Information Systems Security Manager (ISSM)

Job Type:

Information Systems Security Manager (ISSM)

The Information Systems Security Manager (ISSM) functionally manages the process to protect RAND’s classified information.  The ISSM's primary function is implementation of all classified security policy, procedures and government security requirements as required by the United States Government.  The ISSM outlines classified security policies and procedures and assures staff compliance with all applicable government regulations.  The ISSM serves as the subject matter expert for classified systems security questions and problem solving within the classified security team.  The ISSM reports directly to the Manager, Security Operations.

Duties

• Performs the Information Systems Security Manager (ISSM) responsibilities and role for RAND’s classified network, TS/SCI, and SAP/SAR activities; performs oversight administration of classified systems activities.  
  • Supports the FSO as related to classified processing for maintaining secure facility accreditations and joint and co-use agreements with applicable government agencies.
  • Writes, coordinates, and conducts classified systems security education briefings (SAP, SCI and CLAN) and the User Acknowledgment statement as required.   
  • Supports the Corporate Information System Security Manager, in maintaining detailed records of Security & Classified Operations department functions and activities for monthly reports to RAND management regarding classified systems; conducts classified security investigations as required by the Corporate Information Systems Security Manager. 
• Performs computer systems security activities, implementing security controls for RAND systems processing classified information including initial approval, re-approval, decertification and audits. 
• Coordinates with the Defense Intelligence Agency and other elements of the U.S. intelligence community on inspections, reviews, investigations, and other reportable issues; coordinates with the Defense Counterintelligence and Security Service (DCSA) and Department of Defense sponsors on inspections, reviews, investigations, and other reportable issues.   
• Responsible for the classified computing protection program at the collateral, TS/SCI, and SAP/SAR levels, as well as the classified computing hardware/software and voice/data communication audits.  
• Other duties and special projects as assigned.   

Education

High school diploma or GED required.  BS/BA degree preferred. 

Experience

At least 6 years relevant experience required.  At least 9 years relevant experience preferred.    

Basic Qualifications

• In-depth working knowledge of Industrial Security and the regulations associated with classified programs, NISPOM, DAAPM, ICD’s, JSIG and NIST 800 Series documents and applicable government security regulation experience in classified security government programs. Must be familiar with Systems accreditation processes with multiple government agencies.
• Established relationships and a positive reputation with industrial and government security counterparts.
• An understanding of principles and methods used in developing, establishing, and maintaining a local, state and federal government compliant program in classified security.
• Thorough knowledge of information security systems and the classified network.
• Ability to obtain and maintain a DoD 8570.01-M (Information Assurance Workforce) IAM level 2 certification (e.g. GSLC, CISM, or CISSP) within the first 6 months of employment. 
• Excellent written and verbal communication skills.
• Proficient in MS Office Applications.
• Must be able to pass a background check.

Location

Pittsburgh

Security Clearance

Must meet eligibility requirements for access to U.S.  government classified information

Positions Open

One

Salary Range: $117,700 - $179,700

RAND considers a variety of factors when formulating an offer, including but not limited to, the specific role and associated responsibilities; a candidate’s work experience, education/training, skills, expertise; and internal equity. The salary range includes base pay plus RAND’s sabbatic pay (which provides additional compensation above base pay when vacation is taken). In addition, RAND provides strong benefits including health insurance coverage, life and disability insurance, savings plan, paid time-off and more.

Equal Opportunity Employer: race/color/religion/sex/sexual orientation/gender identity/national origin/disability/vet