A logo

Information System Security Manager (Issm) I

Amatriot Group, LLCBedford, MA

$141,500 - $143,500 / year

Automate your job search with Sonara.

Submit 10x as many applications with less effort than one manual application.1

Reclaim your time by letting our AI handle the grunt work of job searching.

We continuously scan millions of openings to find your top matches.

pay-wall

Overview

Remote
On-site
Compensation
$141,500-$143,500/year

Job Description

Location: Hanscom AFB, MASecurity Clearance: Active TS/SCI (Must be able to obtain a CI Poly)Job Type: Full-Time

Target Salary Range*:$141,500 - $143,500

*This represents the potential salary range for this position depending on education level, years of experience and/or certifications in addition to other position specific requirements which may impact salary

Position Overview

The Information System Security Manager I serves as a principal advisor on all matters, technical and otherwise, involving the security of information systems under their purview. This position primarily supports Special Access Programs for Department of Defense agencies, including HQ Air Force, the Office of the Secretary of Defense, and Military Compartment efforts, and provides day-to-day support for Collateral, Sensitive Compartmented Information, and Special Access Program activities.

Key Responsibilities

Information Systems Security Program Management

  • Perform oversight of the development, implementation, and evaluation of information system security program policy, with special emphasis on integrating existing SAP network infrastructures.
  • Develop and maintain a formal Information Systems Security Program.
  • Develop and oversee operational information systems security implementation policy and network security guidelines based on the Risk Management Framework, with emphasis on the Joint Special Access Program Implementation Guide authorization process.
  • Institute and implement a Configuration Control Board charter.
  • Ensure data ownership and responsibilities are established for each authorization boundary, including accountability, access rights, and special handling requirements.
  • Ensure system security requirements are addressed during all phases of the system life cycle.

Risk Management Framework and Authorization Support

  • Advise the customer on Risk Management Framework assessment and authorization issues.
  • Perform risk assessments and make recommendations to DoD agency customers.
  • Advise government program managers on security testing methodologies and processes.
  • Evaluate authorization documentation and provide written recommendations for authorization to government program managers.
  • Develop, review, endorse, and recommend action by the Authorizing Official or Designated Authorizing Official for system assessment documentation.
  • Maintain an applicable repository for all system authorization documentation and modifications.
  • Ensure authorization is accomplished and that a valid authorization determination has been given for all authorization boundaries under the position’s purview.
  • Review AIS assessment plans.
  • Ensure all authorization documentation is current and accessible to properly authorized individuals.

Security Assessment, Monitoring, and Configuration Management

  • Develop and execute security assessment plans that include verification that the features and assurances required for each protection level are functioning.
  • Evaluate threats and vulnerabilities to determine whether additional safeguards are needed.
  • Assess changes in the system, its environment, and operational needs that could affect authorization.
  • Conduct periodic assessments of the security posture of authorization boundaries.
  • Ensure configuration management for security-relevant changes to software, hardware, and firmware, and ensure changes are properly documented.
  • Ensure periodic testing is conducted to evaluate the security posture of information systems by employing various intrusion, attack detection, and monitoring tools as a shared responsibility with ISSOs.
  • Ensure system recovery and reconstitution processes are developed and monitored to ensure the authorization boundary can be recovered based on its availability level determination.

Incident Response, Media Protection, and External Systems

  • Develop policies and procedures for responding to security incidents, including investigating and reporting security violations and incidents.
  • Ensure proper protection or corrective measures have been taken when an incident or vulnerability has been discovered within a system.
  • Ensure approved procedures are in place for clearing, sanitizing, and destroying various types of hardware and media.
  • Coordinate with the Program Security Officer or cognizant security official on approval of external information systems, including guest systems and interconnected systems with another organization.
  • Develop Assured File Transfers in accordance with the Joint Special Access Program Implementation Guide.

Training, Self-Inspections, and ISSO Support

  • Ensure all IAOs, network administrators, and other cybersecurity personnel receive the necessary technical and security training to carry out their duties.
  • Ensure development and implementation of an information security education, training, and awareness program, including attending, monitoring, and presenting local cybersecurity training.
  • Participate in self-inspections.
  • Conduct the duties of the Information System Security Officer if one is not present and/or available.

Qualifications

Education

  • Bachelor’s degree and 5 years of relevant experience; or
  • Associate degree and 7 years of relevant experience; or
  • High school diploma or GED and 9 years of relevant experience.

Experience

  • 5-7 years related experience
  • Prior performance in roles such as ISSO or ISSM
  • SAP experience

Certifications:

  • IAT Level 2 or IAM Level 1

Automate your job search with Sonara.

Submit 10x as many applications with less effort than one manual application.

pay-wall

FAQs About Information System Security Manager (Issm) I Jobs at Amatriot Group, LLC

What is the work location for this position at Amatriot Group, LLC?
This job at Amatriot Group, LLC is located in Bedford, MA, according to the details provided by the employer. Some roles may also include multiple work locations depending on the requirement.
What pay range can candidates expect for this role at Amatriot Group, LLC?
Candidates can expect a pay range of $141,500 and $143,500 per year.
What employment applies to this position at Amatriot Group, LLC?
The employer has not provided this information. This may be discussed during the hiring process.
What is the process to apply for this position at Amatriot Group, LLC?
You can apply for this role at Amatriot Group, LLC either through Sonara's automated application system, which helps you submit applications 10X faster with minimal effort, or by applying manually using the direct link on the job page.