Vacancy expired!
Secure our Nation, Ignite your FutureManTech is seeking a Sr. Information System Security Officer (ISSO) to support multiple federal agencies through the Continuous Diagnostic& Mitigation (CDM) Program. The CDM Program is a high-profile, high-visibility, cybersecurity modernization and risk management program where you can contribute innovative solutions and consult with many different federal agencies to enhance their Information Assurance (IA) programs and continuous monitoring capabilities. Responsibilities will include:
Provide consulting to Agencies on Requests for Service for the design, development, and deployment of Ongoing Assessment, Ongoing Authorization, and other Information Assurance (IA) initiatives
Provide continuous monitoring to enforce client security policy and procedures and create processes that will provide increased visibility to system owners on impacts to the security posture of systems
Ensure system security measures comply with applicable government policies
Monitor configuration management changes and assess the impact of modifications and vulnerabilities for each system
Ensure that system security requirements are addressed throughout the project and system lifecycle
Ensure effective controls and processes are in place and working effectively to maintain a strong system security posture.
Perform vulnerability/risk assessment analyses to support Assessment & Authorization (A&A) activities
Develop, maintain, and facilitate the appropriate closure of POA&Ms and facilitate with the Agency-designated security Point of Contact (PoC)/ISSO any related remediation activities
Understand and monitor operations processes, including but not limited to, the Incident Response Process and Communications Process, to ensure that they are followed properly at Agencies for applicable CDM solutions and tools
Ensure the development, documentation, and presentation of IS security education, awareness, and training activities for users and others, as appropriate
Provide prompt feedback to CDM Project Management, Engineering and Operations personnel in a timely manner and provide ongoing education on security protocols and procedures
Qualifications and Education/Certification Requirements:
B.S. in Information Technology or Information Security desired
5+ years of experience in InfoSec specializing in NIST RMF—DHS-specific experience highly desired
DoD 8570 approved baseline certification (s) (i.e., CISSP, CISM) preferred
Experience with DHS Ongoing Authorization Program Framework and use cases preferred
Experience with DHS Continuous Diagnostics and Mitigation (CDM) a plus
Experience with AWS Cloud, Azure Cloud, or Cloud implementations and environments
Extensive knowledge and experience with information security standards, policies and practices – NIST SP 800-53 rev4, SP 800-37 rev2, FIPS-199, DHS 4300A.
Demonstrated experience writing information system security documentation (System Security Plans (SSP), Plans of Action and Milestones (POA&Ms), PTAs, PIAs, CMPs, CPs, and IRPs).
Experience using vulnerability assessment tools (NESSUS, AppDetective, etc.), analyzing and interpreting assessment results.
Extensive experience analyzing information technology and system risk in complex environments and articulating results (verbal/reports) to all levels of management
Ability to research and address information security issues as required as an authority on the subject.
FedRAMP experience a plus
Strong understanding of infrastructure technologies and functionalities (e.g., firewalls, Windows/Linux servers, Active Directory (AD), Splunk, Solarwinds, CyberArk, etc.)
Must be a self-starter and have the ability to think outside of the box to design effective solutions
Must have excellent verbal and written communication skills as this position will interact with senior-level executives.
Security Requirements:
Must be a US citizen and pass a background investigation.
Able to obtain and maintain a DHS Suitability/Entry on Duty (EOD).
ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law.If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at (703) 218-6000. ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services.If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access http://www.mantech.com/careers/Pages/careers.aspx as a result of your disability. To request an accommodation please click careers@mantech.com and provide your name and contact information.
