ASRC Federal is a leading government contractor furthering missions in space, public health and defense. As an Alaska Native owned corporation, our work helps secure an enduring future for our shareholders. Join our team and discover why we are a top veteran employer and Certified Great Place to Work™
ASRC Data Networx is seeking an Information System Security Manager (ISSM) for our Cybersecurity System Support (CPSS) contract with a Federal Government Agency. We will provide support to a Cybersecurity Division to leverage proven and successful cybersecurity business models to provide robust cybersecurity operations, continuous monitoring, and compliance and accelerated ATO. The ISSM SME is responsible for establishing, documenting, and monitoring the product line's cybersecurity program implementation as well as ensure compliance with the Risk Management Framework. These individuals serve as the primary point of contact to the CISO and Authorizing Officials (AO) regarding all product line cybersecurity issues.
Work location: Remote Requirements
- Bachelor's degree in a related field
- Five years or more of demonstrated experience as an ISSM supporting the federal government
- Required Certifications
◦ One or more of the following ▪ ISC2 Certified Information Systems Security Professional (CISSP) ▪ ISACA Certified Information Security Manager (CISM) ▪ ISACA Certified Information Security Auditor (CISA) ◦ AND one or more of the following ▪ ISC2 Certified Cloud Security Professional (CCSP) ▪ ISC2 Certified in Risk Governance, and Compliance (CGRC) ▪ CompTIA Cloud+
- Subject-matter expertise in
◦ FISMA reporting ◦ Privacy laws and regulations
◦ NIST RMF
◦ FedRAMP ◦ Cloud security, with an emphasis on Amazon Web Services (AWS) ◦ DHS Binding Operational Directives (BODs)
- Must have good written and verbal communication and other soft skills
- Must be a solutions-oriented team player and must possess a high level of self-initiative
- Successfully complete a government issued background investigation.
Responsibilities
- Review Government systems to ensure compliance with National Institute of Standards and Technology (NIST) Risk Management Framework and all related department and agency policies/procedures
- Audit security systems to ensure compliance to applicable security controls from NIST 800-53
- Review System Security and Privacy Plan (SSPP) within CSAM including control implementation statements
- Provide quality assurance of all security documentation, including risk acceptance requests, that supports assigned system
- Final review of all authorization documents for assigned systems
- Primary liaison between product teams/system owners and the Chief Information Security Officer
We invest in the lives of our employees, both in and out of the workplace, by providing competitive pay and benefits packages. Benefits offered may include health care, dental, vision, life insurance; 401(k); education assistance; paid time off including PTO, holidays, and any other paid leave required by law.
EEO Statement ASRC Federal and its Subsidiaries are Equal Opportunity employers. All qualified applicants will receive consideration for employment without regard to race, gender, color, age, sexual orientation, gender identification, national origin, religion, marital status, ancestry, citizenship, disability, protected veteran status, or any other factor prohibited by applicable law.
United States
