Information Systems Security Manager

Chickasaw Nation Industries
Arlington, VA
Nov 25, 2021
Nov 27, 2021
Full Time
It's fun to work in a company where people truly BELIEVE in what they're doing!We're committed to bringing passion and customer focus to the business.SUMMARYThe Information Systems Security Manager provides support to the Department of Defense (DOD), Defense Security Cooperation Agency (DSCA), Information Technology (IT) Division. This position establishes, documents, and monitors an operating unit's cyber security program implementation plan, and ensures compliance with DSCA management policies. ESSENTIAL DUTIES AND RESPONSIBILITIESEssential duties and responsibilities include the following. Other duties may be assigned. Responsible for the integration of CNI Core Competencies into daily functions, including: commitment to integrity, knowledge / quality of work, supporting financial goals of the company, initiative / motivation, cooperation / relationships, problem analysis / discretion, accomplishing goals through organization, positive oral / written communication skills, leadership abilities, commitment to Affirmative Action, reliability / dependability, flexibility and ownership / accountability of actions taken. Performs application monitoring, system security configurations and audits IT systems and networks for compliance with DoD Cybersecurity policies. Administers the DSCA-managed Cybersecurity training to include the annual Cyber Awareness Challenge training and compliance for the IA Workforce Improvement Program (WIP). The ISSM serves as the authorizing officer for all of an operating unit's/systems cyber security issues. Provides technical and programmatic Information Assurance Services to internal and external customers in support of network and information security systems. Designs, develops and implements security requirements within an organization's business processes. Prepares documentation from information obtained from customer using accepted guidelines such as RMF (Risk Management Framework). Prepares test plans. Provides assessment and authorization (A&A) support in the development of security and contingency plans and conducts complex risk and vulnerability assessments. Analyzes policies and procedures against Federal laws and regulations and provides recommendations for closing gaps. Develops and completes system security plans and contingency plans. Recommends system enhancements to improve security deficiencies. Develops, tests and integrates computer and network security tools. Secures system configurations and installs security tools, scans systems in order to determine compliancy and report results and evaluates products and various aspects of system administration. Conducts security program audits and develops solutions to lessen identified risks. Develops strategies to comply with privacy, risk management, and e-authentication requirements. Provides information assurance support for the development and implementation of security architectures to meet new and evolving security requirements. Evaluates, develops and enhances security requirements, policy and tools. Provides assistance in computer incident investigations. Performs vulnerability assessments including development of risk mitigation strategies. Communicates with the DSCA OCIO stakeholders to provide status and quality reports, to discuss changes in requirements, and to coordinate with activities outside the cybersecurity project. Documents and shares lessons learned with DSCA cybersecurity and stakeholder/staff to enable continuous improvement. Responsible for aiding in own self-development by being available and receptive to any training made available by the company. Plans daily activities within the guidelines of company policy, job description and supervisor's instruction in such a way as to maximize personal output. Responsible for keeping own immediate work area in a neat and orderly condition to ensure safety of self and coworkers. Will report any unsafe conditions and/or practices to the appropriate supervisor and human resources. Will immediately correct any unsafe conditions to the best of own ability. EDUCATION/EXPERIENCE REQUIREDBachelor's degree in a related field of study and a minimum of ten (10) years' relevant experience, or equivalent combination of education / experience. Five (5) years' experience in managing IT projects or programs focused on interpreting and applying DoD CS policy and guidance to operational DoD IT environments. Prior Security Operations Center experience a plus. CERTIFICATES / LICENSES / REGISTRATIONDOD Secret Clearance required Active IAM-II certification through one of the following certifications:Certified Authorization Professional - CAPCompTIA Advanced Security Practitioner - CASP+Certified Information Security Manager - CISMCertified Information Systems Security Professional - CISSP or CISSP AssociateGIAC Security Leadership Certification - GSLCEC-Council's Certified CISO program cert - CCISO JOB SPECIFIC KNOWLEDGE / SKILLS / ABILITIESKnowledge with the MS Office Suite applications of Outlook, Word, Access, PowerPoint and Excel to perform data evaluation, formulas, and analytics Specialized knowledge and advanced skills in the policies, concepts, practices and procedures of security incident management, threat intelligence and continuous monitoringKnowledgeable of security-related processes with respect to Federal risk and compliance regulations best practicesAbility to write reports based on findings for previous security breaches and threatsAbility to read, analyze, develop and interpret common information systems security documentsExcellent critical thinking skills with ability to identify, analyze and resolve problems / complex issuesExcellent verbal and written communications skills with ability to prepare quality reports and effectively communicate / interact with a wide variety of technical and non-technical audiences (ie, customers, team members, management and federal staff)Exceptional customer service skills with ability to respond to requests in a professional, helpful and timely mannerHighly organized with ability to effectively manage multiple projects and prioritiesAbility to work in a fast-paced environment and to learn and apply new knowledge and techniques related to incident response and continuous monitoring capabilities Ability to effectively work both independently and in a team environment for the successful achievement of goals LANGUAGE SKILLSAbility to read, analyze, and interpret general business periodicals, professional journals, technical procedures, or governmental regulations. Ability to write reports, business correspondence, and procedure manuals. Ability to effectively present information and respond to questions from groups of managers, clients, customers, and the general public. MATHEMATICAL SKILLSAbility to add, subtract, multiply, and divide in all units of measure, using whole numbers, common fractions, and decimals. Ability to compute rate, ratio, and percent and to draw and interpret bar graphs. REASONING ABILITYAbility to define problems, collect data, establish facts, and draw valid conclusions. Ability to interpret an extensive variety of technical instructions in mathematical or diagram form and deal with several abstract and concrete variables. PHYSICAL DEMANDSThe physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this job. Work is primarily performed in an office environment. Regularly required to sit. Regularly required use hands to finger, handle, or feel, reach with hands and arms to handle objects and operate tools, computer, and/or controls. Required to speak and hear. Occasionally required to stand, walk and stoop, kneel, crouch, or crawl. Must frequently lift and/or move up to 10 pounds and occasionally lift and/or move up to 25 pounds. Specific vision abilities required by this job include close vision, distance vision, depth perception, and ability to adjust focus. Exposed to general office noise with computers printers and light traffic.If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!

Similar jobs