Information Systems Security Manager - Air Force Academy

Mahalo for your interest in this role! Please see the full position description below and click Start Your Application when ready. For more information about DAWSON, please visit dawsonohana.com

DAWSON is seeking to fill an Information System Security Manager (ISSM) position for the Defense Health Agency (DHA) on site at a Military Treatment Facility (MTF). As the ISSM, the candidate will support security activities in compliance with Risk Management Framework (RMF) policies and procedures enabling integrated healthcare delivery for those who serve in the defense of our country and their families.

• Location: This position is on-site at US Air Force Academy.
• Salary Range: $128,000 - $150,000
• Secret clearance is required

Key Responsibilities:

• Lead meetings to communicate information systems security implementation policies and guidelines.
• Partner with appropriate stakeholders to evaluate cybersecurity risks and vulnerabilities.
• Initiate and manage MTF Infrastructure RMF Packages, to include creating Package Implementation Plans and Package Security Plans for MTF Infrastructure and IT Shared Services.
• Comply with all RMF requirements to successfully maintain Approval to Operate (ATO) status
• Initiate Plan of Action and Measures (POAMs), as needed.
• Perform activities to support receiving and maintaining ATC/ATO for new or existing systems and applications and maintain inventory of ATC/ATO status of systems and applications.
• Perform Continuous Vulnerability Monitoring for all regional MTFs.
• Maintain inventory of MTF Infrastructures, IT Shared Services, and Medical Servers and Applications, initiate regular and as-needed scans of same. Report vulnerabilities to appropriate POCs and monitor their mitigation.
• Develop and implement Local Area Network (LAN)/ Wide Area Network (WAN)/PC/Server-related security policies.
• Comply with MTF cybersecurity program implementation plan, and ensure compliance with DHA management policies.
• Ensure compliance with data security policies and relevant legal and regulatory requirements in accordance with DHA directives and applicable RMF requirements.
• Maintain current knowledge of authenticator management for unclassified systems.
• Ensure compliance with protection requirements, control procedures, incident management reporting, remote access requirements, and system management for all systems under scope.
• Engage in cross-team collaboration, as needed.

Requirements:

• A Bachelor’s Degree in a related field identified. Work experience may substitute for education. A minimum of five (5) years working as an Information Systems Security Officer/Manager.
• Security + certification
• Current background Investigation Tier 5 (SSBI), IAT Level 2 ADP/IT II
• Experience with DoD Risk Management Framework (RMF)
• Ability to multi-task, compromise, and solve problems
• Excellent time management and ability to meet deadlines
• Strong skills in MS Word, Outlook, Excel, Project, and PowerPoint
• Superior verbal and written communication skills
• Occasional travel required

DAWSON is an Equal Opportunity/Affirmative Action/VEVRAA federal contractor. All qualified applicants will receive consideration for employment without regard to race, color, religion, gender, national origin, disability status, protected veteran status, or any other characteristic protected by law.

DAWSON offers a best-in-class benefits program including medical, dental, and vision insurance; a 401(k) program with employer match; paid vacation and sick leave; employer-paid basic life and AD&D insurance; an Employee Assistance Program; and a flexible work environment. Additionally, employees can choose from several voluntary benefits including critical illness coverage; accident insurance; identity theft coverage; pet insurance, and more.

DAWSON gives preference to internal candidates. If no internal candidate meets our qualifications, external candidates will be given consideration.