ManTech ISSO Principal in Reston, Virginia
Entering ManTech s 50thyear, we hold the distinct honor of being named a “Top 100 Global TechnologyCompany by Thomson Reuters. We have earned this and many other accolades overthe years for our dedication to serving the missions of our nation s most importantcustomers: U.S. Intelligence, Defense and Federal Civilian agencies. All knowus as a trusted partner offering best-in-class solutions in cyber, datacollection & analytics, enterprise IT, and systems and software engineeringtailored to meet their specific requirements.
Become an integral partof a diverse team in the Mission, Cyber and Intelligence Solutions (MCIS)Group. Currently, ManTech is seeking a motivated, mission-oriented Senior ISSO ,in Reston , with strong Customer relationships. At ManTech, you will helpprotect our national security while working on innovative projects that offeropportunities for advancement.
The Federal SecuritySolutions (FSS) Division provides cyber solutions to a wide range of Defenseand Intelligence Community customers. This division consists of a team oftechnical leaders that deliver advanced technical solutions to governmentorganizations. Our customers have high standards, are technically adept,and use our products daily to support their mission of protecting nationalsecurity. Our contributions to our customer s success is driving our growth.
Serve as the ManTech ISSO for a DHS solution being offered from an off-premise private cloud.
Work closely with the DHS ISSO and the DHS NPPD office to address all Plans of Action and Milestones (POA&Ms).
Submit Infrastructure Change Requests and Security Impact Analyses for any changes that need to be performed on the Shared Services Platform.
Conduct periodic scans of the Shared Services Platform using Tenable Nessus on agreed upon time frames and provide the results to the DHS Security team.
Work with the Engineering and Operations teams to address issues identified in the scans in a timely manner.
Interface with the Engineering and Operations personnel to provide ongoing security-related guidance.
Implement/maintain a strategy for continuous monitoring including: establishing system audit trails and ensuring their review, reporting all identified security findings and initiating the periodic review of security controls
Ensure security awareness and precautionary measures are exercised to prevent introduction and/or proliferation of malicious code or other adverse operational conditions. This includes exercise of continuity and/or disaster recovery plans, as required
Monitor operations processes, including but not limited to, the Incident Response Process and Communications Process to ensure that they are followed properly.
Provide prompt feedback to Engineering and Operations personnel in a timely manner and provide ongoing education on security protocols and procedures
Ensure that system security requirements are addressed throughout the project and system lifecycle
Ensure controls and processes are in place and working effectively to maintain a strong system security posture.
Qualifications andEducation/Certification Requirements:
5+ years of experience in InfoSec and B.S. in Information Technology or InfoSec desired. (4 years of relevant work experience may be substituted for B.S, for a total of 9+ years of experience).
Security+ certification required
Demonstrated experience writing information system security documentation (SSPs, POA&Ms, PTAs, PIAs, CMPs, CPs, and IRPs).
Demonstrated experience conducting information system security controls assessments (SCAs) and applying standard auditing techniques during system security controls assessments, including proper interpretation of control requirements, determining if the artifacts provided are sufficient, and recommending remedial actions to the customer and team to ensure compliance.
Extensive knowledge and experience with information security standards, policies and practices - NIST (800-53 rev4), FISMA, DHS 4300A.
Knowledge of information security engineering, design concepts and principles.
Knowledgeable with the Systems Development Lifecycle (SDLC) and continuous monitoring methodologies.
Extensive experience analyzing information technology and system risk in complex environments and articulating results (verbal/reports) to all levels of management.
Ability to research and address information security issues as required as an authority on the subject.
Experience using vulnerability assessment tools (NESSUS, AppDetective, etc.), analyzing and interpreting assessment results, and developing POA&Ms to remediate findings.
Must have excellent written communication skills as the candidate's job will include written interaction with senior- level executives.
· Industrycertifications, such as CISSP, CISA, CAP are preferred.
· Exceptionalinterpersonal and verbal communication skills, with the ability to collaborate wellacross teams and organizations.
· Provenability to multi-task and deliver on time with the highest quality.
· Applicants selected will be subject to a government securityinvestigation and must meet eligibility requirements for access to classifiedinformation. Must be able to obtain DHS EOD.
Requires Bachelor's degree or equivalent and seven to nine years of related experience.
High School Diploma or GED Certificate, Equivalent Experience/Education, See Qualifications
Years of Experience
08-10 years w/Bachelors Degree, See Qualifications
ManTech International Corporation is comprised of approximately 7,300 talented employees who use advanced technology to help government and industry meet some of their greatest challenges around the world. We adhere to the simple, no-nonsense values on which ManTech was founded more than four decades ago, aligning squarely with the mission objectives of our customers. As our customer base continues to expand and diversify, we continue to diversify our workforce and solutions. Nearly half our employees have a military background, and approximately 70 percent hold a government security clearance. As a leading provider of innovative technology services and solutions for the nation's defense, security, health, space, and intelligence communities; we hold nearly 1,100 active contracts with more than 50 different government agencies.
ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Waretime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law. If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at (703) 218-6000. ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services.
If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accomodation if you are unable or limited in your ability to use or access http://www.mantech.com/careers/Pages/careers.aspx as a result of your disability. To request an accomodation please click email@example.com and provide your name and contact information.