Information Systems Security Manager - Tulsa, United States - CymSTAR

Description

SUMMARY:

The Information Systems Security Manager (ISSM) is responsible for all aspects of information security, including ATOs, RMF, and any other contractually obligated controls for the assigned information system boundary. The ISSM supports the full range of cyber security and information security processes, procedures, functions, to include reviewing data from ACAS and vulnerability scans, developing POAMs, leading change control board meetings with government representatives, maintaining/implementing and compliance notification of required information security posture for systems. The ISSM delegates tasks and assignments to ISSOs both on and off site as required. The ISSM frequently works in person on air-gapped systems requiring direct, in-person access.

ESSENTIAL DUTIES AND RESPONSIBILITIES:

• Manages all security monitoring, data log analysis, and forensic analysis to detect security incidents, and initiate mitigating actions

• Manages all phases of the Risk Management Framework (RMF) Assessment and Authorization (A&A) life cycle including: all phases of, security analysis, development, configuration management and software assurance in support of ATO achievement for Programs

• Support, monitor, test, and troubleshoot hardware and software Information Assurance (IA), Risk Management Framework (RMF) and Information Technology (IT) problems pertaining to the assigned unit computer and network environment.

• Ensure all information systems (IS) are operated, maintained and disposed of IAW program directives. and the System Security Plan

• Conduct audits of all classified and unclassified IS to ensure compliance with established directives

• Ensure all IS security-related documentation is current and accessible to properly authorized individuals.

• Performs duties as the Information Systems Security Officer (ISSO) for applicable programs

SUPERVISORY RESPONSIBILITIES:

No Supervisory requirement

QUALIFICATION REQUIREMENTS:

To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed below are representative of the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

EDUCATION and/or EXPERIENCE:

Bachelor's degree in Computer Science, Information Security, or related field.

REQUIRED TRAINING and/or CERTIFICATIONS:

Certification in accordance with DoD directives 8570, 8140, and AFMAN is required for this position. Current, valid, Security + CE is the minimum requirement for consideration, with certifications such as CASP, CISM, CISSP strongly preferred. Completion of required Information Systems Security training in the National Industrial Security Program Curriculum located in the STEPP Portal must be completed within the first 90 days of employment.

LANGUAGE SKILLS:

Ability to read, analyze, and interpret security bulletins, vulnerability alerts, system security plans and other complex technical documentation . Ability to respond to detailed technical inquiries from customers, government representatives, regulatory agencies, or members of the business community. Ability to effectively present and discuss information with management, and colleagues.

MATHEMATICAL SKILLS:

Ability to comprehend and calculate ratios and percentages, Ability to comprehend and apply principles of modern algebra.

COMPUTER SKILLS:

Strong technology skills are required, including a deep understanding of database technologies, information system vulnerabilities and remediation, complex networking environments, virtual computing environments, secure host baseline, encryption and data transmission, enterprise systems ACAS scanning, SCAP scanning, management of active directory and group policy objects, and implementation of STIGs. The ability to translate differing and possibly conflicting customer needs and preferences into design requirements is essential. The ability to analyze, identify and solve a variety of problems is critical.

REASONING ABILITY:

Ability to define problems and collect data, establish facts, draw valid conclusions and present results with supporting documentation as needed.

CITIZENSHIP:

U.S. Citizenship. Must be able to obtain and maintain a U.S. Government Security Clearance.

OTHER SKILLS and ABILITIES:

Experienced and proficient in the use of productivity software tools including word processors, spreadsheets, presentation graphics, project management, and databases.

PHYSICAL DEMANDS:

• The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• While performing the duties of this job, the employee is regularly required to sit; use hands to finger, handle, or feel objects, tools, or controls; reach with hands and arms; and talk or hear. The employee is frequently required to stand; walk; climb or balance; and stoop, kneel, crouch, or crawl.

• The employee must regularly lift and/or move up to 10 pounds, must frequently lift and/or move up to 25 pounds, and must occasionally lift and/or move up to 50 pounds. Specific vision abilities required by this job include close vision, color vision, depth perception, and the ability to adjust focus.

WORK ENVIRONMENT:

• The work environment characteristics described here are representative of those an employee encounters while performing the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

• While performing the duties of this job, the employee is occasionally exposed to fumes or airborne particles, risk of electrical shock, moving parts and vibration.

• The noise level in the work environment is usually quiet.

• The employee is occasionally required to work holidays, weekends and odd shifts.

• Some travel to customer/government facilities is required

OTHER REQUIREMENTS:

• Comply with company policies and procedures and work instructions

• Follow company standards of professionalism

• Treat customers and coworkers with respect

• Be honest and dedicated in your work

• Follow directions of supervisory and management staff

• Comply with Company quality standards

• Maintain a professional appearance and comply with any company dress code

Cymstar is an Equal Opportunity Employer, and as such affirms the right of every person to participate in all aspects of employment without regard to race, religion, color, national origin, citizenship, sex, sexual orientation, gender identity, age, veteran status, disability, genetic information, or any other protected characteristic. If you are interested in applying for employment and need special assistance or an accommodation to apply for a posted position, contact our Human Resources department via phone at or email at