Information Systems Security Manager (ISSM)
Job Description
Business Unit:Cubic DefenseCompany Details:When you join Cubic, you become part of a company that creates and delivers technology solutions in transportation to make people's lives easier by simplifying their daily journeys, and defense capabilities to help promote mission success and safety for those who serve their nation. Led by our talented teams around the world, Cubic is committed to solving global issues through innovation and service to our customers and partners.We have a top-tier portfolio of businesses, including Cubic Transportation Systems (CTS) and Cubic Defense (CD). Explore more on Cubic.com.Job Details:
The role of the Information Security Manager is to provide overall management of security elements of the design, build and operation of regional information security and compliance functions. This position typically works under limited supervision and direction. Incumbents of this position will regularly exercise discretionary and substantial decision-making authority.
Essential Job Duties and Responsibilities:
* Maintains operational security posture to ensure information systems security policies, standards, and procedures are established and followed
* Responsible for obtaining Authorization to Operate (ATO) and overseeing Plan of Action & Milestones (POAM) IAW NISPOM Chapter 8 and DCSA Assessment and Authorization Process Manual (DAAPM)
* Provide technical and procedural Information System (IS) Security advice to government and industrial teams Performing security audits and vulnerability and threat assessments, and directing responses to network or system intrusions
* Ensure Information System Security Officer (ISSO) and System Administrators (SA) receive the necessary technical and security training to carry out their duties
* Perform configuration management for software, firmware, and hardware
* Manage and adequately document changes to information systems and assess the security impact of those changes
* Prepare and review System Security Plans (SSPs), Risk Assessment Reports, A&A packages, Incident Reports, and Security Controls Traceability Matrix
* Perform self-inspections and participate in customer audits
* Maintain repository of all security authorizations for IS under their purview
* Oversee system hardening and testing
* Event log collection, review, analysis, and back ups
* Incident response and mitigation oversight
* Develop and implement an effective IS security education, training, and awareness program
* Completely familiar with the process for eMASS and writing to the controls and providing artifacts for submission to DCSA
This is an on-site position at San Diego HQ, 9/80 work schedule.
Minimum Job Requirements:
Four-year college degree or equivalent in Security, Information Systems, Business, or other related field, plus eight years of industry experience as an ISSO or ISSM with CNSSI 1253, NIST SP 800-53, NISPOM Chapter 8, DCSA Assessment and Authorization Process Manual (DAAPM), and ICD 503 and Intelligence Community Processes.Proficient in configuring Windows 2016/2019, MS Exchange Server 2016/2019, LDAP, Active Directory, and SFTP. Experience with auditing and certifying compliance of various operating systems to include Windows, Linux, and CentOS. Must currently be CompTIA Security+ certified. This position requires an active TOP SECRET clearance. Knowledgeable and experienced in TCP/IP, DHCP, DNS, IDS, and IPS.
Cubic Pay Range:
$115,000 - $174,770 + benefits.
The Cubic pay range for this job level is a general guideline only and not a guarantee of compensation or salary. Additional factors considered in extending an offer include (but are not limited to) responsibilities of the job, education, experience, knowledge, skills, and abilities, as well as internal equity, alignment with market data, applicable bargaining agreement (if any), or other law.
Worker Type:EmployeeCubic is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity/Affirmative Action-Employer, We are committed to ensuring a workplace free of discrimination based on race, color, religion, age, disability, genetic information, sex, sexual orientation, gender identity, or national origin, military or veteran status, and any other basis protected by applicable law
*Please mention you saw this ad on UCareers.*