A federal client of Insight Global is currently seeking an experienced Information Systems Security Manager to provide support for a US international development program in Arlington, VA.
Successful candidate will formulate the approach for the design, test, and implementation of secure operating systems, networks, security monitoring, tuning and management of IT security systems and applications, incident response, digital forensics, and loss prevention actions.
Specific responsibilities include but not limited to:
* Manages a security team consisting of ISSO's, system architects, and documentation specialists
* Provides leadership and work guidance to less experienced personnel
* Responsible for accurate and timely submission of SSO's and corresponding successful ATO completion on multiple systems
* Identifies security risks, threats and vulnerabilities of networks, systems, applications, and new technology initiatives
* Develops, tests, and operates firewalls, intrusion detection systems, enterprise anti-virus systems and software deployment tools
* Provides security validation of complex engineering analysis and support for firewalls, routers, networks, and operating systems
* Performs and evaluates vulnerability scans within a multi-platform, large enterprise environment
* Reacts to and initiates corrective action regarding security violations, attempts to gain unauthorized access, virus infections that may affect the network or other event affecting security
* Oversees user access process to ensure operational integrity of the system
(Additional responsibilities are included in full job description)
- Bachelors Degree in Computer Science, Cyber Assurance, Information Assurance, or another IT related field OR 10+ years experience as an ISSO in lieu of degree
- CISSP, Security+ or equivalent certification
- Active TOP SECRET Clearance
-5+ years of progressive management experience, with references
-10 years of direct functional experience
- Ability to prepare management, business, technical, and personnel reports, reviews, and documents for internal and external use
- 5 years of experience in network, host, data and/or application security in multiple operating system environments
- Experience with the Federal government preferably with DOS or DHS
Other requirements:
* Understanding of, and experience applying industry security policies, regulations, and guidelines such as NIST, FISMA, and SANs top 20 controls, etc.
* Knowledge of change control and change management process, project management, Enterprise Architecture frameworks, SDLC, and Security Policy
* Knowledge of key security capabilities such as e-forensics, logging/SIEM, risk management, PKI, vulnerability management, A&A, continuous monitoring, disaster recovery, network, and endpoint security
* Experience with the federal government, specifically DOS of DHS
* Good communication and presentation skills at all organization levels
* Experience working with IP networking, networking protocols, and understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, electronic mail and access-lists
* Strong analytical and problem-solving skills to troubleshoot and resolve security issues
* Ability to perform and interpret vulnerability assessments and administer security infrastructure
* Experience working with IP networking, networking protocols, and understanding of security related technologies including encryption, IPsec, PKI, VPNs, firewalls, proxy services, DNS, electronic mail and access-lists
*Strong analytical and problem-solving skills to troubleshoot and resolve security issues
* Ability to perform and interpret vulnerability assessments and administer security infrastructure