Kelaca
Information System Security Manager ISSM
Kelaca, Arlington, Virginia, United States, 22201
Kelaca is looking for a
Information System Security Manager
for our client partner in
Arlington, VA . The Company has an immediate need for an experienced IT Professional to serve as an Information System Security Manager (ISSM) for the Algorithms, Modeling and Assessments (AMA) division in Arlington, VA. The ISSM is primarily responsible for maintaining the overall security posture of the systems within their organization and is accountable for the implementation of the RMF. The ISSM serves as the principal advisor on all matters, technical and otherwise, involving the security of systems under their purview. Due to the nature of the work, The Company will only consider applicants with a Secret Security Clearance or higher.Key Responsibilities
:Developing, maintaining, and overseeing the system security program and policies for their assigned area of responsibility.Ensuring compliance with current cyber security policies, concepts, and measures when designing, procuring, adopting, and developing a new system.Working with the ISSMs/ISSOs/ISSEs at each location to ensure each manage and maintain systems that adhere to government regulations (32 CFR Part 117, DAAMP and NIST SP 800-53 Rev 5.).Strong working knowledge of DoD RMF process, with the ability to carry out Authorization and Accreditation (A&A) activities such as developing and maintaining systems Authority to Operate (ATO).Serve as the subject matter experts (SME) on a broad range of Cybersecurity topics. You may represent the Cybersecurity organization and business unit to external Cybersecurity counterparts. You are responsible for providing guidance and technical training to ISSOs and ISSEs at your location.Manages the assessment and mitigation of system security threats and risks throughout the program life cycle.You will conduct recurring Cybersecurity reviews on information systems in accordance with DoD Manuals, JSIG, NIST Special Publications, customer directives, and company policies as applicable.Executes the security testing and evaluation to ensure the correct implementation of security requirements.Ensure your team is adequately staffed and trained to be successful in their individual roles.Provides technical support to users as needed.Performs other duties as assigned.Skills and Experience
:Must be a US Citizen and possess an Active Secret clearance.Bachelor’s Degree with 10-12 years of experience or Masters’s Degree with 8-10 years of experience.Ensure compliance with the National Industrial Security Program Operating Manual (NISPOM), DCSA Assessment and Authorization Process Manual (DAAPM), Department of Defense (DoD) regulations, Intelligence Community Directives (ICDs) and Security Technical Implementation Guides (STIGs).Possess a DoD 8570 IAM Level III Certification (CISSP, CISM etc.).Knowledge of current industry methods for evaluating, implementing, and disseminating information technology (IT) security assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilities.Conduct security briefings and trainings as needed.Ability to establish, enforce, and monitor Cybersecurity and Information Security policies, standards, processes, and controls.Have a strong understanding of computer operating systems (Windows and Linux), software and computer hardware.Can configure laptop/desktops/servers, install applications, setup network infrastructure and troubleshoot as required.Ability to lift and move computer equipment including workstations, servers, printers, scanners, monitors, etc.Preferred Experience
:Excellent team leadership skills, with experience leading and collaborating in a multi-disciplinary, diverse, and dynamic team environment.Experience leading and mentoring junior level staff.Proficient with Microsoft Word, Excel, PowerPoint and Outlook.Master’s degree with 8-10 years of experience.Highest degree of personal and professional integrity and ethics.Proficient in IA Security specifications such as Risk Management Framework (RMF) and NIST SP 800-53.Experience with the National Industrial Security Program Operating Manual (NISPOM), Department of Defense Directives 5200.01, volumes 1-4, and Intelligence Community Directive 705.Security Clearance Requirements:The projects that will be assigned involve government work and US Citizenship is required. Selected applicant will be subject to a US Government security investigation and must meet eligibility requirements for access to classified information.
NO THIRD PARTIESJob Type: Full-timeHours of On-Site Work: Monday-Friday; 8am-5pmFLSA Exemption Status: ExemptBenefits: Health, Dental, Vision, 401K, 17.5 days PTO, 10 HolidaysApply to Kelaca today so we can schedule a conversation with you to further discuss this exciting opportunity.Kelaca is an Equal Employment Opportunity company and does not discriminate in employment based on: age, disability, national origin, race, color, religion, veteran status, genetic information, gender, sex, gender identity, sexual orientation, pregnancy, or other non-merit factor.
Information System Security Manager
for our client partner in
Arlington, VA . The Company has an immediate need for an experienced IT Professional to serve as an Information System Security Manager (ISSM) for the Algorithms, Modeling and Assessments (AMA) division in Arlington, VA. The ISSM is primarily responsible for maintaining the overall security posture of the systems within their organization and is accountable for the implementation of the RMF. The ISSM serves as the principal advisor on all matters, technical and otherwise, involving the security of systems under their purview. Due to the nature of the work, The Company will only consider applicants with a Secret Security Clearance or higher.Key Responsibilities
:Developing, maintaining, and overseeing the system security program and policies for their assigned area of responsibility.Ensuring compliance with current cyber security policies, concepts, and measures when designing, procuring, adopting, and developing a new system.Working with the ISSMs/ISSOs/ISSEs at each location to ensure each manage and maintain systems that adhere to government regulations (32 CFR Part 117, DAAMP and NIST SP 800-53 Rev 5.).Strong working knowledge of DoD RMF process, with the ability to carry out Authorization and Accreditation (A&A) activities such as developing and maintaining systems Authority to Operate (ATO).Serve as the subject matter experts (SME) on a broad range of Cybersecurity topics. You may represent the Cybersecurity organization and business unit to external Cybersecurity counterparts. You are responsible for providing guidance and technical training to ISSOs and ISSEs at your location.Manages the assessment and mitigation of system security threats and risks throughout the program life cycle.You will conduct recurring Cybersecurity reviews on information systems in accordance with DoD Manuals, JSIG, NIST Special Publications, customer directives, and company policies as applicable.Executes the security testing and evaluation to ensure the correct implementation of security requirements.Ensure your team is adequately staffed and trained to be successful in their individual roles.Provides technical support to users as needed.Performs other duties as assigned.Skills and Experience
:Must be a US Citizen and possess an Active Secret clearance.Bachelor’s Degree with 10-12 years of experience or Masters’s Degree with 8-10 years of experience.Ensure compliance with the National Industrial Security Program Operating Manual (NISPOM), DCSA Assessment and Authorization Process Manual (DAAPM), Department of Defense (DoD) regulations, Intelligence Community Directives (ICDs) and Security Technical Implementation Guides (STIGs).Possess a DoD 8570 IAM Level III Certification (CISSP, CISM etc.).Knowledge of current industry methods for evaluating, implementing, and disseminating information technology (IT) security assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilities.Conduct security briefings and trainings as needed.Ability to establish, enforce, and monitor Cybersecurity and Information Security policies, standards, processes, and controls.Have a strong understanding of computer operating systems (Windows and Linux), software and computer hardware.Can configure laptop/desktops/servers, install applications, setup network infrastructure and troubleshoot as required.Ability to lift and move computer equipment including workstations, servers, printers, scanners, monitors, etc.Preferred Experience
:Excellent team leadership skills, with experience leading and collaborating in a multi-disciplinary, diverse, and dynamic team environment.Experience leading and mentoring junior level staff.Proficient with Microsoft Word, Excel, PowerPoint and Outlook.Master’s degree with 8-10 years of experience.Highest degree of personal and professional integrity and ethics.Proficient in IA Security specifications such as Risk Management Framework (RMF) and NIST SP 800-53.Experience with the National Industrial Security Program Operating Manual (NISPOM), Department of Defense Directives 5200.01, volumes 1-4, and Intelligence Community Directive 705.Security Clearance Requirements:The projects that will be assigned involve government work and US Citizenship is required. Selected applicant will be subject to a US Government security investigation and must meet eligibility requirements for access to classified information.
NO THIRD PARTIESJob Type: Full-timeHours of On-Site Work: Monday-Friday; 8am-5pmFLSA Exemption Status: ExemptBenefits: Health, Dental, Vision, 401K, 17.5 days PTO, 10 HolidaysApply to Kelaca today so we can schedule a conversation with you to further discuss this exciting opportunity.Kelaca is an Equal Employment Opportunity company and does not discriminate in employment based on: age, disability, national origin, race, color, religion, veteran status, genetic information, gender, sex, gender identity, sexual orientation, pregnancy, or other non-merit factor.