The MITRE Corporation Information Systems Security Manager (ISSM) in Colorado Springs, Colorado
Information Systems Security Manager (ISSM)
Why choose between doing meaningful work and having a fulfilling life? At MITRE, you can have both. That's because MITRE people are committed to tackling our nation's toughest challenges—and we're committed to the long-term well-being of our employees. MITRE is different from most technology companies. We are a not-for-profit corporation chartered to work for the public interest, with no commercial conflicts to influence what we do. The R&D centers we operate for the government create lasting impact in fields as diverse as cybersecurity, healthcare, aviation, defense, and enterprise transformation. We're making a difference every day—working for a safer, healthier, and more secure nation and world. Our workplace reflects our values. We offer competitive benefits, exceptional professional development opportunities, and a culture of innovation that embraces diversity, inclusion, flexibility, collaboration, and career growth. If this sounds like the choice you want to make, then choose MITRE—and make a difference with us.
Provides support for a system or enclave's information assurance program through security authorization activities in compliance with Risk Management Framework (RMF). Maintains operational security posture to ensure information systems (IS) security policies, standards, and procedures are established and followed. Performs vulnerability/risk assessment analysis to support Assessment & Authorization (A&A). Provides configuration management (CM) for information system security software, hardware, and firmware. Manages changes to system and assesses the security impact of those changes. Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, A&A packages, and Security Controls Traceability Matrix (SCTM).
Apply full range of Information Assurance (IA) policies, principals and techniques to maintain security integrity of information systems processing classified information.
Maintain records on workstations, servers, routers, firewalls, intelligent hubs, network switches, etc. to include system upgrades.
Maintain operational security posture for an information system or program.
Develop and maintain documentation for A&A in accordance with applicable policies, procedures, and operating instructions.
Develop and update the system security plan and other IA documentation.
Provide CM for security-relevant information system software, hardware, and firmware.
Assist with the management of security aspects of the information system and perform day-to-day security operations of the system.
Provide support for a program, organization, system, or enclave's information assurance program.
Bachelor’s Degree in one of the following disciplines, Computer Science or Computer Information Systems or Information Systems/Information, Security and Assurance, or similar. The candidate will be fully responsible for deliverables—including definition, completion, and technical quality, as well as assuring consistency across the responsibility span
- In accordance with DoD 8570.01M, the selected individual must meet the requirements of an IAT Level II as a condition of employment.
- Experience with RMF, CNSSI 1253, NIST SP 800-53, and NISPOM. Experience with Security Technical Implementation Guides (STIGs) and Security Content Automation Protocol (SCAP) Compliance Checker (SCC). Knowledge of Information Assurance Vulnerability Alerts (IAVAs). Knowledge and experience with Virtualization, Cross Domain Solutions, and Linux.
Job IT Operations
Primary Location United States-Colorado-Colorado Springs
This requisition requires a clearance of Top Secret/SCI
Travel Yes, 10 % of the Time
Job Posting Mar 6, 2018, 9:58:06 AM
Req ID: 00049628