Information Systems Security Manager

GCI embodies excellence, integrity and professionalism. The employees supporting our customers deliver unique, high-value mission solutions while effectively leverage the technological expertise of our valued workforce to meet critical mission requirements in the areas of Data Analytics and Software Development, Engineering, Targeting and Analysis, Operations, Training, and Cyber Operations. We maximize opportunities for success by building and maintaining trusted and reliable partnerships with our customers and industry.

At GCI, we solve the hard problems. As an ISSM, a typical day will include the following duties:

• Perform and/or manage others who perform audit log analysis, report generation and brief findings to GCI Management.
• Provide direct support to and/or directly lead the development of information system security policies, CONOPS, guides, etc.
• Coordinates security investigations of all suspected computer security violations, incidents, and compromises in accordance with GCI and customer incident response program.
• Conduct security audits and ensures that audit trails are reviewed and audit records archived in accordance with GCI and Customer security requirements.
• Ensure IS are operated, used, maintained, and disposed of appropriately in accordance with GCI and/or Customer security procedures, directives, guidelines, regulations, and policies.
• Develop and maintains system security documentation such as System Security Plans, Security Operating Procedures, CONOPS, Risk Assessment Reports, and required policies and documentation to support system compliance for assigned security frameworks (ie NIST RMF/CSF, NISPOM, ICD Publications, CUI, CMMC, etc.), and directing necessary Information System Security Officers (ISSOs) for the same.
• Conduct periodic reviews, self-inspections, and/or assessments to ensure IS(s) meet GCI and Customer security requirements and support similar or same customer requirements during A&A activities.
• Conduct user training and awareness activities under the direction of the GCI or Customer IAM, ISSM, or Customer Security programs.
• Participate in and/or lead self-assessment of system safeguards, controls, and program elements and in assessment and authorization of the system.
• Ensure Configuration Management (CM) documentation for IS software and hardware is maintained.
• Coordinate, lead, and manage as member in full, or as a stand-in for leadership when unavailable, for the GCI Configuration Management Board for system(s) for which they are responsible.
• Coordinate/obtain approval from GCI and/or Customer Security representatives for the procurement of software, hardware, and firmware for use on assigned IS(s).
• Possess a functional working knowledge of industry best practices for Information Assurance as well as applicable information security documents such as ICD 503, Risk Management Framework (RMF), NISPOM, and NIST.
• Candidate must be a self-starter that is mission focused and able to work in a dynamic work environment with a diverse set of personalities. Must be able to take specific directions and progress forward to task completion once provided with that direction, and will be expected to lead, manage others, or initiate tasks or actions on their own.
• Strong documentation, analysis, and oral/written communications skills.

*A candidate must be a US Citizen and requires an active/current TS/SCI with Polygraph clearance. 

Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans