Senior Manager, Cybersecurity & Information Assurance

Engineering Dulles, Virginia Tampa, Florida


Description

Location: Tampa, FL or Dulles, VA

SES Government Solutions is the largest provider of SATCOM based Information and Communication Technology (ICT) solutions to the Federal Government. The Cybersecurity – Information Security Systems Manager (ISSM) will be part of a matrixed Engineering and Technical Operations team.

The ISSM’s primary function will be working within Programs supporting Department of Defense (DoD) agencies executing and leading efforts to ensure system compliance within the Risk Management Framework (RMF) and associated policy, procedures, and guidelines. Maintain the availability and integrity of the environment. Design, integrate, and promote security features, products, and procedures to ensure operational system certification and accreditation. Assess and mitigate system vulnerabilities. In addition, the ISSM would also act as the Subject Matter Expert (SME) for new IA/Cyber proposals and activities for the SES-GS line of business.

 

Job Responsibilities

            Provide leadership, mentoring, and quality assurance for team members as a security expert.

            Must serve as Subject Matter Expert (SME) on system certifications and accreditation matters.

            Point of contact for Information Assurance with internal and external inquiries and concerns.

            Provide review of customer required security plans to include Concept of Operations (CONOPS), Operations Security (OPSEC), standard practices, and procedures.

            Interfacing with Program Management ensuring compliance with established program security plans and customer directives.

            Review, prepare, and update Authority to Operate (ATO) packages in accordance with NIST Risk Management Framework (RMF) and customer policy, procedures, and guidelines.

            Identify and communicate changes that might affect Information System (IS) security authorization status.

            Performing self-inspections and investigations as required by government regulations

            Participating in customer audits and inspections.

            Analyzing, interpreting, and verifying disaster recovery/contingency plans assuring the rapid recovery in the event of an emergency or disaster.

            Manager IAVMs patching program providing weekly status updates to managing organization.

            Developing, revising, and maintaining Plan of Action and Milestones documentation (POA&Ms).

            Participate in the aligning and coordinating of patching and hardening efforts to complement schedules as necessary.

            Developing, revising, and maintaining continuous monitoring plans – schedule frequency and manning.

            Prepare and review DISA Commercial SATCOM Information Assurance Questionnaires (CIAQs), and provide support for proposals as Information Assurance (IA) Subject Matter Expert (SME) as required.

            As member of the Change Control Board (CCB), approve change and configuration requirements in a timely manner.

            Developing, revising, and maintaining all system information security related policies and procedures.

            Preparing internal and external customer reports in a timely manner.

            Update job knowledge by participating in educational opportunities; reading professional publications; maintaining personal networks; participating in professional organizations.

 

Qualification Requirements and Preferences:

            Minimum Bachelor’s (BS) Degree in Computer Science or related field required.

            Minimum of eight (8) years of closely related experience/expertise in Information Assurance/ Cybersecurity Systems Management; Vulnerability Analysis, Mitigation and Management; Systems Auditing, Information Systems or Engineering Management; and/or Security Test & Evaluation.

            Must be a U.S Citizen with an ability to obtain minimum TOP SECRET (TS). TS/SCI desirable. Existing clearance is preferred.

            Must possess CISSP and at least one of the following DoD 8570.01-M required certifications desirable: CISM, CASP, or GSLC.

            Experience conducting Information System (IS) vulnerability scanning (familiarity with Tenable NESSUS and SCTM, SCAP, and eMASS required).

            Must have the ability to work in a dynamic environment and effectively interact with numerous DoD, military/civilian personnel and industry partners.

            Ability to work independently as well as cooperatively in a team-oriented environment.

            Ability to communicate effectively, both orally and in writing with other IT professionals and end-users, and be able to present briefings to executive staff.

            Strong analytical and problem-solving skills.

            Is open and responsive to change and demonstrates a commitment to the process of continuous improvement by identifying and responding actively and with sensitivity to the needs of all customers.

 

SES Government Solutions is an Equal Opportunity and Affirmative Action Employer. SES Government Solutions is committed to workplace diversity, equity & inclusion. We do not discriminate on the basis of race, religion, color, national origin, gender, sexual orientation, age, marital status, veteran status, disability, or any other characteristic protected by local, state, or federal law.