Information System Security Manager (Issm)

General Dynamics Groton , CT 06349

Posted 3 weeks ago

Responsibilities for this Position

Information System Security Manager (ISSM)

US-CT-Groton

Job ID: 2022-8854

Type: Full-Time


of Openings:


1

Category: Security and Transportation

EB Groton Shipyard

Overview

The Cyber Security Representative will serve in the role of Information System Security Manager (ISSM), and report directly to the Chief of Cybersecurity. This position will be responsible for the implementation of Risk Management Framework (RMF) activities required to support Information System (IS) assessment and authorization activities as part of the Electric Boat (EB) Cybersecurity Program.

The successful candidate must possess sufficient understanding, knowledge, and experience to implement, enforce, and ensure compliance with RMF policies and procedures developed to meet the requirements of the National Industrial Security Program Operating Manual (NISPOM), Defense Counterintelligence and Security Agency (DCSA) Assessment and Authorization Process Manual (DAAPM), Risk Management Framework (RMF) process, and National Institute of Standards and Technology [NIST] Special Publications [SP] 800-53 (NIST SP 800-53) on EB ISs. This position will work closely with EB Information System Owners, Information System Security Officers (ISSO), Cybersecurity Program Assurance Representatives, other ISSMs, and other program stakeholders.

This position requires a balance of technical knowledge and experience, with strong analytical, documentation, and reporting skills. Responsibilities include:

  • Supporting the development and maintenance of organization-wide Cybersecurity policies, procedures, templates, and associated education, awareness, and training products; organization-wide Risk Management Strategy, to include the Risk Assessment Report; and the organization-wide Continuous Monitoring (ConMon) Strategy

  • Developing and/or assessing system specific policies, procedures, templates, training, and other documentation to ensure alignment with the requirements of organization-wide policies and procedures

  • Coordinating, conducting, and documenting system specific ConMon activities; identifying, managing, and tracking system specific risks, to include vulnerabilities and other areas of non-compliance; and providing guidance on risk mitigation and remediation considerations and strategies

  • Processing POA&M Request Forms, Configuration Management Request Forms (CMRF), and Software Risk Assessments

  • Verifying Operating System (OS) and network device configurations, and ensure compliance with configuration standards and other technical requirements

  • Overseeing and supporting RMF activities performed by ISSOs

  • Leading assessment and authorization efforts for systems; maintaining eMASS packages to include POA&Ms

  • Interfacing with various internal and external EB stakeholders

  • Providing guidance and support on security requirements and implementation

  • Supporting internal and external inspections and assessments

  • Other responsibilities as necessary to support RMF activities

Responsibilities

  • Strong analytical, problem solving, organizational, and time management skills

  • Ability to work independently and as part of a multi-functional team in a fast paced and challenging environment

  • Ability to communicate effectively with all levels of the organization, as well as external stakeholders

Qualifications

Required Qualifications:

  • U.S. Citizenship

  • Ability to obtain and maintain a DoD SECRET clearance

  • Bachelors degree in Cybersecurity, Information Technology (IT), or Equivalent OR a minimum of 4 years of experience in a Cybersecurity, ISSM, ISSO, IT, System/Network Engineer/Architect/Administrator, or equivalent RMF role

  • Technical understanding of Operating Systems, networks, and configuration standards

  • Working knowledge of the RMF process, and NIST SP 800-53 Controls with experience interpreting requirements

Preferred Qualifications:

  • Working knowledge of the NISPOM and DAAPM.

  • Experience with Enterprise Mission Assurance Support Service (eMASS)

  • Two or more years of experience as an ISSM, ISSO, System/Network Engineer/Architect/Administrator, or in an Equivalent RMF role

  • Professional Cybersecurity certification (e.g. Security+, Network+, CISSP)

icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Information System Security Manager (Issm)

Electric Boat

Posted 3 weeks ago

VIEW JOBS 11/2/2022 12:00:00 AM 2023-01-31T00:00 <p>Overview</p><p>The Cyber Security Representative will serve in the role of Information System Security Manager (ISSM), and report directly to the Chief of Cybersecurity. This position will be responsible for the implementation of Risk Management Framework (RMF) activities required to support Information System (IS) assessment and authorization activities as part of the Electric Boat (EB) Cybersecurity Program.</p><p>The successful candidate must possess sufficient understanding, knowledge, and experience to implement, enforce, and ensure compliance with RMF policies and procedures developed to meet the requirements of the National Industrial Security Program Operating Manual (NISPOM), Defense Counterintelligence and Security Agency (DCSA) Assessment and Authorization Process Manual (DAAPM), Risk Management Framework (RMF) process, and National Institute of Standards and Technology [NIST] Special Publications [SP] 800-53 (NIST SP 800-53) on EB ISs. This position will work closely with EB Information System Owners, Information System Security Officers (ISSO), Cybersecurity Program Assurance Representatives, other ISSMs, and other program stakeholders.</p><p>This position requires a balance of technical knowledge and experience, with strong analytical, documentation, and reporting skills. Responsibilities include:</p><ul><li><p>Supporting the development and maintenance of organization-wide Cybersecurity policies, procedures, templates, and associated education, awareness, and training products; organization-wide Risk Management Strategy, to include the Risk Assessment Report; and the organization-wide Continuous Monitoring (ConMon) Strategy</p></li><li><p>Developing and/or assessing system specific policies, procedures, templates, training, and other documentation to ensure alignment with the requirements of organization-wide policies and procedures</p></li><li><p>Coordinating, conducting, and documenting system specific ConMon activities; identifying, managing, and tracking system specific risks, to include vulnerabilities and other areas of non-compliance; and providing guidance on risk mitigation and remediation considerations and strategies</p></li><li><p>Processing POA&amp;M Request Forms, Configuration Management Request Forms (CMRF), and Software Risk Assessments</p></li><li><p>Verifying Operating System (OS) and network device configurations, and ensure compliance with configuration standards and other technical requirements</p></li><li><p>Overseeing and supporting RMF activities performed by ISSOs</p></li><li><p>Leading assessment and authorization efforts for systems; maintaining eMASS packages to include POA&amp;Ms</p></li><li><p>Interfacing with various internal and external EB stakeholders</p></li><li><p>Providing guidance and support on security requirements and implementation</p></li><li><p>Supporting internal and external inspections and assessments</p></li><li><p>Other responsibilities as necessary to support RMF activities</p></li></ul><p>Qualifications</p><p>Required Qualifications:</p><ul><li><p>U.S. Citizenship</p></li><li><p>Ability to obtain and maintain a DoD SECRET clearance</p></li><li><p>Bachelor's degree in Cybersecurity, Information Technology (IT), or Equivalent OR a minimum of 4 years of experience in a Cybersecurity, ISSM, ISSO, IT, System/Network Engineer/Architect/Administrator, or equivalent RMF role</p></li><li><p>Technical understanding of Operating Systems, networks, and configuration standards</p></li><li><p>Working knowledge of the RMF process, and NIST SP 800-53 Controls with experience interpreting requirements</p></li></ul><p>Preferred Qualifications:</p><ul><li><p>Working knowledge of the NISPOM and DAAPM.</p></li><li><p>Experience with Enterprise Mission Assurance Support Service (eMASS)</p></li><li><p>Two or more years of experience as an ISSM, ISSO, System/Network Engineer/Architect/Administrator, or in an Equivalent RMF role</p></li><li><p>Professional Cybersecurity certification (e.g. Security+, Network+, CISSP)</p></li></ul><p>Skills</p><ul><li><p>Strong analytical, problem solving, organizational, and time management skills</p></li><li><p>Ability to work independently and as part of a multi-functional team in a fast paced and challenging environment</p></li><li><p>Ability to communicate effectively with all levels of the organization, as well as external stakeholders</p></li></ul> Electric Boat Groton CT

Information System Security Manager (Issm)

General Dynamics