Information System Security Manager

Leonardo DRS   •  

Melbourne, FL

5 - 7 years

Posted 313 days ago

This job is no longer available.

Position Summary

As an Information System Security Manager (ISSM), you will be challenged to stay current with the latest technological developments in information security. You will be exposed to advanced technologies, and will play a major role in identifying potential threats and intrusions on Information Technology (IT) systems by our adversaries. Together, we'll address evolving threats to national security, thus keeping our nation and our warfighter safe.


Successful candidates for this role will coordinate with the Corporate Risk Management Framework Support Center, Information System Security Officers (ISSOs), & other ISSMs across the company, to obtain and maintain certifications and accreditations under the new Defense Security Service (DSS) and Intelligence Community (IC) Risk Management Framework. If you are interested in information system security, competitive pay, and the opportunity to obtain industry professional certifications on the job, pleaseapply now!


Duties and Responsibilities

  • Develops, implements, and administers security procedures for classified computer systems based on the Department of Defense (DoD), Department of Energy (DoE) and other U.S. Government agency security requirements 
  • Applies current computer science technologies to the development, evaluation, and integration of computer systems and networks to maintain system security for classified information systems. Primary advisor to the Site Facility Security Officer (FSO) on all classified information systems security matters and liaison to the local Defense Security Service (DSS) Information Systems Security Professional (ISSP) on all matters pertaining to classified information systems
  • Implement local policies, processes, procedures and compliance with all National IndustrialSecurity Program (NISP) and Office of Designated Approval Authority (ODAA) requirements 
  • Serves as primary Subject Matter Expert (SME) to site FSO, site leadership and outside agencies on all classified information systems security matters; partners with appropriate site functional representatives (e.g., trade, Human Resources, Information Technology, etc) as appropriate
  • Develops and maintains all DoD requirements, including the Defense Security Service ODAA standards to ensure compliance with the National IndustrialSecurity Program Operating Manual
  • Reviews and approves requests for access to cleared computer systems
  • Assists in the development and implementation of policies and operating procedures supporting government agency requirements
  • Conducts periodic self-inspections on local processes and practices to ensure NISP and ODAA compliance; accurately reports security posture to site, group and corporate leadership
  • Develops, conducts, coordinates and delivers site information systems securityeducation program requirements to all users of the classified information system(s) supporting classified programs
  • Identifies and documents unique local threats and vulnerabilities to classified information systems security
  • Ensures that periodic self-assessments of the facility’s classified information systems are conducted as part of the overall facility self-inspection program and that all corrective actions are taken
  • Develops and implements general and remote maintenance procedures based on requirements provided by the cognizant security authority
  • As requested implements all Corporate Security direction, policy and procedures throughout the facility in support of NISP, ODAA and DRS security requirements
  • Conducts and coordinates investigations into security violations related to cleared information systems; ensures corrective actions are implemented
  • May oversee and provide direction to staff or assigned personnel, such as a site Information System Security Officer (ISSO)
  • Supports, communicates, reinforces and defends the mission, values and culture of the organization


Basic Qualifications

  • Bachelor’s degree in Information System Security, Cybersecurity, or a related field
  • 5+ years of experience in IT Security or IT Risk/Compliance, managing a server and Active Directory policies (GPOs)
  • Experience deploying, hardening, patching, & troubleshootingWindows, Red Hat Linux, CentOS, & Sun Solaris VM
  • Excellent communication and interpersonal skills
  • A team-based mentality
  • Exceptional attention to detail
  • Confidence in developing presentations and effectively leading meetings and conference calls
  • Be a self-starter, able to work under pressure and with limited supervision, and work well with others in a large and diverse environment
  • Ability to successfully prioritize and manage to completion multiple complex tasks and deliverables, and demonstrate the highest degree of integrity and accountability in all actions
  • Ability to obtain and maintain a security clearance


Desired Qualifications:

  • A strong knowledge and understanding of NIST Special Publication 800-53, ISO27001, DoD 8510.01, NISPOM, & ICDs
  • Professional Security Certifications such as Security+, Network+, CISA, CISSP, CISM, or CEH, are preferred
  • Experience with Linux and Windows Defense Security Service (DSS) accredited information systems
  • Experience with the SCAP Compliance Checker and the DISA STIG Viewer