Information System Security Manager (ISSM) in Patterson, Iowa at Dine Development Corporation

Dine Source is seeking an ISSM to support an Air Force program. We are seeking a motivated cybersecurity professional to join our Cyber team. As a member of our team, you'll create system security plans, make cyber risk decisions, and conduct audits on NIPR systems.

*This position is contingent upon contract award.*

Responsibilities:

• Develops, implements, and maintains data strategies to ensure quality and accessibility
• Develops/maintains the definition and documentation of architectural standards, reference architectures processes, operating models, and logical and physical data/associated data management resources
• Ensure unclassified systems follow DoD and government regulations while still meeting program demands and operating in an accredited state.
• Lead all aspects of SSP development, maintenance, accreditation/re-accreditation, and oversight, including conducting periodic reviews to ensure compliance.
• Work with cybersecurity lead and be a primary contact for IS security inspections, tests, and reviews by oversight authorities.
• Other duties as assigned.

Qualifications:

• Must have an active Secret Clearance
• Have acquired a BS in Computer Science, Cyber Security, or a related field; with 8+years of relevant cybersecurity experience;
• Must have one of the following current certifications: CASP+, CISSP, CISSP Associate, or GSLC.
• Have 3+ years working with the Air Force RMF security frameworks, including DoD and Air Force security policies and instructions.
• Must have the experience and the ability to provide tactical information security advice and manage all Cybersecurity related activities for current or future IT platforms
• Must work in conjunction with a multi-contractor team in support of Cybersecurity, continuous monitoring, and other emerging compliance requirements.
• Must ensure Federal Information Security Management Act (FISMA) requirements are being met and track in the Air Force’s Information Technology Investment Portfolio Suite (ITIPS).
• Must ensure that software, hardware, and firmware comply with appropriate IAVM’s.
• Must track and action POA&M entries as part of the RMF process.
• Experience is required for reviewing and updating STIG results.
• Must ensure Continuous Monitoring is adhered to.
• Must have working experience with Risk Management Framework and NIST 800-53 revision 4 and revision 5 controls
• Must have experience working within eMASS and obtaining an ATO
• Must be familiar with performing Security validation testing through a DevSecOps process and within both on-premises and a Cloud Environment
• Mush have experience with ACAS, utilizing Splunk, reviewing of audit logs, and other cybersecurity monitoring functions
• Ability to identify risks of implementing technology solutions and analyze the impact on achieving desired business outcomes