Job Location : Melville,NY, USA
The Information System Security Manager (ISSM) will support the design, development, evaluation and accreditation of information systems used to process classified information and be responsible for daily supervision of Stellant PST Information Systems (IS) security plans.Major Responsibilities/Activities Statements:Perform duties as subject matter expert to address requirements listed in National Industrial Security Program Operating Manual (NISPOM), Intelligence Community Directives (ICD) and the Office of Designated Approving Authority (ODAA) Process Manual.Develop and review required System Security Plans (SSP, MSSP, NSP) and policy in accordance with the NISPOM, ICD, ODAA Process Manual and other security directives as required.Schedule, perform and maintain records of required Information Security auditing, patching, maintenance, software/hardware changes, and scanning based on evolving threat/vulnerabilities and customer compliance requirements.Build, configure and maintain Microsoft Windows systems in compliance with DoD cyber security requirements.Perform periodic self-inspections, tests and reviews of the Information Security program to ensure that systems are operating as authorized/accredited and that conditions have not changed. Ensure corrective actions are taken for identified findings and vulnerabilities.Ensure systems are operated, maintained, and disposed of in accordance with security policies and procedures.Develop and conduct test procedures for verification of Certification & Accreditation (C&A), Authorization and Accreditation (A&A), Risk Management Framework (RMF) safeguards to meet customer requirements.Remain current on information assurance regulations and contract security requirements.Coordinate with Facility Security Officer (FSO) and Contractor Program Security Officers (CPSO) to define, implement and maintain information security policies, strategies, and procedures.Create and conduct AIS Security briefings.Other duties as assigned.Required Experience:Five years full-time paid work experience, or four years' experience, plus an information security degree/certificate, in two or more of the following 8 CISSP domains:o Security and Risk Managemento Asset Securityo Security Engineeringo Communication and Network Securityo Identity and Access Managemento Security Assessment and Testingo Security Operationso Software Development Security3 years of experience implementing NISPOM, ICD and or ODAA Process Manual requirements.Job Requirements:Active US DoD Secret security clearance or SSBI with polygraph. Ability to obtain any additional clearances as required.DoD 8570.01m IAM III certified credentials (If not CISSP, must become CISSP certified within 6 months of hire date).In-depth knowledge with NISPOM Technical Baseline, RMF.Excellent people skills, with experience leading and collaborating in a dynamic team environment.Outstanding work ethic and commitment to organizational success.Excellent attention to detail.Proficient with Microsoft Office products.Certified Information Systems Security Professional (CISSP).5 years of experience with Windows 7/10, Windows Server 2008/2012, Active Directory and Group Policy.1-year experience with VMWare.Technical knowledge of Linux, and UNIX based platforms.Educational Requirements:Bachelor's Degree.#J-18808-Ljbffr