ManTech Information Systems Security Officer Level 2 in Hanover, Maryland
The Information System Security Officer II provides support for a program, organization, system, or enclave s information assurance program. Provides support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies. Maintains operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed. Assists with the management of security aspects of the information system and performs day-to-day security operations of the system. Evaluate security solutions to ensure they meet security requirements for processing classified information. Performs vulnerability/risk assessment analysis to support certification and accreditation. Provides configuration management (CM) for information system security software, hardware, and firmware. Manages changes to system and assesses the security impact of those changes. Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, Assessment & Authorization (A&A) packages, and System Controls Traceability Matrices (SCTMs). Supports security authorization activities in compliance with the NIST Risk Management Framework (RMF) and any DoD and IC tailored requirements.
Key tasks include:
•Plan and coordinate the IT security programs and policies
•Manage and control changes to the system and assessing the security impact of those changes
•Obtain A&A for ISs under their purview
•Provide support for a program, organization, system, or enclave s IA program
-Serve as the Approval Authority to validate or approve user authorization for accounts associated with systems under their control
-Understand the authorization boundary of systems
-Collaboration with System and Network administrators to understand and document data flow and architecture diagrams
-Knowledge of security controls, the assessment and applicability to systems
-Maintain operational baseline of systems under their purview
-Provide ongoing Continuous Monitoring to assigned systems
-Provide and validate the operational security posture of systems and ensure they are maintained
-Ability to initiate the reauthorization process of a system that needs reaccreditation
-Ability to decommission a system when it is no longer required
-Manage risks while assigned system is in operation
-Ability to acknowledge and respond to IAVAs and create liens as necessary
-Ability to understand the POA&M process as well as track and closeout any outstanding liens
-Perform, coordinate and document security relevant changes
-Perform vulnerability assessments to ensure updates and system baseline are enforced
-Recognize a possible security violation and take appropriate action to report the incident
-Manage protective or corrective measure when an IA incident or vulnerability is discovered
-Provide security and awareness oversight and/or training as required
-Review of audit reduction tools to monitor and review systems for compliance with IA policy
-Excellent written and verbal communication skills
-Excellent leadership and teamwork skills
-Results oriented, high energy, self-motivated
-Candidate may be required to respond to after-hours requests as required in a 24 x 7 environment
Ten (10) years experience as an ISSO on programs and contracts of similar scope, type, and complexity is required. Experience is to include at least two (2) of the following areas: knowledge of current security tools, hardware/software security implementation; communication protocols; and encryption techniques/tools. Bachelor s degree in Computer Science or related discipline from an accredited college or university is required. DoD 8570 compliance with Information Assurance Management (IAM) Level I or higher is required. Four (4) years of additional experience as an ISSO may be substituted for a bachelor s degree.
Required Certification: Any of the following or higher certification; Security+ with Continuing Education, Certification Authorization Professional (CAP) or Global Information Assurance Certification – Security Leadership Certificate (GSLC).
Years of Experience
For more than 40 years, ManTech employees have been solving complex problems for the national security community. We are comprised of approximately 10,000 talented employees around the world. We adhere to the simple, no-nonsense values on which ManTech was founded more than four decades ago, aligning squarely with the mission objectives of our customers. As our customer base continues to expand and diversify, we continue to diversify our workforce and solutions. Half our employees have a military background, and more than 70 percent hold a government security clearance. As a leading provider of innovative technology services and solutions for the nation's defense, security, space, and intelligence communities; we hold nearly 1,000 active contracts with more than 40 different government agencies.
ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Waretime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law. If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at (703) 218-6000. ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services.
If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accomodation if you are unable or limited in your ability to use or access http://www.mantech.com/careers/Pages/careers.aspx as a result of your disability. To request an accomodation please click email@example.com and provide your name and contact information.