Information Systems Security Manager

Chickasaw Nation Industries Montgomery , AL 36101

Posted 2 weeks ago

It's fun to work in a company where people truly BELIEVE in what they're doing!

We're committed to bringing passion and customer focus to the business.

SUMMARY

The Information Systems Security Manager provides support to the Air Force Civil Engineering (AFCE) Program Management Office (PMO). This position develops security documentation, process requirements, and system-level risk assessments of all existing documentation.

ESSENTIAL DUTIES AND RESPONSIBILITIES

Essential duties and responsibilities include the following. Other duties may be assigned.

Responsible for the integration of CNI Core Competencies into daily functions, including: commitment to integrity, knowledge / quality of work, supporting financial goals of the company, initiative / motivation, cooperation / relationships, problem analysis / discretion, accomplishing goals through organization, positive oral / written communication skills, leadership abilities, commitment to Affirmative Action, reliability / dependability, flexibility and ownership / accountability of actions taken.

Develops Certification and Accreditation Program (C&A) documentation for assigned systems.

Utilizes Air Force Certification and Accreditation Program (AFCAP) or Risk Management Framework (RMF) process requirements.

Works in coordination and guidance of the Designated Accreditation Authority (DAA).

Coordinates activities with the lead IAM, Program Manager and lead engineer.

Completes system-level risk assessments of all existing documentation to identify gaps in Information Assurance objectives and security compliance and updates to ensure compliance is maintained as necessary.

Identifies mandated DISA Security Technical Implementation Guides (STIGs) and NSA System Network and Attack Center (SNAC) Configuration Guides.

Conducts security verification and validation testing. Reports all results and makes recommendations.

Supports code scan using automated testing tools (IE. Fortify, SonarQube, and AppScan).

Identifies and documents the gap analysis between the security controls and the STIGs/SNAC for all system-level components.

Provides re-certification and annual review requirements support for Initial Security Certifications. Provides quarterly updates to the Plan of Action and Milestones and assists with annual testing and evaluation of the Contingency Plan.

Provides support for updating and maintaining current system information or for equivalent replacement

Responsible for aiding in own self-development by being available and receptive to any training made available by the company.

Plans daily activities within the guidelines of company policy, job description and supervisor's instruction in such a way as to maximize personal output.

Responsible for keeping own immediate work area in a neat and orderly condition to ensure safety of self and coworkers. Will report any unsafe conditions and/or practices to the appropriate supervisor and human resources. Will immediately correct any unsafe conditions to the best of own ability.

EDUCATION/EXPERIENCE REQUIRED

Bachelor's degree and five (5) years' of experience or equivalent combination of education / experience. Experience with RMF, scanning remediation Fortify, Checkmarx, AppScan and ESPS.

CERTIFICATES / LICENSES / REGISTRATION

Ability to obtain a security clearance if required

Must hold at least one of the DoD Approved Certifications: CAP, GSLC, or Security+ CE CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CISM or SSCP

JOB SPECIFIC KNOWLEDGE / SKILLS / ABILITIES

Proficiency in document development with ability to implement a high degree of professional judgment and a clear understanding of the information to be communicated

Excellent creative development skills with ability to quickly comprehend technical information and translate ideas / concepts into a finished document

Excellent research and analytical skills

Excellent computer skills with proficiency using Microsoft Office Suite (i.e., Outlook, Word, Excel, PowerPoint, etc.)

Ability to respond to requests in a professional, helpful and timely manner

Ability to identify problems and to use sound judgment

Outstanding communication, organization, and problem solving skills

Proven ability to manage and prioritize multiple, diverse projects simultaneously

Ability to be flexible, independent and self-motivated

LANGUAGE SKILLS

Ability to read, analyze, and interpret general business periodicals, professional journals, technical procedures, or governmental regulations. Ability to write reports, business correspondence, and procedure manuals. Ability to effectively present information and respond to questions from groups of managers, clients, customers, and the general public.

MATHEMATICAL SKILLS

Ability to add, subtract, multiply, and divide in all units of measure, using whole numbers, common fractions, and decimals. Ability to compute rate, ratio, and percent and to draw and interpret bar graphs.

REASONING ABILITY

Ability to define problems, collect data, establish facts, and draw valid conclusions. Ability to interpret an extensive variety of technical instructions in mathematical or diagram form and deal with several abstract and concrete variables.

PHYSICAL DEMANDS

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions of this job.

Work is primarily performed in an office environment. Regularly required to sit. Regularly required use hands to finger, handle, or feel, reach with hands and arms to handle objects and operate tools, computer, and/or controls.

Required to speak and hear. Occasionally required to stand, walk and stoop, kneel, crouch, or crawl. Must frequently lift and/or move up to 10 pounds and occasionally lift and/or move up to 25 pounds.

Specific vision abilities required by this job include close vision, distance vision, depth perception, and ability to adjust focus. Exposed to general office noise with computers printers and light traffic.

  • MON

If you like wild growth and working with happy, enthusiastic over-achievers, you'll enjoy your career with us!



icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Information Technology Specialist

Department Of Defense

Posted 1 week ago

VIEW JOBS 1/17/2021 12:00:00 AM 2021-04-17T00:00 * Duties Help Duties Summary This announcement may be used to fill one or more vacancies. This public notice may be used to fill target grades (e.g. GS-05 Target GS-11). However, there may be positions with promotion potential above the GS-11 or equivalent. The salary range indicated in this announcement will be adjusted to include locality payment for selected duty location. General schedule locality pay table may be found under, https://www.opm.gov/policy-data-oversight/pay-leave/salaries-wages/ Learn more about this agency Responsibilities * Duties and responsibilities vary and may increase according to grade level * Planning, development, implementation, and administration of systems for the acquisition, storage, and retrieval of data. * Planning and coordinating the installation, testing, operation, troubleshooting, and maintenance of hardware and software systems. * Planning and delivery of customer support services, including installation, configuration, troubleshooting, customer assistance, and/or training, in response to customer requirements. * Applying analytical processes to the planning, design, and implementation of new and improved information systems to meet the business requirements of customer organizations. Travel Required Not required Supervisory status No Promotion Potential 11 * Job family (Series) 2210 Information Technology Management * Requirements Help Requirements Conditions of Employment * Please read this Public Notice in its entirety prior to submitting your application for consideration. * U.S. Citizenship is required * Males must be registered for Selective Service, see www.sss.gov * Total salary varies depending on location of position * Travel and relocation expenses may or may not be paid * Recruitment incentives may be authorized * Position may be subject to random drug testing * Employee may be required to work other than normal duty hours, to include evenings, weekends and/or holidays * Shift work and emergency overtime may be required * Employee must maintain current certifications * A security clearance may be required * Disclosure of Political Appointments is required Qualifications In order to qualify, you must meet the specialized experience requirements described in the Office of Personnel Management (OPM) Qualification Standards for General Schedule Positions, Information Technology (IT) Management Series, 2210 (Alternative A) positions. BASIC REQUIREMENTS: Undergraduate or Graduate Education: Degree in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management or degree that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems or networks. GS-5: Successful completion of a bachelor's degree in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management or degree that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems or networks. -OR- At least one year of experience in information technology related experience in the federal service or private or public sector demonstrating the following four competencies: Attention to Detail, Customer Service, Oral Communication and Problem Solving. Specific definitions of each competency for each grade level is listed below. GS-7: One full year of graduate level education in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management or degree that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems or networks or eligibility in superior academic achievement. GS-09: Master's degree or equivalent graduate degree or two full years of progressively higher level graduate education leading to a master's degree or equivalent graduate degree in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management or degree that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems or networks. GS-11: Ph.D. or equivalent doctoral degree or three full years of progressively higher level graduate education leading to a Ph.D. or equivalent doctoral degree in computer science, engineering, information science, information systems management, mathematics, operations research, statistics, or technology management or degree that provided a minimum of 24 semester hours in one or more of the fields identified above and required the development or adaptation of applications, systems or networks. OR For each grade level, your resume must reflect information technology related experience in the federal service or private or public sector demonstrating the following four competencies: a) attention to Detail - Is thorough when performing work and conscientious about attending to detail; b) customer Service - Works with clients and customers (that is, any individuals who use or receive the services or products that your work unit produces, including the general public, individuals who work in the agency, other agencies, or organizations outside the Government) to assess their needs, provide information or assistance, resolve their problems, or satisfy their expectations; knows about available products and services; is committed to providing quality products and services; c) oral Communication - expresses information (for example, ideas or facts) to individuals or groups effectively, taking into account the audience and nature of the information (for example, technical, sensitive, controversial); makes clear and convincing oral presentations; listens to others, attends to nonverbal cues, and responds appropriately AND d) problem Solving - Identifies problems; determines accuracy and relevance of information; uses sound judgment to generate and evaluate alternatives, and to make recommendations. In additional to the basic requirements above, applicants for the GS-7 and above must meet the one year of specialized experience listed below: GS-7: One year of specialized experience equivalent to the GS-05 that demonstrated knowledge of computer requirements and techniques in carrying out project assignments consisting of several related tasks, such as development of minor modifications to parts of a system on the basis of detailed specifications provided. The assignments must have shown completion of the following, or the equivalent: Analysis of the interrelationships of pertinent components of the system; planning the sequence of actions necessary to accomplish the assignment; and personal responsibility for at least a segment of the overall project. GS-9: One year of specialized experience equivalent to the GS-07 that demonstrated knowledge of computer requirements and techniques in carrying out project assignments consisting of several related tasks, such as development of minor modifications to parts of a system on the basis of detailed specifications provided. The assignments must have shown completion of the following, or the equivalent: Analysis of the interrelationships of pertinent components of the system; planning the sequence of actions necessary to accomplish the assignment; and personal responsibility for at least a segment of the overall project. GS-11: One year of specialized experience equivalent to the GS-09 that demonstrated accomplishment of computer project assignments that required a range of knowledge of computer requirements and techniques. For example, experience in developing modifications to parts of a system that required significant revisions in the logic or techniques used in the original development. Accomplishments, in addition to those noted for the GS-9, normally involve the following, or the equivalent: Knowledge of the customary approaches, techniques, and requirements appropriate to an assigned computer applications area or computer specialty area in an organization; planning the sequence of actions necessary to accomplish the assignment where this entailed coordination with others outside the organizational unit and development of project controls; and adaptation of guidelines or precedents to the needs of the assignment. Click on the following link to view occupational requirements for this position: https://www.opm.gov/policy-data-oversight/classification-qualifications/general-schedule-qualification-standards/2200/information-technology-it-management-series-2210-alternative-a/ PART-TIME OR UNPAID EXPERIENCE: Credit will be given for appropriate unpaid and or part-time work. You must clearly identify the duties and responsibilities in each position held and the total number of hours per week. VOLUNTEER WORK EXPERIENCE: Refers to paid and unpaid experience, including volunteer work done through National Service Programs (i.e., Peace Corps, AmeriCorps) and other organizations (e.g., professional; philanthropic; religious; spiritual; community; student and social). Volunteer work helps build critical competencies, knowledge and skills that can provide valuable training and experience that translates directly to paid employment. You will receive credit for all qualifying experience, including volunteer experience. Education IF USING EDUCATION TO QUALIFY: If position has a positive degree requirement or education forms the basis for qualifications, you MUST submit transcriptswith the application. Official transcripts are not required at the time of application; however, if position has a positive degree requirement, qualifying based on education alone or in combination with experience; transcripts must be verified prior to appointment. An accrediting institution recognized by the U.S. Department of Education must accredit education. Click here to check accreditation. FOREIGN EDUCATION: Education completed in foreign colleges or universities may be used to meet the requirements. You must show proof the education credentials have been deemed to be at least equivalent to that gained in conventional U.S. education program. It is your responsibility to provide such evidence when applying. Department Of Defense Montgomery AL

Information Systems Security Manager

Chickasaw Nation Industries