Information Systems Security Manager

Location: Wright-Patterson AFB (Ohio)

Clearance Required: Secret

Anticipated Start Date: Immediate

PCI is actively seeking anInformation Systems Security Manager (ISSM) to provide Cybersecurity engineering support to the Contracting Systems located at WPAFB, OH. The ISSM's principal responsibility is successful Security Certification & Accreditation (C&A) of software applications, within planned cost and schedule.

Responsibilities:

  • Researching, developing, implementing, testing, and reviewing hardware/software information security requirements (IAW DoD/NIST RMF) to protect information and prevent unauthorized access. In this role, the ISSE will direct the contracting team on security measures, explain potential threats, implement security measures and monitor applications in order to meet or exceed all DoD/NIST RMF requirements, resulting in faster and more accurate software releases.
  • Support the government program office’s Information Assurance team with Authorization to Operate (ATO) and Authority to Connect (ATC) certifications, required for software releases.
  • Hardening of Operating Systems, applications, and network infrastructure using Department of Defense Security Requirement Guides (SRGs), Security Technical Implementation Guides (STIGs), Defense Security Service Office of the Designated Approving Authority (DSS ODAA) Baseline Technical Security Configurations, and Information Assurance Vulnerability Alerts (IAVA).
  • Reviewing existing system-specific Security Controls Test Matrix (SCTM), Risk Assessment Report, Plan of Action and Milestones (POA&M), System Security Plans (SSP), Application Security and Development Checklists, and other artifacts supporting software certification and accreditation in accordance with RMF and JSIG to identify areas for Enterprise Cybersecurity & Cyber Resiliency opportunities for improvement Develop and maintain architecture diagrams
  • Working closely with the Chief Engineer to establish a system security engineering (SSE) process to plan, organize and manage efforts to achieve maximum system security and survivability.

Qualifications:

  • Bachelor's degree in Computer Science, Information Security, Electrical Engineering or a related scientific /technical discipline and 8+ years of Security Engineering or related experience.
  • Certified Information Systems Security Professional (CISSP) designation.
  • Understanding of DoD 8510, NIST 800.53 Risk Management Framework, and CNSSI 1253.
  • Ability to manage and provide cybersecurity products to multiple project teams executing concurrently, in accordance with each project’s schedule.
  • Excellent written and verbal communication skills
  • Candidate must have an active US security clearance.

PCI Strategic Management is a premier management consulting firm that assists organizations in defining and executing their strategic vision. PCI is a veteran-owned small business providing

professional services, technical solutions, and management consulting primarily to the

U.S. Department of Defense and Intelligence Community Clients.

PCI is headquartered in Columbia, MD and is an Equal Opportunity Employer.