General Dynamics is currently hiring an Information System Security Manager (ISSM) for a U.S. Army customer located at Fort Detrick in Frederick, Maryland. The responsibility of the ISSM is to provide oversight and management of all procedures necessary to ensure accreditation of the USAMMDA enclave.
In this role, a typical day will include:
Performing Cybersecurity activities (formally known as IA - Information Assurance) for a U.S. Army customer. Coordinate with Government staff, and other Government agencies to assist in the creation, dissemination, direction, and auditing of program policy, standards, and operating procedures.
Utilizing available resources to conduct Cybersecurity activities, and report to GDIT site lead and Government personnel on overall program security posture.
Conducting network and system audits for vulnerabilities using Security Technical Implementation Guides (STIGs), ACAS vulnerability scanner, and DISA SCAP to mitigate those findings for desktop and server Windows machines, and associated network operating systems.
Training personnel on new security requirements and STIG updates as they arise to ensure new requirements are being implemented correctly.
Providing oversight of system audits for vulnerabilities using Security Technical Implementation Guides (STIGs), ACAS vulnerability scanner, and DISA SCAP to mitigate those findings for desktop and server Windows machines, and associated network operating systems.
Creating, tracking and reviewing Plan of Action and Milestones (POA&Ms) and conduct solution identification to assist in problem remediation and resolution.
Communicating tactical and strategic threat information to Government leaders, Cybersecurity-Ops and A&A (formerly C&A) Staff to assist them in making cyber risk decisions and to mitigate threats.
Carrying out DoD Risk Management Framework (RMF) in accordance with DoDi 8510 to ascertain information systems' security posture by utilizing security control validation activities and coordinating security testing.
Utilizing Security Event generating sources (e.g. Firewalls, Security Appliances, managing system scanning tools such as HBSS and , ACAS).
Working Knowledge of MS Windows Products/Networking/Database (MS-Access, MSSQL).
Working and setting priorities on multiple projects/tasks at once and operate in a dynamic, fast-paced team-oriented environment
Maintaining the Security Accreditation status, including system documentation of entire system enclave.
Coordinating with HQ IA, DHA, DISA, and other organizations in support of audits and inspections and provides all necessary documentation as required for SAVs, ST&Es, and CCRI.
Performing oversight and validation of medical devices developed by USAMMDA within the eMASS system.
Participating in special projects as needed.
Bachelor’s Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience.
5-8 years of related experience in cyber security management utilizing RMF fundamentals.data security administration.
3+ years’ experience working within eMASS
Must possess at least one of the following certifications: CISSP, CAP , CASP+, CE, CISM
Ability to work and set priorities on multiple projects/tasks at once and operate in a dynamic, fast-paced team-oriented environment.
T3 (NACLC) or Secret required.
We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.
GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.