Own Your Future. Modern Technology Solutions, Inc. (MTSI) is seeking a Senior Information Systems Security Manager (Sr. ISSM) in Dayton, OH.
Why is MTSI known as a Great Place to Work?
Interesting Work: Our co-workers support some of the most important and critical programs to our national defense and security. Values: Our first core value is that employees come first. We challenge our co-workers to provide the highest level of support and service, and reward them with some of the best benefits in the industry. 100% Employee Ownership: we have a stake in each other's success, and the success of our customers. It's also nice to know what's going on across the company; we have company wide town-hall meetings three times a year. Great Benefits - Most Full-Time Staff Are Eligible for: Starting PTO accrual of 20 days PTO/year + 10 holidays/yearFlexible schedules6% 401k match with immediate vestingSemi-annual bonus eligibility (July and December)Company funded Employee Stock Ownership Plan (ESOP) - a separate qualified retirement accountUp to $10,000 in annual tuition reimbursementOther company funded benefits, like life and disability insuranceOptional zero deductible Blue Cross/Blue Shield health insurance planTrack Record of Success: We have grown every year since our founding in 1993Modern Technology Solutions, Inc. (MTSI) is a 100% employee-owned engineering services and solutions company that provides high-demand technical expertise in Digital Transformation, Modeling and Simulation, Rapid Capability Development, Test and Evaluation, Artificial Intelligence, Autonomy, Cybersecurity and Mission Assurance.
MTSI delivers capabilities to solve problems of global importance. Founded in 1993, MTSI today has employees at over 20 offices and field sites worldwide.
For more information about MTSI, please visit www.mtsi-va.com.
Responsibilities:
The Information Systems Security Manager (ISSM) will serve as information security professional responsible for conducting information system security engineering activities that captures and refines information security requirements and ensures the requirements are effectively integrated into information systems. The candidate shall have the necessary experience to support the customer by independently executing the following tasks:
• Provide technical input, recommendations and assistance with the implementation of both higher and granular-level cyber security approaches, methods and solutions that incorporate and maintain compliance to requirements resulting from laws, regulations and other pertinent guidance.
• Advise the ISO and PSO concerning the impact levels for confidentiality, integrity, and availability for the information systems.
• Evaluate threats and vulnerability to information systems to ascertain the need for additional safeguards.
• Review and approve information system security assessment plan which is comprised of the SSP, the SCTM, and the security control assessment procedures.
• Ensure security assessments are completed for information systems.
• Prepare the final Security Assessment Report (SAR) which includes assessment results and findings, at the conclusion of each security assessment activity.
• Initiate a POA&M with identified weakness and suspense dates for each information system based on findings and recommendations from the sar.
• Evaluate security assessment documentation and provide written recommendations for security authorization to the ao
• Develop recommendation for authorization and submit the security authorization package to the ao.
• Assess proposed changes to information systems, their environment of operation, and mission needs that could affect system authorization.
• Provide purposeful security architecting, design, development, and configuration of information systems.
• Provide inputs to development teams responsible for designing and developing organizational information systems and upgrading legacy systems.
• Employ best practices when implementing security requirements for information systems including software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques.
• Keep abreast of current and new security technologies and threats.
• Research and review proposed new systems, networks, and software designs for potential security risks and impacts; recommend mitigation, countermeasures or other options.
• Identify integration issues related to the implementation of new systems within the existing infrastructure; recommend mitigation and/or resolution options.
Qualifications:
• Minimum of 10 years of relevant DoD work experience
• No less than three (3) years’ experience in a SAP and/or SCI environment within the least five (5) years
• Master of Arts/Master of Science/Master of Engineering (MA/MS/ME) degree
• Must possess an active top secret security clearance, current within five years, based upon a single scope background investigation (SSBI) or SSBI periodic review and be eligible for sensitive compartmented information (SCI) and special access programs (SAP) access
ADDITIONAL NOTES:
• Experience working with platform integrated technology (PIT) is desirable
#LI-DB1
#LI-Onsite