Information Systems Security Manager - SE-4 - TGBC

Company: Oasis Systems
Location: Shalimar
Posted on: March 16, 2023

Job Description:

Overview:
Our advanced data link test team is searching for an Information Systems Security Manager professionals that can help us implement multiple programs and perform cybersecurity processes at Eglin AFB. If you enjoy working in a fast-paced environment, learning new technology areas, this is the place for you. We provide several opportunities to learn ranging from on-the-job training with other team members to formal courses for unique technology areas.We realize that no one will have all these qualifications. We are looking for people that have a strong information security management foundation and have the drive and motivation to learn all other required areas. Position responsibilities can span from developing formal Information System (IS) security program and policies to developing facility modification plans to support system operations.This position provides support to the 46 Test Squadron Advanced Programs lab manager, implementing multiple programs, performing cybersecurity duties at Eglin AFB. LOCATION: Eglin AFB, FLJOB STATUS:ActiveTRAVEL:25% CONUS / OCONUS TDYsREQUIRED QUALIFICATIONS (Education, Certifications, Experience, Skills) SECURITY CLEARANCE:Active Top Secret security clearance adjudicated within five years - US Citizenship.EDUCATION:Master's Degree in a technical field and a minimum of 10 years of relevant technical experience is required.CERTIFICATIONS: Information Assurance Management Level II (IAM II). Requires a minimum approved baseline certification of CAP, CASP+CE, CISM, CISSP (or Associate), GSLC, OR CCISO.EXPERIENCE LEVEL: SE-4OTHER QUALIFICATIONS/SKILLSREQUIRED SKILLS:US Citizenship is requiredActive Top Secret security clearance adjudicated within five years Demonstrated the ability to develop one-of-a kind RDT&E Information System (IS) from initial concept to full operations in accordance with the Joint SAP Implementation Guide (JSIG)Skilled implementation of National Institute of Standards and Technology (NIST) security control guidance to build specialized RDT&E Security Control Traceability Matrix (SCTM) and assessed the vulnerability of various operating systems within the physical operating environmentDetailed involvement in developing and executing Plan of Actions and Milestone (POA&Ms) for each ISHighly experienced in interacting with Government Special Access Security (SAP) Officer (GSSO) for Program Security Officer (PSO) or through the Special Security Representative (SSR) for Special Security Officer (SSO) to attain External Information Systems (EIS) (e.g., guest systems, interconnected system with another organization) approvalsMaintained required Information Assurance (IA) certifications in accordance with DoDM 8570.01 for Information Assurance Management Level II (IAM II). Requires a minimum approved baseline certification of CAP, CASP+CE, CISM, CISSP (or Associate), GSLC, OR CCISOExperienced in periodic testing to evaluate the security postures of IS by employing various intrusion/attack detection and monitoring tools (shared responsibility with ISSOs)Experienced as an ISSM who understands the approved procedures used for sanitizing and releasing system components and media in accordance with specific security channel guidanceExperienced as a well-organized ISSM sustaining a large repository of all organizational or system-level cybersecurity related BOE with total compliance of supporting documentation for each IS under your purview to obtain Authorization Official's approvalPrepared and guided units through IS security inspections, tests, and reviews (from local, MAJCOM to Air Staff level inspections)Ensured proper measures were taken when an IS incident or vulnerability is discoveredDirected data ownership enforcement and specific requirements (to include accountability, access and special handling requirements)Ensured development and implementation of a highly effective IS security education, training, and awareness programImplemented CM policies and procedures for authorizing the use of hardware/software on an IS through a Configuration Control BoardCoordinated changes or modifications to hardware, software, or firmware with the GSSO/SSR and appropriate AO prior to the addition, change or modificationMaintained a working knowledge of multiple system functions, security policies, technical security safeguards, and operational security measures to support Security Control Assessor evaluationsManaged, maintained, and executed multiple information security continuous monitoring plansWritten multiple Security Impact Analysis papers to support security changes to each system and network that obtained AO approvalsAssisted in the design, funding, procurement, buildup, and long-term support of mobile and fixed Information systems and the associated infrastructuresPrepared constant and extensive deployment/transportation plans to support off-site operations CONUS/OCONUS on military ranges or within Joint authorized facilitiesExperienced in the design, procurement, buildup, and support of mobile and fixed accredited facilitiesDemonstrated performance as an ISSM with the ability to perform standard OSHA single person lifting (approx. 40 lbs.) to assist with setup of site equipmentPREFERRED SKILLS:Interpersonal skills (written and verbal) necessary to deal courteously and effectively with a diverse group of individualsAbility to compose and prepare official correspondence and documents in the format of AF Handbook 33-337, The Tongue and Quill Templates User's GuideAble to provide current Advanced Program and Sensitive Compartmental Information referencesExperienced in system periods of processing for a diverse grouping of security levelsAbility to develop facility and system concept in MS VisioExperienced with DoD data links such as Link-16, MADL and IFDLActive Top Secret security clearance adjudicated within four years or soonerRESPONSIBILITIES:Primarily perform duties of an Information Systems Security Manager (ISSM) in an Advanced Programs Research, Development, Test, and Evaluation (RDT&E) laboratory, but will additionally assist laboratory staff in the secure development, configuration management (CM), implementation of security controls, and management of the continuous monitoring programs in accordance with DoD cybersecurity guidanceAuthor all 15 Risk Management Framework (RMF) Bodies of Evidence (BOE) to obtain each new system Authority to Operate (ATO) for organizational use within the RDT&E environmentProduce a high volume of written documentation throughout the life cycle for a numerous systems and multiple networks under multiple classification levelsConduct technical and non-technical reviews and audits as prescribed by the Information System Security Manager (ISSM)Develop facility modification plan to support system operations, then coordinates facility physical changes with the Laboratory ManagerSelf-starter, able to multi-task and perform effectively in a highly dynamic, fast-paced environment with very little supervisionExceptional skilled preparing documentation to support the physical security aspects of deploying mobile facilitiesAble to deploy CONUS/OCONUS (up to 10%) and possess a strong ability to work independently in deployed environments installing hardware and performing system setupAbility to recognize that System Administrators (SA) are monitoring all available resources that provide warnings of system vulnerabilities or an ongoing attackTravel to TDY locations to perform or conduct test procedures, data management, data reduction, data analysis, configuration management, hardware setup, and hardware troubleshooting and provide/write deficiency evaluation, deficiency reporting, recommendations, and official test reportsWhat We Offer:Competitive salariesContinuing education assistanceProfessional development allotmentMultiple healthcare benefits packages401K with employer matchingPaid time off (PTO) along with a federally recognized holiday scheduleWho We Are Oasis Systems is a premier provider of customer-driven, cost-effective, and quality Engineering Services; Enterprise Systems and Applications; Human Factors Engineering; Information Technology and Cyber Security; Professional Services; and Specialized Engineering Solutions to the Department of Defense, Federal Aviation Administration, Nuclear Regulatory Commission, and other Federal Agencies.We strive to be an exciting and welcoming company that attracts, develops, motivates and retains the most talented, skilled and dedicated people in the industry; where they are encouraged to achieve personal excellence, purpose, and their full potential and career aspirations, while supporting mission-critical national security technologies and programs.Oasis Systems is an equal opportunity employer and does not discriminate in hiring or employment on the basis of any legally protected characteristic including, but not limited to, race, color, religion, national origin, marital status, gender, sexual orientation, ancestry, age, medical condition, military veteran status or on the basis of physical handicap which, with reasonable accommodation, render the applicant able to satisfactorily perform the job available.

Keywords: Oasis Systems, Mobile , Information Systems Security Manager - SE-4 - TGBC, Executive , Shalimar, Alabama