Information Security Systems Manager (ISSM)

• Must be a US citizen with the ability to obtain/maintain a DoD Secret security clearance

• Develop RMF package documentation required for ATO-submission in accordance with DoD/NAVSEA directives, which includes the following components:
  • Platform IT (PIT) Determination package documentation
  • System Categorization Form
  • System Level Continuous Monitoring Strategy (SLCM)
  • Security Plan (SP)
  • Step Concurrence forms
  • Plan of Actions and Milestones (POA&M)
  • Security Assessment Plan (SAP)
  • Security Assessment Report (SAR)
  • Risk Assessment Report (RAR)
  • Security Authorization Package
  • CYBERSAFE Certification
  • Package Endorsement Letters
• Ensure RMF A&A package is submitted to the Certification Authority (CA) in sufficient time for its review and operational cybersecurity risk recommendation to obtain Designated Accrediting Authority (DAA) authorization decision
• Follow the published Navy, NAVSEA Business Rules, and PIT Validation guidance when preparing C&A packages.
• Coordinate with the appointed Navy Validator throughout the package creation and processing to ensure compliance with stated regulations to help ensure an efficient package-submission that results in ATO
• Develop and maintain a Plan of Action and Milestone (POA&M) for all IA-related tasks and deliverables in accordance with the Security Technical Implementation Guide (STIG)
• Develop Risk Assessment Reports (RARs) based on vulnerability test results, automated scan reviews, Assured Compliance Assessment Solution (ACAS) scans, and other DoD-mandated assessment-utilities.
• Document A&A-information in the A&A Package consistent with all other Packages, and ensure that there are no omissions
• Input reports in eMass, or deliver in MS Office-products/Visio formats, as appropriate
• Adhere to strict milestone timelines and project / package submission dates
• Support weekly program / package status briefings as needed

• Bachelor's Degree or equivalent experience
• Must have an active CompTIA Security+ certification (or equivalent)
• At least two (2) years' experience RMF package creation.
• Familiarity with US Navy shipboard systems a plus
• DoD contracting experience a plus
• Strong comfort level interacting with senior personnel, multiple stakeholders, and uniformed personnel as required
• Strong adherence to and keen attention to details
• Excellent communication up-and-down the chain of command
• Demonstrated Pro-active, "Can do” approach while maintaining flexibility to perform peripheral duties to address tasking appropriately

• Minimal travel required
• Regular physical activity to include walking, climbing stairs, bending, stooping, reaching, lifting (up to 30 pounds), and standing; occasional prolonged sitting
• Ability to speak, read, hear and write, with or without assistance
• Ability to use phone and computer systems, copier, fax and other office equipment

• Affordable Medical/Dental/Vision Plans for employees and their families
• Free Employee Life and Disability Insurance, with supplemental coverage options available
• Health Savings Account and Flexible Savings Account options
• Company matched 401(k) & company-funded Employee Stock Ownership Program (ESOP)
• Paid Vacation, Holiday, Sick Leave
• Continuing Education and Professional Development programs at all levels
• Flexible Schedules and Relaxed Dress Code
• Employer-sponsored events, social collaboration, and open communication
• Free access to an extensive online training library, including certification prep
• Bonus Program for outstanding contributions, Employee Referral Program, numerous Recognition Opportunities, and more…

Last updated on Sep 27, 2023