CAE USA
Information System Security Manager Job at CAE USA in Binghamton
CAE USA, Binghamton, NY, US
Summary Responsible for the development, deployment and execution of controls and defenses to ensure the security of company technology, information systems, and system deliverables. Develops and implements appropriate standards and criteria for hardware, software, access and encryption requirements. Establishes system security designs and validates compliance requirements. Assesses and mitigates system security threats and risks throughout the program life cycle. Performs system certification and accreditation planning, testing, and validation activities in coordination with government customers and IAW RMF requirements and best practices. Supports secure systems operations and maintenance. Conducts internal information technology system audits and risk assessments and reports findings and recommendations for corrective actions to management. Executes first level responses and addresses reported or detected security incidents. Investigates and analyzes all response activities related to cyber incidents. Interprets, analyzes, and reports all events and anomalies in accordance with directives, to include initiating, responding, and reporting discovered events. Safeguards information against unauthorized use, infiltration, exfiltration, modification, destruction or disclosure of national security information. Essential Duties and Responsibilities Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions. · Assist program personnel at offsite locations to ensure they meet USG certification requirements and are properly trained to execute the cybersecurity program effectively and maintain security compliance · Excellent communications skills, oral and written · Demonstrated strong critical thinking and problem-solving skills · Self-motivated and possesses good written, verbal, listening and presentation skills, particularly in documenting evaluation results · Confident personality with the ability to effectively prioritize multiple projects · Ability to work with people in a team environment and deal effectively with changing project priorities · Candidate must have demonstrated professional customer service skills · Ability to balance information security requirements with MT’s mission, goals and culture is critical Qualifications and Education Requirements Bachelor’s Degree in discipline and minimum 6 years of prior relevant experience or 2 years post-Secondary/ Associates Degree Minimum of 8 years of prior related experience. Graduate Degree and a minimum of 4 years of prior related experience. · Working knowledge of Risk Management Framework as defined in NIST 800-53 and CNSSI 1253 · Conducted vulnerability and compliance scanning for federal information systems · In-depth knowledge and experience with technical configuration standards relating to information system security; experience configuring Windows operating systems, experience with server systems, thin client architecture, system virtualization and other related peripherals · Extensive knowledge and experience with assessment & authorization (A&A) requirements as outlined in the NISPOM/DAAPM, JSIG, RMF, NIST and other USG IS/Security-related policies · Knowledge and experience with configuration/certification and auditing/analysis of Windows · Experience supporting various system configurations (Stand Alone, Local Area Networks, Wide Area Networks, Government, and Contractor connections) · Experience with Interconnected Security Agreements (ISA), Network Security Plans (NSP), Memorandum of Agreement/Understanding (MOA/U) · Experience in implementing Windows Active Directory Services, Group Policy · Applied experience with Windows PowerShell. Experience with security information and event management (SIEM) and data loss prevention (DLP) solutions. · Experience with audit reviews such as: physical security, network and application, password administration, file access privileges, etc. Due to U.S. Government contract requirements, only U.S. citizens are eligible for this role. Preferred Skills · Candidate must provide evidence of DoD 8570 IAM III compliance: CISSP, CISA, CISM, etc, and/or other equivalent or obtain requisite certification within 6 months of hire date. · Active DoD Secret Clearance is required, and must be able to obtain and maintain a Top Secret Clearance Security Responsibilities Must comply with all company security and data protection / usage policies and procedures. Personally responsible for proper marking and handling of all information and materials, in any form. Shall not divulge any information, or afford access, to other employees not having a need-to-know. Shall not divulge information outside company without management approval. All government and proprietary information will be accessed and stored electronically on company provided resources. Incumbent must be eligible for DoD Personal Security Clearance. Due to U.S. Government contract requirements, only U.S. citizens are eligible for this role. Work Environment This job operates in a professional office environment. This role routinely uses standard office equipment such as computers, phones, photocopiers, filing cabinets and fax machines. SEE NOTE on last page Salary Range : $142,700 to $157,700 The actual compensation rate is subject to the evaluation of the following factors (but not limited to): the candidate's work experience, qualifications, skills, internal equity, and market. If Continuum is remote insert the following If any candidate interested in this position is located in a state or local jurisdiction that has specific pay transparency requirements, please contact your Recruiter to request any required information that is not included in this job posting. Other Duties Please note this job description is not designed to cover or contain a comprehensive listing of activities, duties or responsibilities that are required of the employee for their job. Duties, responsibilities, and activities may change at any time with or without notice. CAE USA Inc. is an EOE/AA employer and gives consideration for employment to all qualified applicants without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or protected veteran status. If you’d like more information about your EEO rights as an applicant under the law, please click here Know Your Rights: Workplace Discrimination is Illegal . PAY TRANSPARENCY NONDISCRIMINATION PROVISION The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information.