate with education and experience.
Sep 17, 2021
Jan 26, 2022
Full Time
Information Systems Security Manager George Mason University's Office of Research Integrity and Assurance (ORIA), within the College of Engineering and Computing (CEC), invites well-qualified candidates to apply for the position of Information Systems Security Manager (ISSM) as part of the expansion of national security research in CEC's Rapid Prototyping Research Center (RPRC) located in Springfield, Virginia. George Mason University has a strong institutional commitment to the achievement of excellence and diversity among its faculty and staff, and strongly encourages candidates to apply who will enrich Mason's academic and culturally inclusive environment.About the Position:The position will primarily be responsible for (1) supporting the development, implementation, and maintenance of DoD Risk Management Framework (RMF) / NIST 800-53 and NIST 800-171 and CMMC accredited systems; (2) supporting continuous security monitoring of those systems; (3) maintaining system accreditation documentation in DoD System tracking databases (e.g. eMASS); and (4) supporting regular security inspections (e.g. CCRIs).The ISSM will work onsite at the RPRC in Springfield, Virginia supporting Mason's growing portfolio of classified programs. The ISSM will report to the Assistant Vice President for Research Integrity and Assurance with a dotted line to CEC's Associate Dean for Research. The ISSM will primarily focus on the security of systems maintained and operated by CEC's RPRC. Responsibilities: Serve as an ISSM for multiple systems and ensure system processes are being followed by all personnel including privileged users; Create and maintain System Security Plans, Security Control Traceability Matrixes, Plan of Actions and Milestones, and all other RMF documentation required for supported systems; Review and evaluate RMF packages from outside organizations to provide input and recommendations to Authorizing Official; Perform Security Content Automation Protocol Compliance Checker scans to ensure configurations are in accordance with latest Defense Information Systems Agency Security Technical Implementation Guides; Perform Nessus Security scans to ensure all known vulnerabilities are mitigated or documented within a system Plan of Actions and Milestones; Interface with external entities with regards to maintaining the authorization of existing infrastructures; Perform system audits on multiple platforms and implement processes and technologies that help highlight anomalies that can be evaluated to ensure confidentiality, integrity, and availability are not compromised; Maintain strong security posture of all supported infrastructures; Perform other duties as assigned. Required Qualifications: Master's degree in an Engineering, Computing, or closely related field; or equivalent combination of education and experience; US citizenship; At a minimum, an Interim SECRET clearance; Demonstrated experience working in information or cyber security roles that align with the job requirements of an Information Systems Security Manager (ISSM) as described in the Defense Counterintelligence and Security Agency (DCSA) Assessment and Authorization Process Manual (DAAPM) Section 3.6.; Demonstrated experience working in information technology; Knowledge and experience with the DCSA Risk Management Framework (RMF); Excellent communication skills (speaking, writing, and listening) including the ability to provide feedback constructively and write and review technical documentation, security policies, plans, and procedures; Experience cultivating relationships by working collaboratively and respectfully with colleagues; Strong organizational skills working in a multi-tasking environment and the capacity to track and manage multiple technical artifacts and tasks in parallel. Preferred Qualifications: Three (3) years of demonstrated experience working in information or cyber security roles that align with the job requirements of an Information Systems Security Manager (ISSM) as described in the Defense Counterintelligence and Security Agency (DCSA) Assessment and Authorization Process Manual (DAAPM) Section 3.6.; Five (5) years of demonstrated experience working in information technology; DoD 8570 Information Assurance Management (IAM) Level III Certification (CISSP, CISM, GSLC, or CCISO); DoD 8570 Information Assurance Technical (IAT) Level III Certification (CASP+ CE, CCNP Security, CISA, CISSP, GCED, GCIH); Strong technical skills working with different networking components, operating systems, and IT devices; Experience working with various security tools, such as Security Technical Implementation Guides (STIGs), Security Content Automation Protocol (SCAP) Compliance Checker (SCC), vulnerability scanners (Nessus), and auditing tools (Splunk); Experience in accrediting information systems through the DCSA RMF and maintaining an Approval to Operate (ATO); Experience with the Enterprise Mission Assurance Support Service (eMASS); Completed the DAAPM Section 3.6 ISSM required training in the Center for Development of Security Excellence (CDSE). Mason Engineering: The Future of Engineering is Here: The College of Engineering and Computing at George Mason University is comprised of the Volgenau School of Engineering (effective June 1, 2021) and a new School of Computing. The College is a fast-growing force for innovation in research and education. It boasts more than 8,600 students in 37 undergraduate, master's, and doctoral degree programs, including several first-in-the-nation offerings. Of the 250 full-time faculty who comprise the School, 90 are tenured, 50 are tenure-track, 85 are instructional faculty, and 25 are research faculty. As part of a nationally ranked research university, its research teams expended more than $60 million in sponsored research awards last year and has projects with over $400 million in current and anticipated awards. Located in the heart of Northern Virginia's technology corridor, Mason Engineering stands out for its research in many leading areas including artificial intelligence, data analytics engineering, cybersecurity engineering, biomedical imaging and devices, community-based healthcare, autonomous systems, 5G communications, systems architectures, computational biomedicine, advanced materials and manufacturing, sustainable infrastructure, and more. The School highly encourages multidisciplinary research and provides faculty with opportunities to work with other disciplines. George Mason University is the largest public research university in Virginia, with an enrollment of over 38,000 students studying in over 200 degree programs. Mason is an innovative, entrepreneurial institution with national distinction in a range of academic fields. It was classified as an R1 research institution in 2016 by the Carnegie Classifications of Institutes of Higher Education. Mason is located in the city of Fairfax in Northern Virginia at the doorstep of the Washington, D.C., metropolitan area, with unmatched geographical access to a number of federal agencies and national laboratories. Northern Virginia is also home to one of the largest concentrations of high-tech firms in the nation, providing excellent opportunities for interaction with industry. Fairfax is consistently rated as being among the best places to live in the country and has an outstanding local public school system. In conjunction with Amazon's decision to establish a second headquarters in Northern Virginia, the Commonwealth of Virginia announced a multi-year plan to invest in the growth of degree programs in computing, and George Mason University has committed to accelerate its plans to grow its capacity in computing and high-tech fields. Among the exciting initiatives being undertaken by the university is the launch of the Institute for Digital InnovAtion, a university think tank and incubator to serve the digital economy, and the expansion of its Arlington Campus with a planned 400,000 square foot Digital InnovAtion building. These initiatives reflect hundreds of millions of dollars in new investment by Mason that will rapidly elevate Mason's already leading national position in computing and related areas.

For full consideration, applicants must complete the online application at for position FA24Hz, and attach a cover letter, resume, and a list of three professional references with contact information. For full consideration applicants must apply by July 22, 2021; however the review of applications will continue until the position is filled.

"Great Careers Begin at Mason! George Mason University is an innovative, entrepreneurial institution with national distinction in both academics and research. Mason holds a top U.S. News and World Report "Up and Coming" spot for national universities and is recognized for its global appeal and excellence in higher education. Mason is currently the largest and most diverse university in Virginia with students and faculty from all 50 states and over 135 countries studying in over 200 degree programs at campuses in Arlington, Fairfax and Prince William, as well as at learning locations across the commonwealth. Rooted in Mason's diversity is a campus culture that is both rewarding and exciting, work that is meaningful, and opportunities to both collaborate and create. If you are interested in joining the Mason family take a look at our current opportunities and catch some Mason spirit at! George Mason University, Where Innovation is Tradition."

Similar jobs