Information Systems Security Manager Part-Time
$74,880 - $85,280/Yr
Stellant Systems - Melville, NY
posted 24 days ago
Part-time - Mid Level
Melville, NY
About the position
The Part-Time Information System Security Manager (ISSM) will oversee the design, development, evaluation, and accreditation of information systems that process classified information. This role involves daily supervision of Stellant PST Information Systems security plans and ensuring compliance with various security regulations and directives.
Responsibilities
- Serve as a subject matter expert for requirements in the National Industrial Security Program Operating Manual (NISPOM), Intelligence Community Directives (ICD), and the Office of Designated Approving Authority (ODAA) Process Manual.
- Develop and review System Security Plans (SSP, MSSP, NSP) and policies in accordance with NISPOM, ICD, ODAA Process Manual, and other security directives.
- Schedule, perform, and maintain records of Information Security auditing, patching, maintenance, software/hardware changes, and scanning based on evolving threats and customer compliance requirements.
- Build, configure, and maintain Microsoft Windows systems in compliance with DoD cyber security requirements.
- Conduct periodic self-inspections, tests, and reviews of the Information Security program to ensure systems are operating as authorized/accredited.
- Ensure corrective actions are taken for identified findings and vulnerabilities.
- Ensure systems are operated, maintained, and disposed of according to security policies and procedures.
- Develop and conduct test procedures for verification of Certification & Accreditation (C&A), Authorization and Accreditation (A&A), and Risk Management Framework (RMF) safeguards.
- Stay current on information assurance regulations and contract security requirements.
- Coordinate with Facility Security Officer (FSO) and Contractor Program Security Officers (CPSO) to implement and maintain information security policies, strategies, and procedures.
- Create and conduct AIS Security briefings.
Requirements
- Five years of full-time paid work experience, or four years' experience plus an information security degree/certificate, in two or more of the eight CISSP domains.
- Three years of experience implementing NISPOM, ICD, and/or ODAA Process Manual requirements.
- Active US DoD Secret security clearance or SSBI with polygraph.
- Ability to obtain any additional clearances as required.
- DoD 8570.01m IAM III certified credentials (must become CISSP certified within 6 months of hire if not already certified).
- In-depth knowledge of NISPOM Technical Baseline and RMF.
- Excellent people skills with experience leading and collaborating in a dynamic team environment.
- Outstanding work ethic and commitment to organizational success.
- Excellent communication skills (written, verbal, & presentation).
- Excellent attention to detail.
- Proficient with Microsoft Office products.
Nice-to-haves
- Certified Information Systems Security Professional (CISSP).
- Five years of experience with Windows 7/10, Windows Server 2008/2012, Active Directory, and Group Policy.
- One year of experience with VMWare.
- Technical knowledge of Linux and UNIX-based platforms.
- Bachelor's Degree.
- Experience with Costpoint and ERP systems.
