Information Systems Security Manager (ISSM)

Overview

SMS is seeking highly motivated experienced Information Systems Security Manager (ISSM) in support of a dynamic team at Maxwell AFB, Gunter Annex, AL.  The ISSM will support the Senior Security Architect maintain the authorization of the systems throughout its lifecycle. Provide support and technical expertise related to Defense in Depth principles and technology in security engineering designs and implementation. Be responsible for drafting and maintaining ATO/ATC. The candidate will be able to fully support new and existing inspectable DoD programs. They will manage the Information Assurance team and their work products, ensuring high quality performance and deliverables.

As a dynamic systems integrator, SMS offers proven solutions in engineering, operations, cybersecurity, and digital transformation. With expertise in modernizing and optimizing legacy infrastructure and systems, ensuring operational efficiency, and designing, implementing, and managing secure environments, SMS supports business and mission goals with proficiency, quality, and integrity.

SMS has been serving the advanced information technology needs of the federal government since 1976, delivering talented teams and innovative, cost-effective solutions and services to support our customers’ missions for more than 40 years. SMS is headquartered in McLean, Virginia, with offices and on-site operations at customer locations throughout the United States. For additional information on SMS, visit www.sms.com.

Submit your resume today!

Responsibilities

• Oversee Information Assurance Team’s processes and performs duties as ISSM for the 26 NOS.
• Ensure other IT support personnel monitor all available resources that provide warnings of system vulnerabilities or ongoing attacks.
• Communicate with internal and external project team members to implement solution designs and changes to the organization’s processes, hardware, software, and data.
• Coordinate with personnel on system security compliance and Information System Authority to Operate /Authority to Connect (ATO/ATC).
• Ensure Configuration management policies and procedures for authorizing the use of hardware/software on an IS are followed.
• Coordinate Information Security Reviews, Security Inspections, and Tests Results.
• Assess system security threats/risks.
• Validate system security requirements definitions and analysis.
• Assist PMO with assessment and authorization process as needed.
• Track and validates security incidents, which requires to investigating, documenting, reporting, and providing future protective and corrective measures in response to such incidents. Ensure proper measures are taken when an incident or vulnerability is discovered.
• Lead briefings on system security compliance and Information System Authority to Operate / Authority to Connect (ATO/ATC) compliance, expiration and actions.
• Implement the Risk Management Framework (RMF) methodology to successfully implement an information technology process which shall effectively protect the element's information assets and its ability to perform its mission.
• Populate and maintains RFM databases (eMass) with bodies of evidence to support system accreditation actions.
• Collaborate with the Program Managers, AF Intelligence Community Information Assurance Program Managers, ISSOs and configuration managers to maintain an effective risk assessment process.
• Ensure data stewardship (confidentiality, integrity, and availability) is established for each IS, and specific requirements are enforced.
• Manage the day-to-day operations and administration of the Information Assurance team.
• Provide leadership and guidance to team members on best practices and expectations of the government customer.
• Is responsible for the overall performance of the IA shop and ensuring high quality products and services are being provided.

Qualifications

Qualifications/Requirements:

• Technical degree, Associates or, Bachelor’s degree in Computer Science/Information Systems, Science/Engineering/Math
• Bachelor’s degree preferred from an accredited university in Information Assurance, Information Security Systems, or related fields.
• At least 6 - 8 years’ experience and be able to supervise and direct the work of others and have the ability to serve as a technical team lead. Note: If individual is IAT Level III, individual must have at least 7 years of experience.
• Have a working knowledge of system functions, security policies, technical security safeguards, and operational security measures.
• Must have senior level industry experience demonstrating and practicing their knowledge, skills, and abilities in Information Systems Security.
• Ability to resolve issues quickly and efficiently.
• Strong Troubleshooting skills
• Strong customer service skills
• Strong written and verbal communication skills.
• Experience with SPLUNK and ACAS is a plus.
• Knowledge of CISCO and/or PALO Alto network devices a plus.

Certifications:

• 8570 IAT level III certifications required: CISSP.
• One of the following professional security management certification required CE/OS Certification
  • CCNA
  • Certified in Governance, Risk and Compliance
  • MS: Administering Information Protection and Compliance

Clearance:

• DoD Top Secret/SCI

SMS is a veteran-owned network integrator established in 1976.  With an employee retention rate averaging over 5 years, our ability to hire quality people and retain them in a rapidly evolving IT market proves why we are a world-class information technology company. At SMS, we place a high value on quality of service, customer satisfaction, and best-of-breed policies and practices. As a result, SMS is proud to be ISO 9001:2008 Registered and a CMMI Level 3 certified company, ensuring that we continue to meet and exceed the expectations of our customers, partners and employees. 

SMS is an Equal Opportunity Employer.