Information System Security Manager

The 46th Test Squadron is searching for a well-qualified cybersecurity engineer to perform duties as an Information Systems Security Manager (ISSM) who will work with a team of professionals that supports test engineers, exercises, and tactical datalinks test events. If you enjoy challenging and rewarding work in an environment that fosters creativity, innovation, and self-initiative, this is the place for you.

REQUIRED QUALIFICATIONS / SKILLS:

• Master's Degree in a technical field and 10 years of applicable experience. *Additional experience may be substituted for education requirements.
• Must have an active and current DoD Secret clearance with the ability to obtain and maintain a DoD Top Secret clearance.
• Active DoD 8570 IAM Level II Certification (CASP CE, CISSP, GSLC) is required.
• Extensive DoD cybersecurity experience with responsibilities for program, organization, system, or enclave compliance with DoD security policies and procedures.
• Solid experience in writing Authorization to Operate (ATO) and Interim Authorization to Test (IATT) packages.
• Past success in managing a cybersecurity team.

DESIRED QUALIFICATIONS / SKILLS:

• Experience in performing security audits on systems and enclaves.
• Experience in reviewing and analyzing system STIG assessments and ACAS scans.
• Experience in performing Air Force software and application certification assessments.

RESPONSIBILITIES:

• Duties require a thorough knowledge of the RMF lifecycle.
• Ensures the integration of cybersecurity into and throughout the lifecycle of organization networks and systems.
• Reviews datalinks test designs ensuring compliance with current network/system authorizations.
• Ensures all cybersecurity-related documentation is current and accessible.
• Supports Information System Owner (ISO) and Program Manager (PM) in maintaining current authorization documentation and approvals.
• Implements corrective actions identified in network/system Plan of Action and Milestones (POA&M).
• Continuously monitors all networks, systems, and environments for security-relevant events.
• Assesses proposed configuration changes for potential impact to the organization’s cybersecurity posture.
• Assesses the quality of security control implementation against performance indicators.
• Ensures cybersecurity-related events or configuration changes that impact each network/system authorization or adversely impacts their security posture are formally reported to the applicable Authorizing Official (AO).
• Provides oversight and guidance to organization Information System Security Officers (ISSO).
• Ensures system changes are conducted in accordance with security policy and procedures.
• Monitors and validates Security Technical Implementation Guide (STIG) assessments and Assured Compliance Assessment Solution (ACAS) scans as required.
• Continually monitors DTL systems and their environment.
• Performs and analyzes network/system Security Impact Assessments and advises AO on prospective changes.
• Manages identified vulnerability remediation.
• Manages security incidents, supporting audits and investigations.

What They Offer:

• Continuing education assistance
• Multiple healthcare benefits packages
• 401K with employer matching
• Paid time off (PTO) along with a federally recognized holiday schedule

• Seniority level
  Mid-Senior level

• Employment type
  Full-time

• Job function
  Information Technology
• Industries
  Staffing and Recruiting

Referrals increase your chances of interviewing at ROI Services LLC by 2x

Medical insurance

Vision insurance

401(k)

Get notified when a new job is posted.

We’re unlocking community knowledge in a new way. Experts add insights directly into each article, started with the help of AI.