Tbwa Chiat/Day Inc
Senior Information System Security Manager Arlington, VA
Tbwa Chiat/Day Inc, Arlington, Virginia, United States, 22201
(179) Senior Information System Security Manager
Arlington, VACompany SummaryArlo Solutions (Arlo) is an information technology consulting services company that specializes in delivering technology solutions. Our reputation reflects the high quality of the talented Arlo Solutions team and the consultants working in partnership with our customers. Our mission is to understand and meet the needs of both our customers and consultants by delivering quality, value-added solutions. Our solutions are designed and managed to not only reduce costs, but to improve business processes, accelerate response time, improve services to end-users, and give our customers a competitive edge, now and into the future.Position OverviewThe Department of Defense’s (DoD) Chief Digital and Artificial Intelligence Office (CDAO) is at the forefront of supporting the DoD with the adoption of innovative technologies such as data, analytics, and artificial intelligence to help accelerate predictions, forecasts, and interpretations for both strategic and tactical decisions across the enterprise. These ground-breaking endeavors bring new challenges to the assessment of DoD IT systems that previously did not exist.Seeking an RMF Information Security Systems Manager (ISSM) and Subject Matter Expert to support mission critical CDAO capabilities within all facets of the RMF. This pioneering domain presents unique challenges, necessitating skilled ISSMs to maintain system security and oversee cyber implementation. The role demands accountability for upholding security standards across the organization, navigating the evolving landscape of defense technology and safeguarding sensitive information crucial to national security. To be successful in this position the candidate must possess a firm understanding of statutory guidance such as the Information Assurance Workforce Improvement Program, DoDI 8500.01, DoD Directive 8140, and NIST 800-37 r2.Work LocationFull time remote. Candidates in the Washington DC Metropolitan preferred. Travel requirements will vary with location, however, expect approximately 10% to 25%.Job Responsibilities and/or Success FactorsUtilize expert knowledge and experience regarding risk management strategies in support of a major DoD program.Collaborate between the Cyber Risk Assessor/Security Control Assessor and the program as well as DoD senior leadership.Reporting of status and metrics for body of evidence and authorization conditions.Develop and implement security policies, procedures, and guidelines to ensure compliance with applicable laws, regulations, and industry best practices.Conduct risk assessments and identify potential vulnerabilities and threats to information systems.Develop and implement risk mitigation strategies and controls to minimize the impact of security incidents.Collaborate with system administrators, network administrators, and other stakeholders to plan and implement security measures for information systems. This includes establishing security controls and standards for information systems including Continuous Monitoring.Develop and implement incident response procedures to reconstitute system operations to address security incidents and breaches.Ensure compliance with relevant security standards, regulations, and frameworks.Conduct periodic security audits and assessments to evaluate the effectiveness of security controls and identify areas for improvement.Maintain accurate and up-to-date security documentation, including security plans, risk assessments, and incident reports.Provide regular reports to the Government customer on the status of information security and any identified risks or vulnerabilities.Provide support regarding the DoD’s agile authorization. Experience with Operation Vulcan Logic (OVL) processes a plus. “Should have a strong background in information security, risk management, and compliance.Strong client focus and commitment to continuous improvement, ability to proactively network and establish relationships.Manage multiple priorities in a high-paced and fast-changing environment.Perform other duties as assigned or required.Success FactorsHave a strong background in information security, risk management, and compliance.Strong clients focus and commitment to continuous improvement, ability to proactively network andestablish relationships.Manage multiple priorities in a high-paced and fast-changing environment.Perform other duties as assigned or required.Education and Minimum QualificationsMust have an active TS/SCI ClearanceBachelor’s degree in computer science/information technology, or other related degree fields (Master’s Degree is preferred or at least 10 years of related experience)At least 10+ years of cybersecurity experience including a senior technical or management role, Project or Program Management experience a plus.At least one IAT/IAM or equivalent security certifications ex. CISSP, CCSP, CISM, CISA, or CASPExperience working with OSD leadership or Military component or branch.Expert understanding of NIST 800 series guidelines, DoDI 8500.01, DoD 8140.03, rISO 27001, COBIT, DoD RMF, OVL, and current cybersecurity best practices.Excellent communication/presentation skills briefing senior military and government civilian leadership.Experienced with writing policies, guides, procedures.Experience in hands on with eMASS, Xacta and/or other GRC tools.Experience with Federal and FedRamp A&A Processes.Experienced and comfortable advising at the Senior Executive Service (SES) level of customers.AAP StatementWe are proud to be an Affirmative Action and Equal Opportunity Employer and as such, we evaluate qualified candidates in full consideration without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, national origin, age, disability status, protected veteran status, and any other protected status.Apply for this job
*indicates a required fieldFirst Name *Last Name *Email *PhoneResume/CVEnter manuallyAccepted file types: pdf, doc, docx, txt, rtfEnter manuallyAccepted file types: pdf, doc, docx, txt, rtfWhat is your current address? *Are you willing to travel onsite in DC if needed? *
Select...Do you have at least 10+ years of cybersecurity experience including a senior technical or management role, Project or Program Management experience?How did you hear about this job? If you know of an Arlo Solutions employee, please state their name. *What is your desired salary range? *Do you have an active security clearance? If yes, what type of security clearance do you have? Please select from the dropdown.
*
Select...Are you legally authorized to work in the United States? *
Select...Will you now, or in the future, require sponsorship for employment visa status (e.g. H-1B visa status)?
*
Select...Voluntary Self-Identification
For government reporting purposes, we ask candidates to respond to the below self-identification survey.Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiringprocess or thereafter. Any information that you do provide will be recorded and maintained in aconfidential file.As set forth in Arlo Solutions LLC’s Equal Employment Opportunity policy,we do not discriminate on the basis of any protected group status under any applicable law.If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection.As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measurethe effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categoriesis as follows:A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.Select...Voluntary Self-Identification of Disability
Form CC-305Page 1 of 1OMB Control Number 1250-0005Expires 04/30/2026Voluntary Self-Identification of Disability
Form CC-305
Page 1 of 1
OMB Control Number 1250-0005
Expires 04/30/2026Why are you being asked to complete this form?
We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp .How do you know if you have a disability?
A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability.
Disabilities include, but are not limited to:Alcohol or other substance use disorder (not currently using drugs illegally)Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDSBlind or low visionCancer (past or present)Cardiovascular or heart diseaseCeliac diseaseCerebral palsyDeaf or serious difficulty hearingDiabetesDisfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disordersEpilepsy or other seizure disorderGastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndromeIntellectual or developmental disabilityMental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSDMissing limbs or partially missing limbsMobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supportsNervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS)Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilitiesPartial or complete paralysis (any cause)Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysemaShort stature (dwarfism)Traumatic brain injury
Disability Status
Select...
PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.
#J-18808-Ljbffr
Arlington, VACompany SummaryArlo Solutions (Arlo) is an information technology consulting services company that specializes in delivering technology solutions. Our reputation reflects the high quality of the talented Arlo Solutions team and the consultants working in partnership with our customers. Our mission is to understand and meet the needs of both our customers and consultants by delivering quality, value-added solutions. Our solutions are designed and managed to not only reduce costs, but to improve business processes, accelerate response time, improve services to end-users, and give our customers a competitive edge, now and into the future.Position OverviewThe Department of Defense’s (DoD) Chief Digital and Artificial Intelligence Office (CDAO) is at the forefront of supporting the DoD with the adoption of innovative technologies such as data, analytics, and artificial intelligence to help accelerate predictions, forecasts, and interpretations for both strategic and tactical decisions across the enterprise. These ground-breaking endeavors bring new challenges to the assessment of DoD IT systems that previously did not exist.Seeking an RMF Information Security Systems Manager (ISSM) and Subject Matter Expert to support mission critical CDAO capabilities within all facets of the RMF. This pioneering domain presents unique challenges, necessitating skilled ISSMs to maintain system security and oversee cyber implementation. The role demands accountability for upholding security standards across the organization, navigating the evolving landscape of defense technology and safeguarding sensitive information crucial to national security. To be successful in this position the candidate must possess a firm understanding of statutory guidance such as the Information Assurance Workforce Improvement Program, DoDI 8500.01, DoD Directive 8140, and NIST 800-37 r2.Work LocationFull time remote. Candidates in the Washington DC Metropolitan preferred. Travel requirements will vary with location, however, expect approximately 10% to 25%.Job Responsibilities and/or Success FactorsUtilize expert knowledge and experience regarding risk management strategies in support of a major DoD program.Collaborate between the Cyber Risk Assessor/Security Control Assessor and the program as well as DoD senior leadership.Reporting of status and metrics for body of evidence and authorization conditions.Develop and implement security policies, procedures, and guidelines to ensure compliance with applicable laws, regulations, and industry best practices.Conduct risk assessments and identify potential vulnerabilities and threats to information systems.Develop and implement risk mitigation strategies and controls to minimize the impact of security incidents.Collaborate with system administrators, network administrators, and other stakeholders to plan and implement security measures for information systems. This includes establishing security controls and standards for information systems including Continuous Monitoring.Develop and implement incident response procedures to reconstitute system operations to address security incidents and breaches.Ensure compliance with relevant security standards, regulations, and frameworks.Conduct periodic security audits and assessments to evaluate the effectiveness of security controls and identify areas for improvement.Maintain accurate and up-to-date security documentation, including security plans, risk assessments, and incident reports.Provide regular reports to the Government customer on the status of information security and any identified risks or vulnerabilities.Provide support regarding the DoD’s agile authorization. Experience with Operation Vulcan Logic (OVL) processes a plus. “Should have a strong background in information security, risk management, and compliance.Strong client focus and commitment to continuous improvement, ability to proactively network and establish relationships.Manage multiple priorities in a high-paced and fast-changing environment.Perform other duties as assigned or required.Success FactorsHave a strong background in information security, risk management, and compliance.Strong clients focus and commitment to continuous improvement, ability to proactively network andestablish relationships.Manage multiple priorities in a high-paced and fast-changing environment.Perform other duties as assigned or required.Education and Minimum QualificationsMust have an active TS/SCI ClearanceBachelor’s degree in computer science/information technology, or other related degree fields (Master’s Degree is preferred or at least 10 years of related experience)At least 10+ years of cybersecurity experience including a senior technical or management role, Project or Program Management experience a plus.At least one IAT/IAM or equivalent security certifications ex. CISSP, CCSP, CISM, CISA, or CASPExperience working with OSD leadership or Military component or branch.Expert understanding of NIST 800 series guidelines, DoDI 8500.01, DoD 8140.03, rISO 27001, COBIT, DoD RMF, OVL, and current cybersecurity best practices.Excellent communication/presentation skills briefing senior military and government civilian leadership.Experienced with writing policies, guides, procedures.Experience in hands on with eMASS, Xacta and/or other GRC tools.Experience with Federal and FedRamp A&A Processes.Experienced and comfortable advising at the Senior Executive Service (SES) level of customers.AAP StatementWe are proud to be an Affirmative Action and Equal Opportunity Employer and as such, we evaluate qualified candidates in full consideration without regard to race, color, religion, sex, sexual orientation, gender identity, marital status, national origin, age, disability status, protected veteran status, and any other protected status.Apply for this job
*indicates a required fieldFirst Name *Last Name *Email *PhoneResume/CVEnter manuallyAccepted file types: pdf, doc, docx, txt, rtfEnter manuallyAccepted file types: pdf, doc, docx, txt, rtfWhat is your current address? *Are you willing to travel onsite in DC if needed? *
Select...Do you have at least 10+ years of cybersecurity experience including a senior technical or management role, Project or Program Management experience?How did you hear about this job? If you know of an Arlo Solutions employee, please state their name. *What is your desired salary range? *Do you have an active security clearance? If yes, what type of security clearance do you have? Please select from the dropdown.
*
Select...Are you legally authorized to work in the United States? *
Select...Will you now, or in the future, require sponsorship for employment visa status (e.g. H-1B visa status)?
*
Select...Voluntary Self-Identification
For government reporting purposes, we ask candidates to respond to the below self-identification survey.Completion of the form is entirely voluntary. Whatever your decision, it will not be considered in the hiringprocess or thereafter. Any information that you do provide will be recorded and maintained in aconfidential file.As set forth in Arlo Solutions LLC’s Equal Employment Opportunity policy,we do not discriminate on the basis of any protected group status under any applicable law.If you believe you belong to any of the categories of protected veterans listed below, please indicate by making the appropriate selection.As a government contractor subject to the Vietnam Era Veterans Readjustment Assistance Act (VEVRAA), we request this information in order to measurethe effectiveness of the outreach and positive recruitment efforts we undertake pursuant to VEVRAA. Classification of protected categoriesis as follows:A "disabled veteran" is one of the following: a veteran of the U.S. military, ground, naval or air service who is entitled to compensation (or who but for the receipt of military retired pay would be entitled to compensation) under laws administered by the Secretary of Veterans Affairs; or a person who was discharged or released from active duty because of a service-connected disability.A "recently separated veteran" means any veteran during the three-year period beginning on the date of such veteran's discharge or release from active duty in the U.S. military, ground, naval, or air service.An "active duty wartime or campaign badge veteran" means a veteran who served on active duty in the U.S. military, ground, naval or air service during a war, or in a campaign or expedition for which a campaign badge has been authorized under the laws administered by the Department of Defense.An "Armed forces service medal veteran" means a veteran who, while serving on active duty in the U.S. military, ground, naval or air service, participated in a United States military operation for which an Armed Forces service medal was awarded pursuant to Executive Order 12985.Select...Voluntary Self-Identification of Disability
Form CC-305Page 1 of 1OMB Control Number 1250-0005Expires 04/30/2026Voluntary Self-Identification of Disability
Form CC-305
Page 1 of 1
OMB Control Number 1250-0005
Expires 04/30/2026Why are you being asked to complete this form?
We are a federal contractor or subcontractor. The law requires us to provide equal employment opportunity to qualified people with disabilities. We have a goal of having at least 7% of our workers as people with disabilities. The law says we must measure our progress towards this goal. To do this, we must ask applicants and employees if they have a disability or have ever had one. People can become disabled, so we need to ask this question at least every five years.Completing this form is voluntary, and we hope that you will choose to do so. Your answer is confidential. No one who makes hiring decisions will see it. Your decision to complete the form and your answer will not harm you in any way. If you want to learn more about the law or this form, visit the U.S. Department of Labor’s Office of Federal Contract Compliance Programs (OFCCP) website at www.dol.gov/ofccp .How do you know if you have a disability?
A disability is a condition that substantially limits one or more of your “major life activities.” If you have or have ever had such a condition, you are a person with a disability.
Disabilities include, but are not limited to:Alcohol or other substance use disorder (not currently using drugs illegally)Autoimmune disorder, for example, lupus, fibromyalgia, rheumatoid arthritis, HIV/AIDSBlind or low visionCancer (past or present)Cardiovascular or heart diseaseCeliac diseaseCerebral palsyDeaf or serious difficulty hearingDiabetesDisfigurement, for example, disfigurement caused by burns, wounds, accidents, or congenital disordersEpilepsy or other seizure disorderGastrointestinal disorders, for example, Crohn's Disease, irritable bowel syndromeIntellectual or developmental disabilityMental health conditions, for example, depression, bipolar disorder, anxiety disorder, schizophrenia, PTSDMissing limbs or partially missing limbsMobility impairment, benefiting from the use of a wheelchair, scooter, walker, leg brace(s) and/or other supportsNervous system condition, for example, migraine headaches, Parkinson’s disease, multiple sclerosis (MS)Neurodivergence, for example, attention-deficit/hyperactivity disorder (ADHD), autism spectrum disorder, dyslexia, dyspraxia, other learning disabilitiesPartial or complete paralysis (any cause)Pulmonary or respiratory conditions, for example, tuberculosis, asthma, emphysemaShort stature (dwarfism)Traumatic brain injury
Disability Status
Select...
PUBLIC BURDEN STATEMENT: According to the Paperwork Reduction Act of 1995 no persons are required to respond to a collection of information unless such collection displays a valid OMB control number. This survey should take about 5 minutes to complete.
#J-18808-Ljbffr