Job Summary:

 

The ISSM is responsible for maintaining the overall system security posture of classified programs at Mercury sites. The ISSM manages the process to configure and protect classified information systems. Primary function is the implementation of all classified security policy, procedures, and government security requirements required by the United States Government. Additionally, the ISSM is responsible for the implementation of the Department of Defense (DoD) Risk Management Framework (RMF), outline classified security policies and procedures and assures compliance with all applicable government regulations.

 

Job Responsibilities:

Prepare, maintain, upload to database of record (eMASS), and implement System Security Plans that accurately reflects the installation and security provisions, and implement certification testing as required by the Cognizant Security Agency (CSA). Develop procedures and documentation to ensure compliance with Configuration Management (CM) for security-relevant Information System (IS) software, hardware, and firmware. Conduct risk and vulnerability assessments of planned and installed classified IS to identify vulnerabilities, risks, and protection needs, and verify that security features and operating controls are functional and effective. Maintain compliance with DoD Certification and Accreditation policies, specifically Department of Defense Instruction (DoDI) 8510.01, Risk Management Framework (RMF) for DoD Information Technology, and other policies as required. Manage the physical security for site(s) to include intrusion detection system, access control, CCTV, security locks, and GSA security containers. Install and update security-related software for the detection of malicious code, viruses, and intruders, as appropriate.

 

Required Qualifications:

5 + years of experience/education providing cyber security, information systems security, Risk Management Framework (RMF), and Certification and Accreditation (C&A) processes C&A support Candidate must have an active Secret Clearance Experience working with EMASS, creating DIACAP packages, and RMF procedures Experience operating in a SAP environment Proven ability to conduct thorough risk assessments and manage complex documentation processes Strong knowledge of network assets and peripheral equipment specifications. Strong initiative, detail orientation, organizational skills, and aptitude for analytical thinking Demonstrated ability to work well independently and as a part of a team

Preferred Qualifications:

Familiarity with large multi-facility networks including diverse and complex components, including Windows and Linux environments Familiarity with the execution and management of cyber incident response; preservation, containment, and eradication CISSP, CASP, or a similar certificate is preferred Master's Degree in Information Systems or related field Strong knowledge of network assets and peripheral equipment specifications. Strong initiative, detail orientation, organizational skills, and aptitude for analytical thinking Demonstrated ability to work well independently and as a part of a team

 

"This position requires you to have or obtain a government security clearance. Security clearances may only be granted to U.S. citizens."