DA Integrators is currently seeking an Information Systems Security Manager to secure enterprise information by designing, implementing, and enforcing security controls, safeguards, policies, and procedures; managing staff.

Clearance Statement:

• Only candidates who currently possess an active Top Secret / SCI clearance will be considered
• Clearance must be at least 1 year away from the next 5 year update

Role and Responsibilities:

• Ensure systems are operated, maintained, and disposed of in accordance with security policies and procedures
• Generate and maintain required IS security documentation including Systems Security Plans (SSP), Information Assurance Standard Operating Procedures (IA SOP), Continuous Monitoring Plans, Security Control Traceability Matrices, Risk Assessments, Plan of Action & Milestones (POA&M), equipment specifications, practices and procedures
• Assume Information System Security Officer (ISSO) responsibilities in their absence
• Maintain customer-required Information Assurance (IA) certifications
• Maintain day-to-day security posture and continuous monitoring of classified ISs
• Coordinate with customers on approval of external information systems/guest systems
• Schedule, perform and maintain records of required IS auditing, patching, maintenance, software/hardware changes, and scanning based on evolving threat/vulnerabilities and customer compliance requirements
• Develop and conduct test procedures for verification of Certification & Accreditation (C&A), Authorization and Accreditation (A&A), Risk Management Framework (RMF) safeguards to meet customer requirements based upon NISPOM, NISPOM Overprint, JSIG, ICD 503, CNSSI 1253 and related NIST publications
• Perform testing to evaluate the security posture of ISs by employing various intrusion/attack detections and monitoring tools
• Evaluate threats and vulnerabilities to determine the need for supplementary safeguards (e.g. architecture, firewall, data flow, network access, etc.)
• Employ customer-approved procedures for sanitizing and releasing system components and media
• Maintain a repository of security authorizations for ISs under the office’s purview
• Assess changes to an IS by performing periodic self-inspections, tests and reviews of the IS program to ensure that systems are operating as authorized/accredited and that conditions have not changed; ensure corrective actions are taken for identified findings and vulnerabilities
• Be knowledgeable of and comprehend customer security classification guides (SCG) to determine classified system requirements
• Enforce configuration management (CM) policies and procedures for authorizing the use of hardware/software on an IS
• Maintain a working knowledge of IS functions, security policies, technical security safeguards, and operational security measures
• Coordinate with Facility Security Officer (FSO) and Contractor Program Security Officers (CPSO) to define, implement and maintain information security policies, strategies, and procedures
• Implement policies and procedures for responding to security incidents, and for investigating and reporting security violations and incidents
• Ensure the development, documentation, and presentation of classified IS security education, awareness, and training activities
• Support Chief Security Officer (CSO) in company-wide initiatives