Information Systems Security Manager (ISSM)

　　SRC, Inc. (https://www.srcinc.com) is seeking an Information Systems Security Manager. The primary responsibility of this role will be to support the GMFA program.

　　What You’ll Do

　　Ensure systems are operated, maintained and disposed of in accordance with internal security policies & procedures as outlined in the system security plan

　　Coordinate with Program and Security leadership to ensure all Program security tasks are executing according to program requirements, schedule, budget and in compliance with USG and SRC security policies

　　Ensure compliance with current cyber security policies, concepts, and measures when designing, procuring, and implementing new Information System(s)

　　Maintaining a working knowledge of system function, security policies, technical security safeguards, and operational security measures. This includes knowledge of program requirements specific to the Information System(s) under oversight

　　Serve as the primary interface between program leads and the Security team to articulate program security requirements and schedules to the IT & Security organization

　　Ensure that all users have the requisite security clearances, authorization need-to-know, and are aware of their security responsibilities before being granted access to Information System

　　Report all security-related incidents

　　Initiate protective or corrective measures when security incident or vulnerability is discovered

　　Develop and maintain a system security plan (SSP)

　　Conduct periodic reviews to ensure compliance with SSP

　　Ensure configuration management for security-relevant IS software, hardware and firmware is maintained and documented

　　Ensure system recovery processes are monitored to ensure security features and procedures are properly restored

　　Ensure all IS security-related documentation is current and accessible to properly authorized individuals

　　Formally notify the appropriate Program and Security leadership when changes occur that might affect accreditation

　　Ensure that system security requirements are addressed during all phases of the system life cycle

　　Follow procedures for authorizing software, hardware and firmware use before implementation on the system

　　Create/provide security education and awareness training to cleared employees

　　Work collaboratively with the site Facility Security Officer (FSO) to provide support when needed

　　What You’ll Bring

　　Bachelor’s degree and 3 or more years related secure information system experience, or any equivalent combination of education, training and experience in lieu of degree

　　Working knowledge of system functions, security policies, technical security safeguards, and operational security measures

　　Willing to obtain U.S. Top Secret security clearance with SAP, SCI eligibility based on Program(s) needs

　　Hold U.S. government security clearances/access approvals commensurate with level of information processed by the system

　　Security+ certification is required

　　Administrative knowledge of Microsoft operating systems

　　Strong documentation skills

　　Strong customer service skills

　　Working experience with RMF, ICD 503, CNSSI 1253, NIST SP 800-53/53A, NISPOM Chapter 8, DAAPM Manual\

　　Ways to Stand Out – Preferred Requirements:

　　Experience with LINUX variants such as Red Hat, CentOS and Ubuntu is preferred

　　D.O.D 8570 IAM level 2 certification, or ability to obtain within 6 months of hire

　　SAP/SAR program experience

　　Experience with DCSA tools such as eMASS, STIGs and SCAP

　　International program security experience

　　What Sets SRC, Inc. Apart? SRC, Inc., a not-for-profit research and development company, combines information, science, technology and ingenuity to solve “impossible” problems in the areas of defense, environment and intelligence. Across our family of companies, we apply bright minds, fresh thinking and relentless determination to deliver innovative products and services that are redefining possible®. When you join our team, you’ll be a part of something truly meaningful — helping to keep America and its allies safe and strong. You’ll collaborate with more than 1,400 engineers, scientists and professionals — with 20 percent of those employees having served in the military — in a highly innovative, inclusive and equitable work environment. You’ll receive a competitive salary and comprehensive benefits package that includes four or more weeks of paid time off to start, 10 percent employer contribution toward retirement, and 100 percent tuition support.

　　Total compensation for this role is market competitive. The anticipated salary range for this position based out of Syracuse, NY is estimated at $85,000 to $95,000 annually. The actual salary will vary based on applicant’s experience, skills, and abilities, geographic location as well as other business and organizational needs. SRC offers competitive benefit options, for more details please visit our website.

　　Equal Opportunity

　　Individuals seeking employment are considered without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, status as a protected veteran, or disability. You are being given the opportunity to provide the following information in order to help us comply with federal and state Equal Employment Opportunity/Affirmative Action record keeping, reporting, and other legal requirements.

　　Learn more about SRC:

　　About Us (https://srcinc.com/about/overview.html) Employee BenefitsDiversity, Equity & Inclusion (https://srcinc.com/about/diversity-inclusion.html) Awards & RecognitionSecurity Clearance (https://srcinc.com/careers/security-clearance.html)

　　Location Syracuse, New York

　　Employment Type Full-Time Salaried

　　Experience Required 3+ Years

　　Education Required Bachelors Degree

　　Security Clearance Requirement Secret

　　Travel % 10