Information System Security Manager (ISSM) at Vangarde

Vangarde is an equal opportunity employer. All applicants will be considered for employment without attention to race, color, religion, sex, sexual orientation, gender identity, national origin, veteran, or disability status.

Current Opening:  Information System Security Manager (ISSM)

Description:  We are currently seeking an individual with a strong background in cybersecurity and information assurance.  The selected candidate will be responsible for ensuring our customers are well defended against cybersecurity threats by following federal law and government agency policies for securing their information systems.  This position involves:

• Developing, implementing, and enforcing policies and procedures for information Technology (IT) systems
• Collaborating with technical personnel such as cybersecurity engineers, software developers, network administrators, and system administrators to determine cybersecurity needs
• Developing security requirements for IT systems and establishing procurement budgets and instructions
• Recommending resource allocations required to securely operate and maintain cybersecurity requirements
• Participating in IT risk assessments
• Ensuring that software, hardware, and firmware comply with cybersecurity requirements
• Analyzing, documenting, and communicating cybersecurity test results
• Applying the National Institute of Standards and Technologies (NIST) Risk Management Framework (RMF) to federal information systems
• Compiling information to demonstrate compliance with government policies concerning cybersecurity
• Documenting comprehensive configuration management plans for software, hardware, firmware, and peripherals for Information Technology (IT) systems
• Preparing plans and briefings in support of IT systems
• Documenting recommendations for resolution of cybersecurity issues
• Documenting review and audit results for IT system configurations
• Recording minutes for technical meetings
• Preparing technical illustrations, diagrams, and charts
• Creating, maintaining and improving templates used by the Cybersecurity Team
• Ensuring accuracy, completeness, and clarity of documentation
• Documenting assessments of cybersecurity risks associated with information systems according to published policies, standards, and procedures
• Conducting Security Impact Assessments (SIA) as needed to support IT configuration management
• Advising the Authorizing Official (AO) of any changes impacting the IT system
• Providing direction to Information System Security Officers (ISSO), System Administrators, and other technical personnel to support RMF implementation
• Preparing for compliance monitoring activities
• Ensuring that compliance monitoring occurs; review results of monitoring activities
• Assisting with cyber forensics operations if necessary by gathering and preserving evidence related to potential computer crimes
• Recording and tracking cybersecurity risks associated with information systems according to published policies, standards, and procedures

Required Experience and Skills:

• Bachelor’s Degree, preferably in Computer Science, Technical Writing, Information Technology, or related field
• CompTIA Security+ Certification
• Certified Information Systems Security Professional (CISSP) or Associate
  • Or Certified Information Security Manager (CISM)
  • Or GIAC Security Leadership Certificate (GSLC)
  • Or Certified Chief Information Security Officer (C|CISO)
• 3+ years’ experience with RMF methodologies
• 3+ years’ experience with IT security/Information Assurance/Cybersecurity
• 1+ years' experience using the Enterprise Mission Assurance Support Service (eMASS)
• Experience developing briefing materials for management
• Ability to facilitate technical exchange meetings for technical and non-technical personnel
• Windows Operating System Experience
• Experience using Microsoft Word, Excel, Visio, Project, and PowerPoint
• Excellent customer service and communication skills
• Must complete a favorable background check and be eligible for a Secret security clearance

Preferred Experience and Skills:

• We hire veterans – military experience is highly valued
• Familiarity with the U.S. Air Force Standard Desktop Configuration for Windows
• Experience working with the U.S. Air Force as a civilian, contractor, or service member
• CompTIA Network+ Certification
• Certified Information Systems Security Professional (CISSP)
• Certified Authorization Professional (CAP)
• Certified Ethical Hacker (CEH)

Hours:

• Full Time (40 hours per week)
• Flexible hours between 6:00 AM and 6:00 PM, Monday through Friday

Benefits:

Vangarde’s comprehensive benefits package includes:

• Group health care plan
• Dental insurance
• Vision insurance
• Life insurance
• 401(k) plan
• 120 hours of vacation and paid time off