Information Security Manager III

Farfield Systems
Arlington, United States of America
17 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior

Job location

Arlington, United States of America

Tech stack

Xacta
Microsoft Word
Microsoft Excel
Amazon Web Services (AWS)
User Authentication
Bash
Computer Security
Computer Literacy
Linux
Identity and Access Management
Information Management
Information Security Management
Python
Network Security
Microsoft Office
Microsoft Visio
Microsoft Software
Network Installation Services
Network Segmentation
NMap
Microsoft PowerPoint
Powershell
Amazon Web Services (AWS)
Zero Trust Network Access
Security Information and Event Management
Software Vulnerability Management
Scripting (Bash/Python/Go/Ruby)
Information Technology
Nessus
Functional Programming
Splunk
Cisco networks

Job description

  • Collaborate with a dedicated team of Information Assurance professionals to oversee the complete Risk Management Framework lifecycle for Information Technology systems.
  • Provide technical and management leadership on major tasks and technology assignments, ensuring alignment with project objectives.
  • Establish and execute strategic goals and plans to meet project milestones effectively.
  • Lead security management activities, ensuring technical requirements are met through adept direction and control.
  • Engage in client negotiations and communicate effectively with senior management to support project initiatives.
  • Offer critical decision-making support and domain expertise that influences overall project implementation.
  • Plan, coordinate, and implement information security measures for a cybersecurity lab.
  • Assist in identifying the lab's current security infrastructure and defining future security programs, including design and implementation related to lab systems.
  • Collaborate with security staff to engineer and deploy solutions that address security requirements.
  • Contribute to the development and implementation of DHS IT security standards.
  • Gather and organize technical information regarding the lab's mission, existing security products, and ongoing programs.
  • Conduct thorough risk analyses and assessments to bolster our security posture.
  • Lead major technology assignments, evaluating performance results and recommending changes for project growth and success.
  • Function as a cyber technical expert across various project assignments.
  • Work closely with the Information System Security Manager (ISSM) and Chief Information Security Officer (CISO) to respond to Data Calls and meet Authorization to Operate (ATO) requirements.

At Farfield Systems, we believe that our employees are our greatest asset. Join us, and together, let's make a difference in the government contracting landscape while ensuring the safety and security of our nation. Your expertise can help shape the future of cybersecurity. Apply today and be part of a team that truly cares!

Requirements

  • U.S. Citizenship
  • Must have an active TS/SCI clearance
  • Must be able to obtain DHS Suitability
  • 5+ years of directly relevant experience in information security management
  • Hands on experience with Linux operating systems or Amazon Web Services
  • Experience supporting the NIST Risk Management Framework (RMF) process and contributing to a full ATO effort from initiation through authorization, including development of security documentation, control implementation statements, supporting assessment (audit) activities, and performing full POA&M management
  • Beginning to end Knowledge of RMF and Assessment and Authorization (A&A) documentation to include SSP, Contingency, Incident & Configuration Mgmt planning and execution
  • Experience working on multiple complex assignments which are broad in nature, requiring originality and innovation in determining how to accomplish tasks
  • Ability to apply a comprehensive knowledge across key tasks and high impact assignments
  • Knowledge of Computer Network Defense (CND) policies, procedures & regulations
  • Knowledge of defense-in-depth principles and network security architecture
  • Knowledge of ATO requirements and strong experience with POAMs.
  • Knowledge and experience with full range of Microsoft Office products (Word, Excel, Powerpoint, and Visio)
  • Knowledge of boundary protection and network segmentation
  • Knowledge of authentication and access management techniques
  • Experience with implementing and assessing security controls for hardware, software, and network deployments
  • Must be able to work collaboratively with internal and external stakeholders across physical locations

Desired Skills:

  • Experience with Risk Management Framework software (CSAM, Xacta, Archer, RegScale)
  • Experience with host and network scanning software (Nessus, Security Center, Tenable Vulnerability Management, nmap, Wiz, burp)
  • Experience with Endpoint Protection tools like CrowdStrike or CarbonBlack
  • Working knowledge of SIEM tools like Splunk, SOAR, or ELK
  • Familiarity with role-based account processing operations
  • Familiarity with zero trust architectures
  • Familiarity with scripting languages (python, AWS CLI, Lambda, bash, powershell)

Required Education: BS Information Management, Cybersecurity, Computer Science or related degree, or High School Diploma and 7+ years of information security management experience.

Desired Certifications:

  • DoD 8140.01 IAT Level III, CISSP, AWS, Cisco, Microsoft

About the company

For over 23 years, Farfield Systems has been a proud supporter of the government contracting community, championing work that matters for our customers' most critical missions. Our commitment to our team members reflects in our customer satisfaction, as we believe in an "employee driven…customer focused" approach that defines our vibrant culture and core values.

Apply for this position