Information System Security Manager

Modern Technology Solutions Inc. (MTSI) is seeking a Subject Matter Expert (SME) Information System Security Manager (ISSM) to join our team in the Colorado Springs, CO area in support of U.S Space Force (USSF). You will be responsible for maintaining compliance with applicable security regulations and leading the Information Assurance program for various classified Information Systems (ISs) across USSF. This position requires an active Top Secret clearance with SCI eligible. Why is MTSI known as a Great Place to Work? Interesting Work: Our co-workers support some of the most important and critical programs to our national defense and security. Values:  Our first core value is that employees come first. We challenge our co-workers to provide the highest level of support and service, and reward them with some of the best benefits in the industry.  100% Employee Ownership: We have a stake in each other's success, and the success of our customers. It's also nice to know what's going on across the company; we have company wide town-hall meetings three times a year. Great Benefits - Most Full-Time Staff Are Eligible for:  Starting PTO accrual of 20 days PTO/year + 10 holidays/yearFlexible schedules6% 401k match with immediate vestingSemi-annual bonus eligibility (July and December)Company funded Employee Stock Ownership Plan (ESOP) - a separate qualified retirement accountUp to $10,000 in annual tuition reimbursementOther company funded benefits, like life and disability insuranceOptional zero deductible Blue Cross/Blue Shield health insurance plan Track Record of Success:  We have grown every year since our founding in 1993 Modern Technology Solutions, Inc. (MTSI) is a 100% employee-owned engineering services and solutions company that provides high-demand technical expertise in Digital Transformation, Modeling and Simulation, Rapid Capability Development, Test and Evaluation, Artificial Intelligence, Autonomy, Cybersecurity and Mission Assurance. MTSI delivers capabilities to solve problems of global importance. Founded in 1993, MTSI today has employees at over 20 offices and field sites worldwide. For more information about MTSI, please visit. Responsibilities: As the Subject Matter Expert (SME) Information System Security Manager (ISSM) with MTSI you will be responsible for maintaining compliance with applicable security regulations and leading the Information Assurance program for various classified Information Systems (ISs) across U.S Space Force (USSF). You will work within Special Access Programs (SAPs) supporting Department of Defense (DoD) agencies, such as HQ Air Force, Office of the Secretary of Defense, and Military Compartment efforts. The position will provide “day-to-day” support for Collateral, Sensitive Compartmented Information (SCI) and Special Access Program (SAP) activities. This position will be located in the Colorado Springs, CO area. Your essential job functions will include but will not be limited to: Maintaining a repository of security documentation including Systems Security Plans, Information Assurance Standard Operating Procedures, Continuous Monitoring Plans, Security Control Traceability Matrices, Risk Assessments, Plan of Action & Milestones (POA&M), equipment specifications, practices, and procedures. Developing and implementing a security assessment plan. Performing risk assessments and making recommendations to DoD agency customers. Advising government program managers on security testing methodologies and processes. Scheduling, performing, and maintaining records of required auditing, patching, maintenance, software/hardware changes, and scanning. Developing, reviewing, endorsing, and recommending action to the AO or AODR pertaining to system assessment documentation. Ensuring approved procedures are in place for clearing, sanitizing, and destroying various types of hardware and media. Maintaining a repository for all system authorization documentation and modifications. Developing policies, procedures, and corrective measures for responding to and reporting security incidents and violations. Ensuring proper protection or corrective measures have been taken when an incident or vulnerability has been discovered within a system. Developing and conducting test procedures for verification Assessment and Authorization (A&A) and RMF safeguards to meet customer requirements based on DoD, Federal, and organizational cybersecurity requirements.  Employing customer-approved procedures for sanitizing and releasing system components and media. Maintaining a repository of security authorizations for ISs under the program office’s purview. Assessing changes to an IS by performing periodic self-inspections, tests, and reviews of the IS program to ensure that systems are operating as authorized/accredited. Ensuring corrective actions are taken for identified findings and vulnerabilities. Maintaining a working knowledge of IS functions, security policies, technical security safeguards, and operational security measures. Coordinating with the Program Security Officer (PSO), Program Security Representative (PSR) and Contractor Program Security Officer (CPSO) to define, implement and maintain information security policies, strategies, and procedures. Implementing policies and procedures for responding to security incidents, and for investigating and reporting security violations and incidents. Ensuring the development, documentation, and presentation of classified IS security education, awareness, and training activities. Qualifications: 14+ years or more of experience in Cybersecurity (ISSO, ISSE, ISSM) or related discipline. Minimum of five (5) years of experience in SAP, SCI, or Collateral Information Systems (IS). Knowledge of cyber tools such as SIEM, vulnerability detection, scripting languages and/or programming languages. Able to demonstrate understanding of cybersecurity needs of systems at various stages of the system development life cycle. Experience with A&A documentation and system authorization artifacts for Special Access Program (SAP) and Secure Compartmentalized Information (SCI) systems. Knowledge of federal security requirements and mandates (, RMF, Federal Information Processing Standards (FIPS), National Standards of Information Technology (NIST)) Experience with Assured File Transfers (AFTs), IS sanitization and destruction procedures, PEDs, contaminations, incident response, virus scanning, privileged user access, and hardware/software configuration management. Excellent oral and written communication skills. Strong customer service skills; being able to work with personnel across multiple disciplines of the organization. Strong organizational skills and ability to manage multiple tasks concurrently. Ability to work well independently or as a team member. Working knowledge of cloud development tools such as GitLab, Artifactory, JIRA & SonarQube. A successful candidate should be a self-starter who possesses initiative, excellent communication skills, the ability to lead diverse teams, to collaborate effectively with cross-functional teams, and a proven problem solver. Qualifications Desired: N/A. Education Requirements: Bachelor’s or Master’s degree in information technology or related technical field. Certifications Requirements : DoD 8140.03 "Cyberspace Workforce Qualification and Management Program". Clearance Requirements : Top Secret, SCI eligible. SAP eligibility is HIGHLY desired. (Counterintelligence Polygraph may be required). Travel Requirements : Place of work is Colorado Springs, CO area, remote work opportunity is limited. May require travel up to 40% of time within the continental United States. Compensation: The pay range for this position in Colorado is $170,000/year to $190,000/year; however, base pay offered may vary depending on established government contract rates, job-related knowledge, skills, and experience, and other factors. MTSI also offers a full range of medical, financial, and other benefits, dependent on the position offered. This information is provided per the Colorado Equal Pay Act. Base pay information is based on market location. Applicants should apply via MTSI’s internal or external careers site. For additional company information, please visit: