Information System Security Manager (ISSM) - Senior Subject Matter Expert

Clearance Level
Secret
Category
Information Systems Management
Location
Arlington, Virginia

REQ#: RQ45694

Travel Required: Less than 10%

Responsible for the project supervision including requirements gathering, design, development and implementation of software systems into new or existing infrastructure and ensuring the appropriate operational security posture is maintained for the Information Systems.

The candidate Must have a current Security + or CISSP certification, be proficient with RMF, Information Assurance (IA) activities and procedures and be proficient (including coding) in .Net, Cold Fusion, HTML, SQL, Python, Java Script,  Ms Access, MS SQL Server or other database platform. Familiar with SSO, agile development, and STIG implementations.

Responsibilities:

Create software requirements, design, code, debug, develop test plans, test, document system data flows, interface diagrams, database schemas, apply software CM practices, and maintain Information Systems (IS).  Including:

  • Continuous coordination with the cybersecurity personnel to meet cyber requirements for DASA DE&C Information Technology (IT) systems.
  • Maintain organizational situational awareness and initiate actions to improve or restore cybersecurity posture of assigned Information System.
  • Implement and enforce assigned IS cybersecurity policies and procedures, as defined by cybersecurity-related documentation.
  • Ensure users have requisite security clearances and access authorization, and are aware of their cybersecurity responsibilities before granted access to those systems.
  • Initiate protective or corrective measures when a cybersecurity incident or vulnerability is discovered or reported.
  • Ensure cybersecurity-related documentation is current and accessible to authorized individuals.
  • Prepare, distribute, and maintain plans, instructions, and SOPs concerning system security.
  • Review and evaluate the effects on security of system changes, including interfaces with other ISs and document all changes.
  • Ensure that all ISs within area of responsibility have received a current ATO.
  • Collaborate with stakeholders in conceptualizing and development of new software program and application requirements.
  • Assist in the definition, development, and documentation of software’s business requirements, objectives, deliverables, and specifications on a project-by-project basis in collaboration with internal users and program users.
  • Assist in defining software development project plans, including scoping, scheduling, and implementation.
  • Schedule, and perform software improvements and upgrades.

REQUIRED QUALIFICATIONS

  • Thorough understanding of DoDI 8510.01, DoDI 8500.01, NIST SP 800-53, and CNSSI 1253.
  • Experience with Configuration Management, CCB practices
  • Experience with System Security Engineering/Integration
  • Experience monitoring and assessing network security configurations
  • Experience with Risk Management Framework
  • Experience with HTML, SQL, .Net, Java Script, Ms Access, MS SQL Server or similar database experience
  • Experience with A&A and full range of IA activities.
  • Excellent written and oral communication skills
  • Bachelors and five (5) years or more experience; Masters and three (3) years or more experience
  • Certified Security +, CISSP or similar
  • Must have excellent attention to detail, analytical, problem solving, and short/long term planning skills
  • Must have excellent oral and written communication skills
  • Must be a self-starter with a high degree of initiative
  • Must have excellent interpersonal skills and able to work effectively individually or a part of a team
We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.