Information Systems Security Manager (ISSM) - Clearance Required

Job ID: 2412528
Location: SAN DIEGO, CA, United States
Date Posted: Nov 6, 2024
Category: Cyber
Subcategory: Cyber GRC
Schedule: Full-time
Shift: Day Job
Travel: No
Minimum Clearance Required: Secret
Clearance Level Must Be Able to Obtain: Top Secret
Potential for Remote Work: No Remote
Benefits: Click here

SAIC is looking for an experienced Information Systems Security Manager (ISSM) to join our team in San Diego, CA.

Duties:

• Serves as the primary cybersecurity technical advisor to program management and Information System Owner.
• Ensures the integration of cybersecurity into and throughout the lifecycle of the Information System.
• Develops, maintains, and oversees the system security program and policies for their assigned area of responsibility.
• Ensures all IT cybersecurity-related documentation is current and accessible to properly authorized individuals.
• Ensures compliance with current cyber security policies, concepts, and measures when designing, procuring, adopting, and developing a new system.
• Develops and implements an effective system security education, training, and awareness program.
• Maintains a working knowledge of system functions, security policies, technical security safeguards, and operational security measures.
• Possesses sufficient experience, commands adequate resources, and organizationally aligned to ensure prompt support and successful executionof a robust system security program.
• Develops, documents, and monitors compliance with and reporting of the cleared contractor facility’s system security program in accordance with Cognizant Security Activity (CSA) guidelines for management, operational, and technical controls.
• Performing risk assessments and documenting results in a RAR and keeping the risk assessment current throughout the acquisition/development portion of the system life cycle.
• Certifying to the AO, in writing, that the requirements and implementation procedures listed within the security plan are in accordance with the NISPOM, NIST SP 800-53, and DAAPM.
• Implements security controls to protect the system, in coordination with system stakeholders.
• Maintains the system in accordance with the security plan and Authorization to Operate (ATO).
• Ensures audit records are collected and analyzed in accordance with the security plan.
  Ensures cybersecurity-related events or configuration changes that impact IS authorization or adversely impact the security posture are formally reported to the Cognizant Security Agency (CSA).
• All other duties as defined in the DCSA Assessment and Authorization Process Manual (DAAPM).

Qualifications

Required Education and Qualifications:

• Bachelor's Degree, and minimum ten (10) years of related experience.
• Minimum five (5) years of related information systems security experience in a security environment with demonstrated knowledge of classified IS operation.
• Working knowledge of Risk Management Framework (RMF) and creating a RMF System Security Plan in the enterprise Mission Assurance Support Service (eMASS).
• Current/active professional certifications that comply with DoD 8570 IAM Level 2 requirements are required.
• In-depth knowledge of RedHat Linux, and Microsoft Windows server and client operating systems.
• Familiarity with Private, Public, and hybrid cloud.
• Must be able to initiate communication with SAIC management and various Government agencies for support and/or compliance requirements.
• Candidate must be a self-starter and possess the ability to operate independently without supervision.
• Professional and effective interpersonal skills and attire along with the ability to provide face-to-face customer support are required.

Desired Education and Experience:

• Extensive DCSA and DAAPM experience and knowledge.
• Cloud certification is a plus.
• CompTIA Advanced Security Practitioner (CASP), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), or Certified Ethical Hacker (CEH).
• Advanced experience in Windows (10) and Windows Server operating systems and a working knowledge of Linux Operating systems.

Description

SAIC is looking for an experienced Information Systems Security Manager (ISSM) to join our team in San Diego, CA.

Duties:

• Serves as the primary cybersecurity technical advisor to program management and Information System Owner.
• Ensures the integration of cybersecurity into and throughout the lifecycle of the Information System.
• Develops, maintains, and oversees the system security program and policies for their assigned area of responsibility.
• Ensures all IT cybersecurity-related documentation is current and accessible to properly authorized individuals.
• Ensures compliance with current cyber security policies, concepts, and measures when designing, procuring, adopting, and developing a new system.
• Develops and implements an effective system security education, training, and awareness program.
• Maintains a working knowledge of system functions, security policies, technical security safeguards, and operational security measures.
• Possesses sufficient experience, commands adequate resources, and organizationally aligned to ensure prompt support and successful executionof a robust system security program.
• Develops, documents, and monitors compliance with and reporting of the cleared contractor facility’s system security program in accordance with Cognizant Security Activity (CSA) guidelines for management, operational, and technical controls.
• Performing risk assessments and documenting results in a RAR and keeping the risk assessment current throughout the acquisition/development portion of the system life cycle.
• Certifying to the AO, in writing, that the requirements and implementation procedures listed within the security plan are in accordance with the NISPOM, NIST SP 800-53, and DAAPM.
• Implements security controls to protect the system, in coordination with system stakeholders.
• Maintains the system in accordance with the security plan and Authorization to Operate (ATO).
• Ensures audit records are collected and analyzed in accordance with the security plan.
  Ensures cybersecurity-related events or configuration changes that impact IS authorization or adversely impact the security posture are formally reported to the Cognizant Security Agency (CSA).
• All other duties as defined in the DCSA Assessment and Authorization Process Manual (DAAPM).

Qualifications

Required Education and Qualifications:

• Active DoD Secret clearance.
• Bachelor's Degree, and minimum ten (10) years of related experience.
• US Citizenship Required.
• Minimum five (5) years of related information systems security experience in a security environment with demonstrated knowledge of classified IS operation.
• Working knowledge of Risk Management Framework (RMF) and creating a RMF System Security Plan in the enterprise Mission Assurance Support Service (eMASS).
• Current/active professional certifications that comply with DoD 8570 IAM Level 2 requirements are required.
• In-depth knowledge of RedHat Linux, and Microsoft Windows server and client operating systems.
• Familiarity with Private, Public, and hybrid cloud.
• Must be able to initiate communication with SAIC management and various Government agencies for support and/or compliance requirements.
• Candidate must be a self-starter and possess the ability to operate independently without supervision.
• Professional and effective interpersonal skills and attire along with the ability to provide face-to-face customer support are required.

Desired Education and Experience:

• Extensive DCSA and DAAPM experience and knowledge.
• Cloud certification is a plus.
• CompTIA Advanced Security Practitioner (CASP), Certified Information Security Manager (CISM), Certified Information Systems Security Professional (CISSP), or Certified Ethical Hacker (CEH).
• Advanced experience in Windows (10) and Windows Server operating systems and a working knowledge of Linux Operating systems.

Target salary range: $120,001 - $160,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.
SAIC accepts applications on an ongoing basis and there is no deadline.

Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.

Overview

SAIC is a premier Fortune 500 technology integrator focused on advancing the power of technology and innovation to serve and protect our world. Our robust portfolio of offerings across the defense, space, civilian and intelligence markets includes secure high-end solutions in mission IT, enterprise IT, engineering services and professional services. We integrate emerging technology, rapidly and securely, into mission critical operations that modernize and enable critical national imperatives.

We are approximately 24,000 strong; driven by mission, united by purpose, and inspired by opportunities. SAIC is an Equal Opportunity Employer, fostering a culture of diversity, equity and inclusion, which is core to our values and important to attract and retain exceptional talent. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $7.4 billion. For more information, visit saic.com . For ongoing news, please visit our newsroom.

Please apply through the internal career site here >