Provide Information System Security Manager (ISSM) services to the Army Project Manager Terrestrial Sensors located at Ft. Belvoir, VA.
Essential Job Functions:
Experience with the Risk Management Framework (RMF) process.
Advise appropriate senior leadership or Authorizing Official of changes affecting the Information Assurance (IA) posture of the organization and it’s programs.
Develop and review Authorization To Operate (ATO) packages using Enterprise Mission Assurance Support Service (eMASS).
Advise subordinate product managers on information assurance policies and procedures.
Review product Cybersecurity Strategy and Program Protection Plans for compliance with current regulations and policies.
Ensure plans of actions and milestones (POAMs) or remediation plans are in place for vulnerabilities identified during risk assessments, audits, inspections, etc.
Ensure that IA inspections, tests, and reviews are coordinated for the network environment.
Assure successful implementation and functionality of security requirements and appropriate IT policies and procedures.
Ensure that IA requirements are integrated into the continuity planning for that system and/or organization(s).
Travel up to 10% of the time.
Due to the sensitivity of customer related requirements, U.S. Citizenship is required.
Bachelor's degree in Cybersecurity.
Active Secret clearance.
Minimum 10 years of experience working in cybersecurity field.
Certified Information Security Manager (CISM) certification.
Experience using eMASS.
Ability to interface with different organization levels and expertise of Army Product Management development personnel and Program Executive Officer level cybersecurity personnel.
Knowledge of Federal, DoD, and U.S. Army Guidance, specifically DoDI 8510.01 "Risk Management Framework for DoD IT"
Knowledge of Cybersecurity IAW DODI 8500.01 Cybersecurity and DODI 5200.39 Critical Program Information (CPI) Identification and Protection Within Research, Development, Test and Evaluation (RDT&E).
Knowledge of the Federal Information Security Management Act (FISMA) of 2002.
Knowledge of FIPS PUB 199 Standards for Security Categorization of Federal Information Systems.
Knowledge of DODD 8115.01 Information Technology Portfolio Management and the governance process prescribed in this instruction.
Knowledge of National Institute of Standards and Technology (NIST) special publication (SP) 800-37 and SP 800-53.
Knowledge of Information Security auditing and product scanning.
Working knowledge of MS Office to include: MS Word, MS Power Point, MS Excel, MS Outlook and MS Teams.
Working knowledge of SharePoint.
Previous experience working in an Army Product or Project Manager organization supporting cybersecurity activities.
Certified Information Security System Professional (CISSP) certification.
Master's Degree in Cybersecurity.