Information System Security Manager (ISSM)
Dine Source
Wright-Patterson Air Force Base, United States of America
1 month ago
Role details
Contract type
Permanent contract Employment type
Full-time (> 32 hours) Working hours
Regular working hours Languages
English Experience level
IntermediateJob location
Wright-Patterson Air Force Base, United States of America
Tech stack
Audit Trail
Cloud Computing
Computer Security
Firmware
Information Security Management
NIPRNet
Information Technology
Data Management
Splunk
Devsecops
Job description
Dine Source is seeking an ISSM to support an Air Force program. We are seeking a motivated cybersecurity professional to join our Cyber team. As a member of our team, you'll create system security plans, make cyber risk decisions, and conduct audits on NIPR systems., * Develops, implements, and maintains data strategies to ensure quality and accessibility
- Develops/maintains the definition and documentation of architectural standards, reference architectures processes, operating models, and logical and physical data/associated data management resources
- Ensure unclassified systems follow DoD and government regulations while still meeting program demands and operating in an accredited state.
- Lead all aspects of SSP development, maintenance, accreditation/re-accreditation, and oversight, including conducting periodic reviews to ensure compliance.
- Work with cybersecurity lead and be a primary contact for IS security inspections, tests, and reviews by oversight authorities.
- Other duties as assigned.
Requirements
Do you have experience in System risk assessment (security system operation)?, Do you have a Bachelor's degree?, * Must have an active Secret Clearance
- Have acquired a BS in Computer Science, Cyber Security, or a related field; with 8+years of relevant cybersecurity experience;
- Must have one of the following current certifications: CASP+, CISSP, CISSP Associate, or GSLC.
- Have 3+ years working with the Air Force RMF security frameworks, including DoD and Air Force security policies and instructions.
- Must have the experience and the ability to provide tactical information security advice and manage all Cybersecurity related activities for current or future IT platforms
- Must work in conjunction with a multi-contractor team in support of Cybersecurity, continuous monitoring, and other emerging compliance requirements.
- Must ensure Federal Information Security Management Act (FISMA) requirements are being met and track in the Air Force's Information Technology Investment Portfolio Suite (ITIPS).
- Must ensure that software, hardware, and firmware comply with appropriate IAVM's.
- Must track and action POA&M entries as part of the RMF process.
- Experience is required for reviewing and updating STIG results.
- Must ensure Continuous Monitoring is adhered to.
- Must have working experience with Risk Management Framework and NIST 800-53 revision 4 and revision 5 controls
- Must have experience working within eMASS and obtaining an ATO
- Must be familiar with performing Security validation testing through a DevSecOps process and within both on-premises and a Cloud Environment
- Mush have experience with ACAS, utilizing Splunk, reviewing of audit logs, and other cybersecurity monitoring functions
- Ability to identify risks of implementing technology solutions and analyze the impact on achieving desired business outcomes
Benefits & conditions
Pulled from the full job description
- Tuition reimbursement
- Health insurance
- Retirement plan
- Paid time off
- Vision insurance
- Dental insurance
- Employee assistance program, Eligible full-time employees receive a comprehensive benefits package, including medical, dental, vision, life and disability coverage, retirement savings with company match, paid time off, voluntary supplemental benefits, and access to an employee assistance program. The package also includes educational assistance, with tuition reimbursement. EEO Statement
About the company
Diné Development Corporation (DDC) is a Navajo Nation owned family of companies that provides government agencies and commercial organizations with high-quality IT, professional, environmental, and research and development services. DDC is dedicated to empowering the Navajo Nation and communities we serve.