Information systems security manager job description

Provides support for a system or enclave's information assurance program through security authorization activities in compliance with Risk Management Framework (RMF). This is a part time position. Must be a US Citizen.
Responsibilities


This position description is subject to change at any time as needed to meet the requirements of the program or company.

Maintains operational security posture to ensure information systems (IS) security policies, standards, and procedures are established and followed. Performs auditing, vulnerability/risk assessment analysis to support Assessment and Authorization (A&A). Provides configuration management (CM) for information system security software, hardware, and firmware. Manages changes to the system and assesses the security impact of those changes. Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, A&A packages, and Security Controls Traceability Matrix (SCTM). Applies a full range of Information Assurance (IA) policies, principals and techniques to maintain security integrity of information systems processing classified information. Maintains records on workstations, servers, routers, firewalls, intelligent hubs, network switches, etc. to include system upgrades. Maintains operational security posture for an information system or program. Develops and maintains documentation for A&A in accordance with applicable policies, procedures, and operating instructions. Develops and updates the system security plan and other IA documentation. Provides CM for security-relevant information system software, hardware, and firmware. Assists with the management of security aspects of the information system and perform day-to-day security operations of the system. Provides support for a program, organization, system, or enclave's information assurance program This position requires strong customer service and communication skills in order to effectively interact with the Vectrus staff and sponsor representatives. Overseas remote ISSO/ISSM operations.


Qualifications



Minimum Requirements:


Bachelor's Degree or equivalent Four to six years' of experience in related field Must be a United States Citizen Active Top-Secret clearance required


Certifications Required:


Certified Information Systems Security Professional (CISSP) certification (IAM Level III)


Skills:


Uses up-to-date technical knowledge, skills, and experience to effectively perform jobs and contribute to the success of the department. Takes initiative to lead and supports team members in dealing with change. Displays effective problem-solving skills.


Benefits:


Medical, Dental, Vision, 401(k), Life, AD&D, Short Term Disability, Long Term Disability, and other ancillary plans.


Time off:


Paid Time Off (PTO), Holidays, Bereavement, and Jury Duty
We are committed to an inclusive and diverse workplace that values and supports the contributions of each individual. This commitment along with our common Vision and Values of Integrity, Respect, and Responsibility, allows us to leverage differences, encourage innovation and expand our success in the global marketplace. Vectrus is an Equal Opportunity /Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, age, sex, national origin, protected veteran status or status as an individual with a disability. EOE/Minority/Female/Disabled/Veteran.

A World-Changing Company

At Palantir, we're passionate about building software that solves problems. We partner with the most important institutions in the world to transform how they use data and technology. Our software has been used to stop terrorist attacks, discover new medicines, gain an edge in global financial markets, and more. If these types of projects excite you, we'd love for you to join us.

The Role

Palantir's impact and productivity in the US Government (USG) space depends on our ability to navigate the world of government and industrial security efficiently and responsibly. As the Information Systems Security Manager (ISSM), you own the systems that enable our employees to productively utilize our USG facilities and related enclaves in support of our critical DoD missions. You are responsible for maintaining compliance, building resilient infrastructure, managing access to systems, and partnering with users to address a myriad of problems they may encounter as they build advanced capabilities in support of DoD/IC missions. Our ideal candidate demonstrates a keen instinct for balancing compliance and functionality, has a desire to learn new skills, and a passion for helping others.
Core ResponsibilitiesServe as the subject matter expert for all USG workstation and domain technical operations and compliance.Scale our infrastructure by creatively implementing automated solutions.Collaborate with your fellow ISSMs, ISSOs and FSOs to provide consistent solutions to all of our facilities.Create and manage user-facing guides, POA&Ms, SPPs, ATOs, and other relevant USG documentation.Integrate new hardware and software technologies into our USG infrastructure.STIG/RMF policy knowledge & implementation, including validating compliance via ACAS and other relevant tests.Manage relationships with upstream vendors and sponsors.User account provisioning, deletions, and general LDAP & AD maintenance.
What We ValueActive US Top Secret security clearance with minimum IAT Level 2 certification required.3-5 years experience in a technical role (user support, technical compliance, system administration, etc.) at an accredited USG facility.Demonstrated proficiency in relevant Windows administration tasks including AD, DNS, Group Policy, SCCM/MDT.Comfort managing USG tools including Host Based Security System (HBSS) and the DISA Secure Host Baseline (SHB).Practical experience with automation tools including Powershell.Strong communication and interpersonal skills, with a customer service-oriented mindset.Willingness to contribute across additional critical cross-team functions and projects.
Palantir is committed to promoting a culture of diversity, equity, and inclusion and is proud to be an Equal Employment Opportunity and Affirmative Action employer. We believe that all Palantirians share the responsibility of upholding our commitment to these values and encourage candidates from a wide range of backgrounds, perspectives, and lived experiences to join us in solving the world's hardest problems. Palantir does not discriminate based upon race, religion, color, national origin, gender (including pregnancy, childbirth, or related medical conditions), sexual orientation, gender identity, gender expression, age, status as a protected veteran, status as an individual with a disability, or other applicable legally protected characteristics. Palantir is committed to working with and providing reasonable accommodations to applicants with physical and mental disabilities. Please see the United States Department of Labor'sEEO posterand EEO poster supplementfor additional information.

Palantir is committed to making the job application process accessible to everyone. If you are living with a disability (visible or not visible) and need to request a reasonable accommodation for any part of the application or hiring process, please reach out and let us know how we can help.

**Type of Requisition:** Regular

**Clearance Level Must Be Able to Obtain:** Top Secret

**Public Trust/Other Required:** Other

**Job Family:** Information Security

At GDIT, people are our differentiator. As a Information Systems Security Officer (ISSO) supporting the Department of Energy, developing and implementing information system security programs and ensuring information system security compliance.

As a member of the ISSO Team, perform the following tasks: Draft, review, and update Risk Management Framework (RMF) artifacts required for FISMA Compliance Coordinate with Operations and Maintenance (O&M) teams to drive compliance with Security Controls and requirements.

As an ISSO, you will work with System Owners and controls assessors to draft achievable Plans of Actions & Milestones (POA&Ms) to remediate findings Monitor and reporting on POA&M remediation activities Serve as a Point of Contact (POC) for cyber security questions Advise System Owners on cyber security best practices

Required

EDUCATION AND EXPERIENCE: BA/BS or equivalent, 10+ years of experience Certification in penetration testing or ethical hacking is strongly preferred

Have to be able to obtain security clearance

COVID-19 Vaccination: GDIT does not have a vaccination mandate applicable to all employees. To protect the health and safety of its employees and to comply with customer requirements, however, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.