Overview

SMS is seeking a highly motivated and experienced Information Systems Security Manager (ISSM) in support of a dynamic team at Maxwell AFB, Gunter Annex, AL. The ISSM will support the Senior Security Architect in maintaining the authorization of the systems throughout their lifecycle. The candidate will provide support and technical expertise related to Defense in Depth principles and technology in security engineering designs and implementation. They will manage the Information Assurance team and their work products, ensuring high quality performance and deliverables.

As a dynamic systems integrator, SMS offers proven solutions in engineering, operations, cybersecurity, and digital transformation. With expertise in modernizing and optimizing legacy infrastructure and systems, SMS supports business and mission goals with proficiency, quality, and integrity.

Submit your resume today!

Responsibilities

• Oversee Information Assurance Team’s processes and perform duties as ISSM for the 26 NOS.
• Ensure other IT support personnel monitor all available resources that provide warnings of system vulnerabilities or ongoing attacks.
• Communicate with internal and external project team members to implement solution designs and changes to the organization’s processes, hardware, software, and data.
• Coordinate with personnel on system security compliance and Information System Authority to Operate /Authority to Connect (ATO/ATC).
• Ensure Configuration management policies and procedures for authorizing the use of hardware/software on an IS are followed.
• Coordinate Information Security Reviews, Security Inspections, and Tests Results.
• Assess system security threats/risks.
• Validate system security requirements definitions and analysis.
• Assist PMO with assessment and authorization process as needed.
• Track and validate security incidents, which requires investigating, documenting, reporting, and providing future protective and corrective measures in response to such incidents.
• Lead briefings on system security compliance and Information System Authority to Operate / Authority to Connect (ATO/ATC) compliance, expiration, and actions.
• Implement the Risk Management Framework (RMF) methodology to successfully implement an information technology process which shall effectively protect the element's information assets and its ability to perform its mission.
• Populate and maintain RMF databases (eMass) with bodies of evidence to support system accreditation actions.
• Collaborate with Program Managers, AF Intelligence Community Information Assurance Program Managers, ISSOs, and configuration managers to maintain an effective risk assessment process.
• Ensure data stewardship (confidentiality, integrity, and availability) is established for each IS, and specific requirements are enforced.
• Manage the day-to-day operations and administration of the Information Assurance team.
• Provide leadership and guidance to team members on best practices and expectations of the government customer.
• Responsible for the overall performance of the IA shop and ensuring high quality products and services are being provided.

Qualifications

Qualifications/Requirements:

• Technical degree, Associates or Bachelor’s degree in Computer Science/Information Systems, Science/Engineering/Math.
• Bachelor’s degree preferred from an accredited university in Information Assurance, Information Security Systems, or related fields.
• At least 6 - 8 years’ experience and ability to supervise and direct the work of others and have the ability to serve as a technical team lead.
• Working knowledge of system functions, security policies, technical security safeguards, and operational security measures.
• Senior level industry experience demonstrating and practicing knowledge, skills, and abilities in Information Systems Security.
• Ability to resolve issues quickly and efficiently.
• Strong troubleshooting and customer service skills.
• Strong written and verbal communication skills.
• Experience with SPLUNK and ACAS is a plus.
• Knowledge of CISCO and/or PALO Alto network devices a plus.

Certifications:

• 8570 IAT level III certifications required: CISSP.
• One of the following professional security management certification required: CE/OS Certification
  • CCNA
  • Certified in Governance, Risk and Compliance
  • MS: Administering Information Protection and Compliance

Clearance:

• DoD Top Secret/SCI

SMS is a veteran-owned network integrator established in 1976. At SMS, we place a high value on quality of service, customer satisfaction, and best-of-breed policies and practices.

SMS is an Equal Opportunity Employer.