Information System Security Manager (ISSM)

At Accenture Federal Services, nothing matters more than helping the US federal government make the nation stronger and safer and life better for people. Our 13,000+ people are united in a shared purpose to pursue the limitless potential of technology and ingenuity for clients across defense, national security, public safety, civilian, and military health organizations.   Join Accenture Federal Services to do the work you love in an inclusive, collaborative, and caring community, where you can be empowered to grow, learn and thrive through hands-on experience, certifications, industry training and more.   Join us to drive positive, lasting change that moves missions and the government forward!  

Job Description:

Accenture Federal Services is seeking an Information System Security Manger (ISSM) to serve as the Subject Matter Expert (SME) responsible for the management and technical administration of secure cloud environments. The ISSM will oversee day-to-day information system security operations, resolve complex problems, and develop innovative solutions to meet unique security requirements. The ISSM will lead a team of cybersecurity professionals to ensure adherence to all aspects of a rigorous Risk Management Framework (RMF) compliance program as stipulated by NISPOM/DAAPM, JSIG, ICD 503, STIGs and associated NIST publications. The ISSM will also be responsible for maintaining multiple Authorization to Operate (ATO) approvals for several environments by adhering to the Risk Management Framework (RMF). This position supports cybersecurity efforts throughout the RMF process, to include the development and management of System Security documentation, Plans of Action and Milestones (POA&Ms), assessing and auditing systems security controls, and continuous monitoring of controls.

Responsibilities:

Responsibilities will include the following: 

• Demonstrate leadership and decision-making skills to develop and manage a team to implement the strategy for enterprise security within assigned systems. 
• Develop and maintain information system security implementation policy and guidelines of network security using the Risk Management Framework (RMF) and other relevant industry and governmental standards, such as the Joint Special Access Program Implementation Guide (JSIG). 
• Prepare and review Authorization to Operate (ATO) documentation to include System Security Plans (SSPs), the Plan of Action and Milestones (POA&M), Risk Assessment Reports, Assessment and Authorization (A&A) packages, and security control implementations. 
• Ability to successfully interface with other teams, other security disciplines (industrial security, physical security, special programs security, etc.), program personnel, and government security representatives. 
• Review and create mitigation reports from compliance and vulnerability scanning tools (Nessus, SCAP, ACAS, SCC, etc.). 
•  Coordinate with Security Control Assessor (SCA) and Authorizing Official (AO) on approval of external information systems (e.g. interconnected system with another organization).
• Ensure approved procedures are used for sanitizing and releasing system components and media. 
• Maintain a repository of all security authorizations for program systems. 
• Ensure proper measures are taken when an IS incident or vulnerability is discovered. 
• Ensure CM policies and procedures for authorizing the use of hardware/software are followed. 
• Serve as a voting member of the Change Control Board (CCB).

Basic Qualifications:

• Minimum 10 years related experience in Information Systems, Computer Science, or related field. Additional relevant experience, training, and/or certification/s may be considered in lieu of degree. 
• Experience in SAP and Collateral Information Systems (IS) Security. 
• Experience in Cloud-based Information Systems (IS) Security. 
• Meet DoD 8570/8140 Certification Requirements for IAM Level II 
• Detailed understanding of the Risk Management Framework (RMF), NIST, ICD, DoD and CNSS standards. 
• Hands on experience with DISA Security Technical Implementation Guide (STIG) implementation and management. 
• Experience with eMASS. 
• Understanding of Sensitive Compartmented Information Facility (SCIF) standards. 
• Knowledge of secure coding practices and vulnerability/quality scanning tools (e.g., Fortify, SonarQube). 
• Must be able to work well within a team environment and able to adapt quickly to change. 
• Good writing and verbal presentation skills. Customer focused, excellent communicator.

Bonus Points If You Have: 

• Security hardening scripting/automation experience.
• Familiarity with network technologies (LAN & WAN) and best practices within a classified environment to include crypto and key management. 
• Working knowledge of Microsoft Windows operating systems (workstation & server), Linux, and system virtualization (multiple hypervisors) in a secure network environment. 
• Good writing and verbal presentation skills. Customer focused, excellent communicator.
• Microsoft OS Certification (MCSE Win 7 or other). 
• Linux certification (RHCSA, CompTIA Linux, LCFS/LCFE, etc.). 
• Knowledge of agile development processes and DevOps tools such as Jira, Bitbucket, Confluence. 
• Additional desired certifications include CCNA, CCSP, CSSP, MCSE, and/or SANS GIAC. 
• Experience with auditing and certifying compliance of various systems (Windows, Linux, Network Devices and peripherals). 
• Experience with development and delivery of IA-related briefings and training material.

Clearance:

Active TS/SCI is required to start

 

As required by local law, Accenture Federal Services provides reasonable ranges of compensation for hired roles based on labor costs in the states of California, Colorado, Hawaii, Maryland, New York, Washington, and the District of Columbia. The base pay range for this position in these locations is shown below. Compensation for roles at Accenture Federal Services varies depending on a wide array of factors, including but not limited to office location, role, skill set and level of experience. Accenture Federal Services offers a wide variety of benefits. You can find more information on benefits here. We accept applications on an on-going basis and there is no fixed deadline to apply.

 

The pay range for the states of California, Colorado, Hawaii, Maryland, New York, Washington, and the District of Columbia is:$126,300—$243,100 USD  What We Believe  We have an unwavering commitment to diversity with the aim that every one of our people has a full sense of belonging within our organization. As a business imperative, every person at Accenture Federal Services has the responsibility to create and sustain an inclusive environment.   Inclusion and diversity are fundamental to our culture and core values. Our rich diversity makes us more innovative and more creative, which helps us better serve our clients and our communities. Read more here   Equal Employment Opportunity Statement Accenture Federal Services is an Equal Opportunity Employer. We believe that no one should be discriminated against because of their differences, such as age, disability, ethnicity, gender, gender identity and expression, religion or sexual orientation.    All employment decisions shall be made without regard to age, race, creed, color, religion, sex, national origin, ancestry, disability status, veteran status, sexual orientation, gender identity or expression, genetic information, marital status, citizenship status or any other basis as protected by federal, state, or local law.   Accenture is committed to providing veteran employment opportunities to our service men and women.    For details, view a copy of the Accenture Equal Opportunity and Affirmative Action Policy Statement.   Requesting An Accommodation  Accenture Federal Services is committed to providing equal employment opportunities for persons with disabilities or religious observances, including reasonable accommodation when needed. If you are hired by Accenture Federal Services and require accommodation to perform the essential functions of your role, you will be asked to participate in our reasonable accommodation process. Accommodations made to facilitate the recruiting process are not a guarantee of future or continued accommodations once hired.   If you are being considered for employment opportunities with Accenture Federal Services and need an accommodation for a disability or religious observance during the interview process or for the job you are interviewing for, please speak with your recruiter.   Other Employment Statements  Applicants for employment in the US must have work authorization that does not now or in the future require sponsorship of a visa for employment authorization in the United States.   Candidates who are currently employed by a client of Accenture Federal Services or an affiliated Accenture business may not be eligible for consideration.   Job candidates will not be obligated to disclose sealed or expunged records of conviction or arrest as part of the hiring process.   The Company will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. Additionally, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the Company's legal duty to furnish information.   California requires additional notifications for applicants and employees. If you are a California resident, live in or plan to work from Los Angeles County upon being hired for this position, please click here for additional important information.