Senior System Security Manager

  • Full-time

Company Description

Ashburn Consulting, a Small Business based in the Washington, DC metropolitan area, specializes in providing network and network security solutions in complex environments to a select set of government and business clients. The company, an established leader in its field, is composed of an elite team of engineers and business consultants, each of whom is recognized —and highly regarded—within the network and security communities.

Job Description

Work under this contract will primarily be performed off-site at the Contractor’s facility or at Contractor permitted telework or remote work locations. The primary place of performance will be the proposed contractor facility. However, contractors will be required to report to the Government location in Arlington, Virginia. Due to limited office space within Government facilities, the Contractor personnel may be required to work from the Contractor facilities when adequate workspace is not available at the Government site.

The Contractor shall be required to attend meetings in Government spaces on an as needed basis. In person meetings could be performed at the following government locations: Arlington, VA & Pensacola, FL. Classified and TS/SCI work will be performed at government facilities in Arlington, VA or Pensacola, FL.

The System Security Manager is the SME responsible for security engineering and the management of the Authorization and Accreditation (A&A) process for each system and application in the cybersecurity solutions portfolio. Leads and manages Agile Cross-Functional teams responsible for designing, developing, testing, deploying, and sustaining new and existing cybersecurity solutions. Oversees deliverables included Required A&A, Security Reports, Bi-weekly System Security Status Reports, and Information Security and Privacy Data Incidents Reports.

a) Coordinates, develops, evaluates, and implements information assurance/security standards, procedures, and recommends mitigation strategies in accordance with NIST 800 series, DHS and other Federal Government security policies and regulations.

b) Collaborates with project teams to achieve and maintain Authority to Operate including resolution of Plan of Actions & Milestones and remediation of vulnerabilities

c) Recommends information assurance/security solutions to support customers’ requirements and identifies, reports, and resolves security violations based upon analysis of user, policy, regulatory, and resource demands

d) Applies know-how to government and commercial common user systems, as well as to dedicated special purpose systems requiring specialized security features and procedures

e) Performs analysis, design, and development of security features for system architectures and develops or updates corresponding system security plans and supporting documentation

f) Performs vulnerability and risk analyses of network, systems and applications throughout the entire system development life cycle and assist with the implementation of countermeasures

g) Strong knowledge in NIST Risk Management Framework, cloud security and strong written and oral communication skills

 

Qualifications

The candidate must be a recognized industry expert in the designated field with a minimum of 20 years’ experience a master’s degree and multiple information technology certifications. Current certifications in at least two of the following:

· ISACA - Certified Information Systems Auditor (CISA)

 · ISACA - Certified in Risk and Information Systems Control (CRISC)

· ISACA - Certified Information Security Manager (CISM)

· ISACA - Certified in Governance of Enterprise IT(CGEIT)

· ISC2 - Certified Information Systems Security Professional (CISSP)

· ISC2 - Certified Authorization Professional (CAP)

 · COMPTIA- Security+

Strong domain knowledge and expertise in one or more technical areas within the work requirements (cyber security, network architecture, Agile/DevSecOps software development methodology, network operations, security operations, infrastructure, IT Service Desk, etc.). Expertise is far-reaching and used to provide leadership and guidance for technical service delivery on numerous projects. Decision making and domain knowledge serves to provide critical direction and impact on project implementations. Interactions include Senior Government and Program Leadership and other personnel as a technical expert.

Requires Active TS/SCI

Requires US Citizenship

Additional Information

Must be able to pass a background clearance investigation

Minimum four-year college degree in related field, or related experience

Ashburn us an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status.

Ashburn Consulting is an Equal Opportunity Affirmative Action Employer.
In compliance with the American with Disabilities Act Amendments Act (ADAAA), if you have a disability and would like to request and accommodation in order to apply for a position with Ashburn Consulting, please e-mail [email protected].”