Information Sys Security Manager
3 weeks ago
Job Description Overview: Quantum Research International, Inc. (Quantum) provides our national defense and federal civilian and industry customers with services and products in the following main areas: 1) Cybersecurity and Information Operations; 2) Space Operations and Control; 3) Aviation Systems; 4) Ground, Air and Missile Defense, and Fires Support Systems; 5) Intelligence Programs Support; 6) Experimentation and Test; 7) Program Management; and (8) Audio/Visual Technology Applications. Quantum's Corporate Office is located in Huntsville, AL, but Quantum actively hires for positions nationwide and internationally. We pride ourselves on providing high quality support to the U.S. Government and our Nation's Warfighters. In addition to our corporate office, we have physical locations in Aberdeen, MD; Colorado Springs, CO; Shalimar, FL; and Tupelo, MS. Mission: As a member of the NGA DEFENDER Cross Domain Governance team, Information Systems Security Manager supports the Cross Domain Support Office which governs delivery of cross domain capabilities at mission speed, defends NGA's classified networks, enables federated cross domain services, and develops cross domain expertise throughout NGA. Ideal candidate will support the development and maintenance of a Government approved NGA Cross Domain Strategic Plan that includes an Enterprise Cross Domain Service (ECDS) Provider Roadmap, NGA Cross Domain Consolidation Plan, and CDSO Communications Plan. The Contractor shall support the development, maintenance, and implementation of a Government approved Cross Domain Support Office Governance Concept of Operations (CONOPS) with a common, reusable framework for governing all Cross Domain systems in NGA, to include, but not limited to: Standardized Rule Sets for Cross Domain Data Flows and a Cross Domain Filter Policy Catalog and Repository. This position is available immediately and supports the National Geospatial-Intelligence Agency (NGA) offsite in a contractor facility in the National Capitol Region (NCR) near NGA headquarters in Springfield, VA. Responsibilities: Will support the customer CIO as responsible agent for the cybersecurity of a NGA program, organization, system, or enclave. Specific responsibilities include: * Acquire and manage the necessary resources, including leadership support, financial resources, and key security personnel, to support information technology (IT) security goals and objectives and reduce overall organizational risk. * Advise senior management (e.g., Chief Information Officer [CIO]) on risk levels and security posture and cost/benefit analysis of information security programs, policies, processes, systems, and elements. * Collect and maintain data needed to meet system cybersecurity reporting. * Collaborate with stakeholders to establish the enterprise continuity of operations program, strategy, and mission assurance. * Ensure that security improvement actions are evaluated, validated, and implemented as required. * Ensure that cybersecurity inspections, tests, and reviews are coordinated for the network environment. * Ensure that protection and detection capabilities are acquired or developed using the IS security engineering approach and are consistent with organization-level cybersecurity architecture. * Establish overall enterprise information security architecture (EISA) with the organization's overall security strategy. * Evaluate and approve development efforts to ensure that baseline security safeguards are appropriately installed. * Identify information technology (IT) security program implications of new technologies or technology upgrades. * Interface with external organizations (e.g., public affairs, law enforcement, Command or Component Inspector General) to ensure appropriate and accurate dissemination of incident and other Computer Network Defense information. * Interpret and/or approve security requirements relative to the capabilities of new information technologies. * Interpret patterns of noncompliance to determine their impact on levels of risk and/or overall effectiveness of the enterprise's cybersecurity program. * Lead and align information technology (IT) security priorities with the security strategy. * Lead and oversee information security budget, staffing, and contracting. * Manage the monitoring of information security data sources to maintain organizational situational awareness. * Manage the publishing of Computer Network Defense guidance (e.g., TCNOs, Concept of Operations, Net Analyst Reports, NTSM, MTOs) for the enterprise constituency. * Manage threat or target analysis of cyber defense information and production of threat information within the enterprise. * Monitor and evaluate the effectiveness of the enterprise's cybersecurity safeguards to ensure that they provide the intended level of protection. * Oversee the information security training and awareness program. * Participate in an information security risk assessment during the Security Assessment and Authorization process. * Provide leadership and direction to information technology (IT) personnel by ensuring that cybersecurity awareness, basics, literacy, and training are provided to operations personnel commensurate with their responsibilities. * Supervise or manage protective or corrective measures when a cybersecurity incident or vulnerability is discovered and track audit findings and recommendations to ensure that appropriate mitigation actions are taken. Requirements: * Associate's degree or higher desired in an accredited Computer Science, Cybersecurity, Information Technology, Software Engineering, Information Systems, or Computer Engineering; or a degree in a Mathematics or Engineering field. * Knowledge of computer networking concepts and protocols, network security methodologies, and risk management processes (e.g., methods for assessing and mitigating risk). * Experience with laws, regulations, policies, and ethics as they relate to cybersecurity and privacy. * Expertise with assessing the impact of cyber threats and vulnerabilities and the potential impacts of cybersecurity lapses. * Knowledge of encryption algorithms, data backup and recovery, business continuity and disaster recovery continuity of operations plans, and host/network access control mechanisms (e.g., access control list, capabilities list). * Understands cybersecurity and privacy principles used to manage risks related to the use, processing, storage, and transmission of information or data. * Expertise with incident response and handling methodologies, as well as intrusion detection methodologies and techniques for detecting host and network-based intrusions. * Knowledge of how traffic flows across the network (e.g., Transmission Control Protocol [TCP] and Internet Protocol [IP], Open System Interconnection Model [OSI], Information Technology Infrastructure Library, current version [ITIL]). * Understands system and application security threats and vulnerabilities (e.g., buffer overflow, mobile code, cross-site scripting, Procedural Language/Structured Query Language [PL/SQL] and injections, race conditions, covert channel, replay, return-oriented attacks, malicious code). * Experience with server administration and systems engineering theories, concepts, and methods; server and client operating systems; and system software and organizational design standards, policies, and authorized approaches (e.g., International Organization for Standardization [ISO] guidelines) relating to system design. * Knowledge of what constitutes a network attack and a network attack's relationship to both threats and vulnerabilities. * Experience with information security program management and project management principles and techniques, and supply Chain Risk Management Practices (NIST SP800-161). * Expertise with system administration, network, and operating system hardening techniques. * Experience with network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth). * Understands security architecture concepts and enterprise architecture reference models (e.g., Zachman, Federal Enterprise Architecture [FEA]). * Knowledge of network protocols such as TCP/IP, Dynamic Host Configuration, Domain Name System (DNS), and directory services, and penetration testing principles, tools, and techniques. * Knowledge of controls related to the use, processing, storage, and transmission of data. * Ability to translate the organization's core business/mission processes as related to policy. * Knowledge of applicable laws, statutes (e.g., in Titles 10, 18, 32, 50 in U.S. Code), Presidential Directives, executive branch guidelines, and/or administrative/criminal legal guidelines and procedures. * Exposure to external organizations and academic institutions with cyber focus (e.g., cyber curriculum/training and Research & Development). * TS/SCI eligible, subject to CI Polygraph. * IAT, IAM, or IASAE Level 3 Desired/Preferred Skills * Create policies that reflect system security objectives. * Determine how a security system should work (including its resilience and dependability capabilities) and how changes in conditions, operations, or the environment will affect these outcomes. * Evaluate the trustworthiness of the supplier and/or product. * Apply techniques for detecting host and network-based intrusions using intrusion detection technologies. * Ability to conduct administrative planning activities, to include preparation of functional and specific support plans, preparing and managing correspondence, and staffing procedures. * Prepare plans and related correspondence and develop policy, plans, and strategy in compliance with laws, regulations, policies, and standards in support of organizational cyber activities. * Ability to leverage best practices and lessons learned of external organizations and academic institutions dealing with cyber issues. * Ability to communic
-
Senior Information Security Analyst
3 days ago
Fort Belvoir, United States Applied Information Sciences Full timeAs a Senior Information Security Analyst, you are responsible for implementing effective cybersecurity measures, monitoring networks for vulnerabilities, and responding to security breaches. What You'll Be DoingIdentifying and assessing the robustness of security systems and designs, as well as the specific operational impacts of cybersecurity lapses, to...
-
Senior Information Security Analyst
1 week ago
Fort Belvoir, Virginia, United States Applied Information Sciences Full timeIntro: As a Senior Information Security Analyst, you are responsible for implementing effective cybersecurity measures, monitoring networks for vulnerabilities, and responding to security breaches. What You'll Be Doing: Identifying and assessing the robustness of security systems and designs, as well as the specific operational impacts of cybersecurity...
-
Information System Security Engineer
4 weeks ago
Fort Belvoir, United States Ncompass, LLC (SDVOSB) Full timeNcompass, LLC, a Service-Disabled Veteran Owned Small Business (SDVOSB) employing Subject Matter Experts (SMEs) who specialize in the assessment and management of system risk using the National Institute of Standards and Technology (NIST) and Risk Management Framework (RMF) for On-Prem and Cloud-Based systems, is seeking an experienced Information System...
-
Information System Security Engineer
4 weeks ago
Fort Belvoir, United States Ncompass, LLC (SDVOSB) Full timeNcompass, LLC, a Service-Disabled Veteran Owned Small Business (SDVOSB) employing Subject Matter Experts (SMEs) who specialize in the assessment and management of system risk using the National Institute of Standards and Technology (NIST) and Risk Management Framework (RMF) for On-Prem and Cloud-Based systems, is seeking an experienced Information System...
-
Information System Security Engineer
2 weeks ago
Fort Belvoir, United States Ncompass, LLC (SDVOSB) Full timeNcompass, LLC, a Service-Disabled Veteran Owned Small Business (SDVOSB) employing Subject Matter Experts (SMEs) who specialize in the assessment and management of system risk using the National Institute of Standards and Technology (NIST) and Risk Management Framework (RMF) for On-Prem and Cloud-Based systems, is seeking an experienced Information System...
-
Cloud Information Systems Security Specialist
2 weeks ago
Fort Belvoir, United States CACI International Inc Full timeCloud Information Systems Security SpecialistJob Category: Information TechnologyTime Type: Full timeMinimum Clearance Required to Start: NoneEmployee Type: RegularPercentage of Travel Required: NoneType of Travel: None* * * What You’ll Get to Do: CAC is seeking a Cloud Information Systems Security Specialist to be part of an Oracle E-Business Suite...
-
Information System Security Engineer
4 weeks ago
Fort Belvoir, United States LMI Full timeOverviewArmy Data and Analytics Platforms (ARDAP) is seeking a Cybersecurity Information Systems Security Engineer (ISSE) to join a team supporting data and analytics platforms for the US Army. The Cybersecurity ISSE will work with a team of cyber, technical, and program subject matter experts to capture and refine information security requirements and...
-
Information System Security Engineer
3 weeks ago
Fort Belvoir, United States LMI Full timeOverviewArmy Data and Analytics Platforms (ARDAP) is seeking a Cybersecurity Information Systems Security Engineer (ISSE) to join a team supporting data and analytics platforms for the US Army. The Cybersecurity ISSE will work with a team of cyber, technical, and program subject matter experts to capture and refine information security requirements and...
-
Information Systems Security Engineer
5 days ago
Fort Walton Beach, United States DCS Corp Full timeAs a highly motivated and experienced ISSE supporting the USRL at the 513 EWS, the ideal candidate will have a solid understanding of information security concepts, a deep proficiency in security engineering, and be responsible for designing and implementing security systems and procedures of 513th EWS information systems. Essential Job Functions: Design,...
-
Information Systems Security Engineer
3 days ago
Fort Walton Beach, United States DCS Corp Full timeAs a highly motivated and experienced ISSE supporting the USRL at the 513 EWS, the ideal candidate will have a solid understanding of information security concepts, a deep proficiency in security engineering, and be responsible for designing and implementing security systems and procedures of 513th EWS information systems. Essential Job Functions: Design,...
-
Junior Management Analyst
5 days ago
Fort Belvoir, United States Applied Information Sciences Full timeIntro: As a Junior Management Analyst, you will be responsible for preparing, coordination and publishing technical documentation, accomplishing studies and/or business analytics, and assisting management in operating more efficiently and effectively. What You'll Be Doing: Build and maintain effective working relationships with Project Manager, Technical...
-
Senior Information Assurance Manager
1 week ago
Fort Belvoir, United States Parsons Corporation Full timeParsons is hiring an Senior Information Assurance Manager/ Cybersecurity (IA/Cybersecurity) to support a large multi-million dollar Army program in Fort Belvoir, VA.What You’ll Be Doing:Responsible for all aspects of Information Assurance of the developed and implemented system and providing a single point of contact for this functional area.Responsible...
-
Senior Information Assurance Manager
7 days ago
Fort Belvoir, United States Parsons Corporation Full timeParsons is hiring an Senior Information Assurance Manager/ Cybersecurity (IA/Cybersecurity) to support a large multi-million dollar Army program in Fort Belvoir, VA.What You’ll Be Doing:Responsible for all aspects of Information Assurance of the developed and implemented system and providing a single point of contact for this functional area.Responsible...
-
Visual Information Specialist
1 week ago
Fort Belvoir, United States Department Of The Army Full timeSummary About the Position: This position is in the Defense Civilian Intelligence Personnel System (DCIPS). Employees occupying DCIPS positions are in the Excepted Service and must adhere to U.S. Code, Title 10, as well as Department of Defense Instruction 1400.25. This position is...
-
Information Systems Change Manager
2 days ago
Fort Belvoir, United States LMI Full timeOverviewLMI is a consultancy dedicated to powering a future-ready, high-performing government,drawing from expertise in digital and analytic solutions, logistics, and management advisory services. We deliver integrated capabilities that incorporate emerging technologies and are tailored to customers’ unique mission needs, backed by objective research and...
-
Visual Information Specialist
2 weeks ago
Fort Belvoir, Virginia, United States Department Of The Army Full timeSummary About the Position: This position is in the Defense Civilian Intelligence Personnel System (DCIPS). Employees occupying DCIPS positions are in the Excepted Service and must adhere to U.S. Code, Title 10, as well as Department of Defense Instruction This position is located at the US ARMY INTELLIGENCE AND SECURITY CMD OFFICE OF THE CHIEF OF STAFF...
-
SME- Information Technology Project Manager
3 weeks ago
Fort Belvoir, United States Technical and Project Full timeJob DescriptionJob DescriptionJOB SUMMARY The Technology SME - IT Project Manager manages complex projects from planning through delivery. Liaises between project members, cross-functional teams, external vendors, and other stakeholders to ensure deliverables, requirements, schedules, cost, and meeting plans are communicated in support for the U.S. Army...
-
Junior Management Analyst
1 week ago
Fort Belvoir, Virginia, United States Applied Information Sciences Full timeIntro: As a Junior Management Analyst, you will be responsible for preparing, coordination and publishing technical documentation, accomplishing studies and/or business analytics, and assisting management in operating more efficiently and effectively. What You'll Be Doing: Build and maintain effective working relationships with Project Manager, Technical...
-
Senior Software Developer
6 days ago
Fort Belvoir, United States Applied Information Sciences Full timeAs a Senior Software Developer, you are responsible for the development and update of Infrastructure as Code (IaC), creation and development of automation capabilities, and troubleshooting and resolving issues with applications or code. Document software and application defects using a bug tracking system and report defects to software or web developers....
-
Senior Software Developer
2 days ago
Fort Belvoir, United States Applied Information Sciences Full timeIntro: As a Senior Software Developer, you are responsible for the development and update of Infrastructure as Code (IaC), creation and development of automation capabilities, and troubleshooting and resolving issues with applications or code. Document software and application defects using a bug tracking system and report defects to software or web...