Draper - Reston, VA
posted about 2 months ago
Full-time - Mid Level
Reston, VA
1,001-5,000 employees
Furniture and Related Product Manufacturing
About the position
The Information Systems Security Manager (ISSM) at Draper is responsible for maintaining and auditing the unique IC/DoD accreditation across multiple customers. This role requires strong multi-tasking, customer service, communication, and organizational skills, and is integral to supporting the next generation of classified systems in a dynamic research and development environment.
Responsibilities
- Use cyber defense tools for continual monitoring and analysis of system activity to identify malicious activity.
- Document and escalate incidents that may cause ongoing and immediate impact to the environment.
- Perform cyber defense trend analysis and reporting.
- Perform security reviews and identify security gaps in security architecture resulting in recommendations for inclusion in the risk mitigation strategy.
- Work with stakeholders to resolve computer security incidents and vulnerability compliance.
- Provide advice and input for Disaster Recovery, Contingency, and Continuity of Operations Plans.
- Perform security reviews, identify gaps in security architecture, and develop a security risk management plan.
- Perform risk analysis whenever an application or system is implemented or changed.
- Assure successful implementation and functionality of security requirements and appropriate IT policies and procedures.
- Perform other duties as assigned.
Requirements
- Bachelors Degree in Computer Science/Cybersecurity/Information Technology or equivalent field of study required.
- 5-7 years of experience as an ISSM, or performing as an ISSO, implementing DCSA Assessment and Authorization Process Manual (DAAPM), DoD Joint Special Access Program Implementation Guide (JSIG), and/or Intelligence Community Directive (ICD) 503 Risk Management, Certification and Accreditation requirements.
- Experience in auditing Windows and Linux Operating Systems and aligned policies for accreditation.
- Experience with COOP planning and execution to help the team expand further deployment sites.
- Experience in accreditation and ISSO responsibilities at the TS/SCI level.
- In depth understanding of how critical classified networks support the organization at large (military experience preferred).
- Previous experience working with or in 1 of the 3 primary US Intelligence Agencies preferred.
- DoD IAM Level II or III certified preferred.
Nice-to-haves
- Familiarity working with DoD/IC Security Control Assessors.
- Familiarity with C2G/C2C interconnected systems and/or Unified/Enterprise Wide Area Network (WAN) environments to include Secure Internet Protocol Router Network (SIPRNet), Missile Defense Agency Classified Network (MDACNet), and Secure Defense Research Engineering Network (SDREN).
- Understanding of virtual environments and containerization tools/technologies.
Benefits
- Workplace flexibility
- Employee clubs ranging from photography to yoga
- Health and finance workshops
- Off site social events
- Discounts to local museums and cultural activities
