Information Systems Security Manager (ISSM) - Active Security Clearance Required

Company Description

• Lead the preparation, coordination, reviewing, and maintaining of Body of Evidence (BOE) artifacts to include System Security Plans (SSPs), and POA&Ms under the Risk Management Framework (RMF) to attain and uphold system accreditation through government sponsors.
• Coordinate cybersecurity requirements for existing and new systems with Department of Energy (DOE) IN-40, Department of Defense (DoD), and other agencies to ensure mission accomplishment and the protection of sensitive information.
• Have a strong knowledge of Community Directives (ICDs), DoD Manuals, Federal security regulations and company security policies and procedures to ensure the efficient operation of the Cyber Security Program.
• Ensure that personnel are trained on the system's prescribed security restrictions and safeguarding procedures.
• Assess and mitigate system security threats and risks.
• Perform and analyze security audits for nonstandard events to ensure security posture integrity.
• Conduct continuous monitoring activities on assigned information systems.
• Work with sponsors and Contracts and Operations to ensure compliance with contract/subcontract security requirements.
• Perform other duties as assigned.

• Design and architect systems in compliance with external customer requirements and programmatic needs.
• Represent LLNL's Field Intelligence Element at external customer sites in as Cyber Security Engineer.
• Supervise ISSO's and other Cyber Security Personnel.

• This position requires an active Department of Energy (DOE) Q-level clearance or active Top-Secret clearance issued by another U.S. government agency at the time of hire.
• Bachelor's degree in computer science, engineering, business, information systems, or related field or the equivalent combination of education and related experience.
• DoD Approved 8570 Information Assurance Manager (IAM) Level II or III Certification: CAP, CISSP, GSLC, CISM, or CASP+ CE.
• 5+ years of experience as an ISSO and/or ISSM to include experience as a cleared DOD contractor working in corporate/government environments overseeing and managing classified systems under NISPOM Chapter 8, DCSA Assessment and Authorization Process Manual (DAAPM), Intelligence Community Directive (ICD) 503 and/or National Institute of Standards and Technology (NIST) 800-53.
• Thorough understanding of the Risk Management Framework and experience authoring and/or maintaining BOE artifacts in support of Assessment and Authorization.
• Experience leading and conducting internal audits, participating in Government assessments and inspections, investigating and mitigating areas of risk or non-compliance.
• Effective verbal and written communication skills with the ability to offer experienced guidance to executive staff, customers, and subcontractors.

• Significant experience working on SIPP projects with non-DOE government sponsors.
• Significant experience with obtaining ATOs for IT systems under DoD/DCSA cognizance.
• Advanced knowledge of and significant experience with DISA STIGs and SCAP Compliance Checker and applying LLNL, DOE, DoD and IC practices, policies and security requirements in a classified environment.

• COMSEC account management or opening new COMSEC accounts per sponsor requirements.
• 10+ years of experience as a Cyber Security Professional.

• Included in 2020 Best Places to Work by Glassdoor!
• Work for a premier innovative national Laboratory
• Comprehensive Benefits Package
• Flexible schedules (depending on project needs)
• Collaborative, creative, inclusive, and fun team environment