Information Systems Security Manager

Location:  Philadelphia, PA, client site

Clearance Requirement: Secret

Responsibilities:

• · Support IT security goals and objectives and reduce overall organizational risk.
• · Assist with the collection of data needed to meet system cybersecurity reporting.
• · Communicate the value of IT security throughout all levels of the organization stakeholders.
• · Assist with security improvement actions as they are evaluated, validated, and implemented.
• · Assist with cybersecurity inspections, tests, and reviews for the network environment.
• · Assist with identifying alternative information security strategies to address organizational security objective.
• · Assist with interpretation of patterns of noncompliance to determine their impact on levels of risk and/or overall effectiveness of the enterprise's cybersecurity program.
• · Participate in an information security risk assessment during the Security A&A process.
• · Assist with the tracking of audit findings and recommendations to ensure that appropriate mitigation actions are taken.
• · Assist with the identifying security requirements specific to an IT system in all phases of the system life cycle.
• · Assist with the successful implementation and functionality of security requirements and appropriate IT policies and procedures that are consistent with the organization's mission and goals.
• · Assist programs to resolve findings identified during internal and external review processes.
• · Assist with Quality Assurance (QA) reviews for RMF package submissions in accordance with NSWCPD and NAVSEA 03 SOP.
• · Develop findings reports and recommended corrective actions for identified deficiencies.
• · Coordinate with programs to resolve findings identified during internal and external review processes.
• · Report system compliance in DON Application and Database Management System (DADMS), Department of Defense Information Technology Portfolio Repository – Department of the Navy (DITPR-DON), and VRAM.
• · Assist with facilitating communication between all RMF stakeholders throughout the RMF process.
• · Assist with monitoring systems for upcoming authorization conditions/stipulations, upcoming or past due POA&M items, and SLCM activities.

Experience:

• Eight (8) years of experience coordinating with various levels of an organization to oversee and manage information security program implementation within the organization or other area of responsibility. Must have managed cyber strategy, personnel, infrastructure, policy enforcement, emergency planning, security awareness, and/or other resources.
• · Knowledge of DoD policies, processes, and procedures related to common duties for Information System Security Managers

Education/Certification:

• DoD 8570 IAM II (CAP, CASP+ CE, CISM, CISSP, GSLC, CCISO, HCISPP)
• Master's degree in computer science, information technology, or an equivalent science, technology, engineering & mathematics (STEM) degree from an accredited college or university.