Security Manager / ISSM

Job Title: Security Manager / ISSM

Location: Arlington, Virginia

Clearance Level: Top Secret Clearance

Summary

We deliver essential technology services to our customers in support of their missions to sustain the national security and economic interest of our nation. SecuriGence is seeking a Security Manager / ISSM to help contribute to our success. Help us solve problems with Innovation Through Intelligence.

The Information System Security Manager will manage the coordination, application, implementation and execution of Cybersecurity Services, IA policy, A&A, audits, and mitigation recommendations. Will perform and lead security requirements analysis, security requirements definition, system security design, security architecture generation, and security verification and validation with little or no supervision. Will contribute to detailed security analyses at the system of system (SOS) level.

Responsibilities

• Assume or delegate the role of SCIF Manager for the ITD managed SCIF spaces.
• Act as the ITD Contractor representative to the Insider Threat Working Group.
• Prepare reports on the status of security safeguards applied to computer systems.
• Provide leadership, mentoring, and quality assurance for team members as a security expert.
• Work with multiple security, IT, and engineering leadership/stakeholders as well as a variety of security, IT, and engineering technical resources to identify and plan physical and cybersecurity work to meet/exceed program initiatives.
• Support the execution of product cybersecurity elements across programs and services.
• Manage a cybersecurity program in a fast-paced and dynamic client-site environment and take charge of cyber tasks in government facilities, including full life cycle Risk Management Framework (RMF), vulnerability management, inspections, governance, and training.
• Ensure that security risks and findings are appropriately documented and provide solutions to remediate issues while allowing systems to remain operational and compliant in a mission-first environment
• Responsible for managing a team supporting the Cybersecurity vulnerability management and implementation of security controls to ensure all systems can meet security accreditation mandates and guidelines.
• Responsible for activities associated with delivery of Cybersecurity policy implementation and network solutions associated with customer-defined systems and software projects.
• Ensure the government's security requirements are met, complying with applicable DoD policies, and providing Computer Network Defense Services to meet all security service and IA service requirements to protect the Government's Information Systems (IS)
• Manage network boundary/perimeter protection, including firewalls, intrusion detection systems (IDSs) and Virtual Private Networks (VPNs)
• Conducts Incident Management, including emergency response and forensic analysis
• Leads vulnerability assessment and penetration testing and analysis of computers and networks
• Conducts Information Security Risk Assessments
• Leads 24x7 Security Operations Services to properly address or escalate any security-related event
• Oversees monitoring and analysis of threats to the network infrastructure, and detection and rapid response consistent with the threat's potential harm or damage
• Maintains proficiency in security tools, techniques and procedures and counter-measures for network vulnerabilities
• Assists with the development and maintenance of security policies and procedures
• Implements and enforces policies and procedures through manual and automated controls
• Provides status reporting for all escalations and security operations requests and problems
• Participates in the remediation of audit findings and understands the operational impact of NIST Risk Management Framework (RMF)
• Implements procedures and metrics for security operations
• Ensures the implementation of DoD Security Technical Implementation Guidelines (STIGs)
• Leads major audits for the organization to include the Cyber Security Service Provider (CSSP), Command Cyber Operational Readiness Inspection (CCORI)

Skills and Experience

• Minimum 12 years related experience
• Knowledge of Cyber Security risk management processes
• Experience with managing multiple projects, including adjusting to shifting priorities and solving problems quickly
• Experience with managing project teams, including direct responsibility for people development
• Experience with leading transformation initiatives
• Ability to multi-task in a fast-paced environment
• Strong use and understanding of systems engineering concepts, principles, and theories
• Strong knowledge of cyber security technology and trends
• Experience presenting technical concepts to a variety of audiences
• Must be able to assist the customer and or staff with technical issues related to security products

Qualifications

• Bachelor's degree or higher. Can be substituted for Associate's degree with 2+ years of relevant experience or 4 years relevant experience.
• Must meet DoD 8140.01 certification requirements for IAM-III (CISM, CISSP, GSLC, CCISO)
• Must have a Top-Secret Clearance with SCI eligibility

About

SecuriGence LLC (SG) is an agile, HUBZone Certified Veteran-owned small business headquartered in the Washington, DC metropolitan region. Established in April 2010 we have been supporting the Department of Defense and other United States Civil agencies in Systems Engineering, Software Engineering, Software Development, Cyber Security, and Cloud/Virtualization Management.

SecuriGence provides equal employment opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.