ISSO Principal with Security Clearance
Company: ManTech International Corporation
Posted on: November 11, 2018
Entering ManTech---s 50thyear, we hold the distinct honor of being named a ---Top 100 Global TechnologyCompany--- by Thomson Reuters. We have earned this and many other accolades overthe years for our dedication to serving the missions of our nation---s most importantcustomers: U.S. Intelligence, Defense and Federal Civilian agencies. All knowus as a trusted partner offering best-in-class solutions in cyber, datacollection & analytics, enterprise IT, and systems and software engineeringtailored to meet their specific requirements. Become an integral partof a diverse team in the Mission, Cyber and Intelligence Solutions (MCIS)Group. Currently, ManTech is seeking a motivated, mission-oriented Senior ISSO ,in Reston , with strong Customer relationships. At ManTech, you will helpprotect our national security while working on innovative projects that offeropportunities for advancement. The Federal SecuritySolutions (FSS) Division provides cyber solutions to a wide range of Defenseand Intelligence Community customers. This division consists of a team oftechnical leaders that deliver advanced technical solutions to governmentorganizations. Our customers have high standards, are technically adept,and use our products daily to support their mission of protecting nationalsecurity. Our contributions to our customer---s success is driving our growth. Responsibilities: * Serve as the ManTech ISSO for a DHS solution being offered from an off-premise private cloud. * Work closely with the DHS ISSO and the DHS NPPD office to address all Plans of Action and Milestones (POA&Ms). * Submit Infrastructure Change Requests and Security Impact Analyses for any changes that need to be performed on the Shared Services Platform. * Conduct periodic scans of the Shared Services Platform using Tenable Nessus on agreed upon time frames and provide the results to the DHS Security team. * Work with the Engineering and Operations teams to address issues identified in the scans in a timely manner. * Interface with the Engineering and Operations personnel to provide ongoing security-related guidance. * Implement/maintain a strategy for continuous monitoring including: establishing system audit trails and ensuring their review, reporting all identified security findings and initiating the periodic review of security controls * Ensure security awareness and precautionary measures are exercised to prevent introduction and/or proliferation of malicious code or other adverse operational conditions. This includes exercise of continuity and/or disaster recovery plans, as required * Monitor operations processes, including but not limited to, the Incident Response Process and Communications Process to ensure that they are followed properly. * Provide prompt feedback to Engineering and Operations personnel in a timely manner and provide ongoing education on security protocols and procedures * Ensure that system security requirements are addressed throughout the project and system lifecycle * Ensure controls and processes are in place and working effectively to maintain a strong system security posture. Qualifications andEducation/Certification Requirements: * 5+ years of experience in InfoSec and B.S. in Information Technology or InfoSec desired. (4 years of relevant work experience may be substituted for B.S, for a total of 9+ years of experience). * Security+ certification required * Demonstrated experience writing information system security documentation (SSPs, POA&Ms, PTAs, PIAs, CMPs, CPs, and IRPs). * Demonstrated experience conducting information system security controls assessments (SCAs) and applying standard auditing techniques during system security controls assessments, including proper interpretation of control requirements, determining if the artifacts provided are sufficient, and recommending remedial actions to the customer and team to ensure compliance. * Extensive knowledge and experience with information security standards, policies and practices - NIST (800-53 rev4), FISMA, DHS 4300A. * Knowledge of information security engineering, design concepts and principles. * Knowledgeable with the Systems Development Lifecycle (SDLC) and continuous monitoring methodologies. * Extensive experience analyzing information technology and system risk in complex environments and articulating results (verbal/reports) to all levels of management. * Ability to research and address information security issues as required as an authority on the subject. * Experience using vulnerability assessment tools (NESSUS, AppDetective, etc.), analyzing and interpreting assessment results, and developing POA&Ms to remediate findings. * Must have excellent written communication skills as the candidate's job will include written interaction with senior- level executives. Desired Skills: -- Industrycertifications, such as CISSP, CISA, CAP are preferred. -- Exceptionalinterpersonal and verbal communication skills, with the ability to collaborate wellacross teams and organizations. -- Provenability to multi-task and deliver on time with the highest quality. Security Requirements: -- Applicants selected will be subject to a government securityinvestigation and must meet eligibility requirements for access to classifiedinformation. Must be able to obtain DHS EOD. Dept of Homeland Security
Keywords: ManTech International Corporation, Reston , ISSO Principal with Security Clearance, Other , Reston, Virginia
Didn't find what you're looking for? Search again!