Reston, VA, USA
74 days ago
Information Systems Security Manger (ISSM)

Overview:

Draper is an independent, nonprofit research and development company headquartered in Cambridge, MA. The 2,000+ employees of Draper tackle important national challenges with a promise of delivering successful and usable solutions. From military defense and space exploration to biomedical engineering, lives often depend on the solutions we provide. Our multidisciplinary teams of engineers and scientists work in a collaborative environment that inspires the cross-fertilization of ideas necessary for true innovation. For more information about Draper, visit www.draper.com.

Job Description Summary:

The Information Systems Security Manger (ISSM) will be responsible for the auditing and maintenance required to maintain a very unique IC/DoD accreditation across multiple customers. This role requires multi-tasking, customer service, communication, and organizational skills.  The ISSM is a key member to a small dynamic research and development environments in which they will work on and support the next generation of classified system. This system requires highly in depth knowledge of specific tools, suites, and software packages that are on the bleeding edge of the convergence of policies, security, and information technology.

Job Description:

Duties/Responsibilities
• Use cyber defense tools for continual monitoring and analysis of system activity to identify malicious activity.
• Document and escalate incidents that may cause ongoing and immediate impact to the environment.
• Perform cyber defense trend analysis and reporting.
• Perform security reviews and identify security gaps in security architecture resulting in recommendations for inclusion in the risk mitigation strategy.
• Work with stakeholders to resolve computer security incidents and vulnerability compliance.
• Provide advice and input for Disaster Recovery, Contingency, and Continuity of Operations Plans.
• Perform security reviews, identify gaps in security architecture, and develop a security risk management plan.
• Perform risk analysis whenever an application or system is implemented or changed.
• Assure successful implementation and functionality of security requirements and appropriate IT policies and procedures.
• Performs other duties as assigned.

Skills/Abilities
• Ability to configuring and reviewing security functions of information systems.
• Ability in conducting security analyses to include security configurations and risk assessments.
• Familiarity working with DoD/IC Security Control Assessors.
• Familiarity with C2G/C2C interconnected systems and/or Unified/Enterprise• Wide Area Network (WAN) environments to include Secure Internet Protocol Router Network (SIPRNet), Missile Defense Agency Classified Network (MDACNet), and Secure Defense Research Engineering Network (SDREN).
• Understanding of virtual environments and containerization tools/technologies.
• Ability to identify systemic security issues based on the analysis of vulnerability and configuration data.
• Ability to apply techniques for detecting host and network• based intrusions using intrusion detection technologies.
• Ability to function effectively in a dynamic, fast paced environment.
• Strong interpersonal skills with effective verbal and written communication skills.
• Clear and structured thought processes and coherent decision making skills.

Education
Bachelors Degree in Computer Science/Cybersecurity/Information Technology or equivalent field of study required.

Experience
5-7 years of experience as an ISSM, or performing as an ISSO, implementing DCSA Assessment and Authorization Process Manual (DAAPM), DoD Joint Special Access Program Implementation Guide (JSIG), and/or Intelligence Community Directive (ICD) 503 Risk Management, Certification and Accreditation requirements.

Additional Job Description:

Experience in auditing Windows and Linux Operating Systems and aligned policies for accreditation

Experience with COOP planning and execution to help the team expand further deployment sites

Experience in accreditation and ISSO responsibilities at the TS/SCI level

In depth understanding of how critical classified networks support the organization at large (military experience preferred)

Previous experience working with or in 1 of the 3 primary US Intelligence Agencies preferred.

DoD IAM Level II or III certified preferred.

Applicants selected for this position will be required to obtain and maintain a government security clearance.

Current in scope Top Secret security clearance with SCI eligibility is required.

Current or recent CI Poly required.

Connect With Draper for Future Opportunities! If you don't find the right posting in our Career Opportunities, you may submit your resume for future consideration.

Job Location - City:

Reston

Job Location - State:

Virginia

Job Location - Postal Code:

20190

Our work is very important to us, but so is our life outside of work. Draper supports many programs to improve work-life balance including workplace flexibility, employee clubs ranging from photography to yoga, health and finance workshops, off site social events and discounts to local museums and cultural activities. If this specific job opportunity and the chance to work at a nationally renowned R&D innovation company appeals to you, apply now www.draper.com/careers.

Equal Employment Opportunity:

Draper is committed to creating a diverse environment and is proud to be an affirmative action and equal opportunity employer. We understand the value of diversity and its impact on a high-performance culture. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information. Draper is committed to providing access, equal opportunity and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation, please contact hr@draper.com.

Confirm your E-mail: Send Email