GDIT has a future opportunity for an experienced Systems Security Manager. Your strategic roadmap for information security will incorporate critical tools for implementing an information security program which will balance compliance with the operational needs and mission-focused goals of the agency.
To succeed in this role, you must have a keen understanding of security engineering best practices, tools, and principles as they are applied to federal agencies leveraging NIST guidance, FISMA, and the Risk Management Framework.
Responsibilities:
Implement a strategic plan for information security
Develop and maintain operational practices for multiple security functional areas
Ensure security compliance with relevant policies and requirements
Ensure that all IT security functions are routinely inspected and reported
Implement physical and logical security plans consistent with federal security policies and industry standards / practices (e.g., FISMA, NIST, ISO)
Manage, implement, and oversee security patching processes
Participate in and support periodic security audits
Implement and coordinate incident response plans
Supervise assigned security staff, including subordinate managers, and performs personnel actions including hiring and performance evaluation
Required:
B.S. in Computer Science, Information Technology Management or Engineering or related Or
Four years of related experience may be substituted for the education degree requirement established for this key personnel function.
Minimum 5 years of experience analyzing information security systems and applications and recommending and developing security measures to protect information against unauthorized modification or loss.
Understanding of, and experience in applying, Federal Information Processing Standards (FIPS) and National Institute of Standards and Technology (NIST) Special Publications (800 series) on Computer Security.
Experience in vulnerability analysis, security evaluation and testing, certification and accreditation, and incident reporting and remediation.
Experience leading application and system security initiatives and providing technical expertise in designing secure public-facing and internal-facing services and APIs.
Experiencing authoring, editing, and maintaining design documentation, standard operating procedures, and system configuration documentation.
Certified Information Systems Security Engineering Professional (CISSP) or equivalent.
Location: Raleigh / Durham/ Research Triangle Park, NC
Timeline: This is a contingent position expected to begin in February 2025.
GDIT IS YOUR PLACE:
● 401K with company match
● Comprehensive health and wellness packages
● Internal mobility team dedicated to helping you own your career
● Professional growth opportunities including paid education and certifications
● Cutting-edge technology you can learn from
● Rest and recharge with paid vacation and holidays