Information System Security Manager
$142,700 - $157,700/Yr
Cae - Binghamton, NY
posted 2 months ago
Full-time - Mid Level
Binghamton, NY
Machinery Manufacturing
About the position
The position is responsible for the development, deployment, and execution of security controls and defenses to protect the company's technology and information systems. The role involves establishing security standards, assessing risks, conducting audits, and responding to security incidents, ensuring compliance with government requirements and best practices throughout the program life cycle.
Responsibilities
- Develop and implement security standards and criteria for hardware, software, access, and encryption requirements.
- Establish system security designs and validate compliance requirements.
- Assess and mitigate system security threats and risks throughout the program life cycle.
- Perform system certification and accreditation planning, testing, and validation activities in coordination with government customers.
- Support secure systems operations and maintenance.
- Conduct internal IT system audits and risk assessments, reporting findings and recommendations to management.
- Execute first-level responses to reported or detected security incidents.
- Investigate and analyze all response activities related to cyber incidents.
- Interpret, analyze, and report all events and anomalies in accordance with directives.
- Safeguard information against unauthorized use, infiltration, exfiltration, modification, destruction, or disclosure of national security information.
Requirements
- Bachelor's Degree in a relevant discipline and a minimum of 6 years of prior relevant experience, or 2 years post-Secondary/Associates Degree with a minimum of 8 years of prior related experience.
- Graduate Degree with a minimum of 4 years of prior related experience.
- Working knowledge of Risk Management Framework as defined in NIST 800-53 and CNSSI 1253.
- Experience conducting vulnerability and compliance scanning for federal information systems.
- In-depth knowledge and experience with technical configuration standards relating to information system security.
- Experience configuring Windows operating systems and server systems, including thin client architecture and system virtualization.
- Extensive knowledge and experience with assessment & authorization (A&A) requirements as outlined in NISPOM/DAAPM, JSIG, RMF, NIST, and other USG IS/Security-related policies.
- Experience with Interconnected Security Agreements (ISA), Network Security Plans (NSP), and Memorandum of Agreement/Understanding (MOA/U).
- Experience in implementing Windows Active Directory Services and Group Policy.
- Applied experience with Windows PowerShell and security information and event management (SIEM) solutions.
Nice-to-haves
- Evidence of DoD 8570 IAM III compliance: CISSP, CISA, CISM, etc., or equivalent certification within 6 months of hire date.
- Active DoD Secret Clearance, with the ability to obtain and maintain a Top Secret Clearance.
Benefits
- Competitive salary range of $142,700 to $157,700 based on experience and qualifications.
