Information Systems Security Manager | The Guardian

Job: Information Systems Security Manager

Location: Dayton, OH

Who You Are:

From early coding exploits to navigating the evolving landscape of cybersecurity, you've always been the digital sentinel. Your journey began when others were mastering video games, and you were fortifying digital defenses. As an Information Systems Security Manager (ISSM), you're the guardian of the digital realm, crafting security policies and conducting risk assessments with the finesse of a seasoned cryptographer. Your role is akin to a choreographer, orchestrating moves that keep sensitive information pirouetting away from potential cyber threats. Now, armed with your keyboard and a strategic mindset, you're ready to defend the cyber kingdom as the ISSM extraordinaire, ensuring the digital drawbridge stays raised against any would-be invaders.

Join our rapidly growing tech startup in Ohio and take charge as the Information System Security Manager (ISSM), designing, developing, building, and maintaining multiple computer networks. Your role as an ISSM involves building strong relationships, building strong zero-trust networks, and building strong cyber-safe employees to help provide unparalleled technical advances to our customers. This is an exceptional opportunity to help build and shape a company forged to change the future and shape the rest of this century both in the military and commercial sectors.

Who We Are:

Infinity Labs is an innovation-focused company with expertise in modeling, simulation, and analysis (MS&A), research and development (R&D), cyber operational technology, and training. Our project portfolio is exceptionally broad and encompasses a wide spectrum of physical scale and applications (e.g., materials, components, subsystems, platforms, and system of systems). We integrate science and systems as part of our overall solutioning approach, and we investigate advanced concepts and technologies with disruptive application potential. The sophistication of our work directly reflects the ingenuity and proficiency of our team. Our workforce shapes the future, and our employees are our greatest asset.

What You’ll Do:

• Ensuring that all systems are operated, maintained, and disposed of in accordance with security policies and procedures.
• Creating and maintaining all required Information System (IS) security documentation including Systems Security Plans (SSP), Information Assurance Standard Operating Procedures (IA SOP), Continuous Monitoring Plans, Security Control Traceability Matrices (SCTM), Risk Assessments, Plan of Action & Milestones (POA&M), equipment specifications, practices, and procedures.
• Maintaining all necessary Information Assurance (IA) certifications as required by the customer.
• Manage Risk Management Framework (RMF) security packages in eMass to obtain system accreditation.
• Maintaining day-to-day security posture and continuously monitoring classified Information Systems.
• Scheduling, performing, and maintaining records of required IS auditing, patching, maintenance, software/hardware changes, and scanning based on evolving threats/vulnerabilities and customer compliance requirements.
• Developing and conducting test procedures to verify Authorization and Accreditation (A&A) and/or Risk Management Framework (RMF) safeguards to meet requirements based upon JSIG, ICD 705, NIST 800-53, NIST 800-53a, NIST 800-171 & CNSSI 1253.
• Evaluating threats and vulnerabilities to determine the need for supplementary safeguards (e.g., architecture, firewall, data flow, network access, etc.).
• Following customer-approved procedures for sanitizing and releasing system components and media.
• Ensuring that all IS security-related documentation is current and accessible to authorized individuals.
• Conducting periodic reviews to ensure compliance with SSP.
• Understanding customer Security Classification Guides (SCG) to determine classified system requirements.
• Enforcing Configuration Management (CM) policies and procedures for authorizing the use of hardware/software on an IS.
• Ensuring configuration management for security relevant IS software, hardware, and firmware is maintained and documented.
• Maintaining a working knowledge of IS functions, security policies, technical security safeguards, and operational security measures.
• Formally notifying appropriate individuals when changes occur that might affect accreditation.
• Developing, documenting, and delivering classified IS security education, awareness, and training activities.
• Understanding enterprise-level networks and Information Systems.
  
  
  

Qualifications/What You’ll Bring:

• Prior experience with A&A documentation and system authorization.
• Knowledge of federal security requirements and mandates (e.g., RMF, Federal Information Processing Standards (FIPS), National Standards of Information Technology (NIST)).
• Experience with security architectures, firewalls, and network access.
• Experience with risk-managed downloads/Assured File Transfers (AFTs), IS sanitization and destruction, PEDs, contaminations, incident response, virus scanning, privileged user access, and hardware/software configuration management.
• Successful RMF accreditation history for both Windows and Linux systems.
• Excellent oral and written communication skills.
• Strong customer service skills and the ability to work with personnel across all levels of the organization.
• Strong organizational skills and the ability to manage multiple tasks concurrently.
• Ability to work independently as well as follow detailed instructions for completing tasks.
  
  
  

Education/Credentials:

• A minimum of an associate degree in computer science, Information Assurance, Information Security, or related field is required.
• A bachelor’s degree in computer science, IT Management, Cybersecurity, or Information Assurance is preferred.
• CompTIA Security+ Certification.
• US Citizenship is required for consideration, as this job requires a US government security clearance.
  
  
  

Physical Demands:

• Must be able to remain in a stationary position and work on a computer for prolonged periods.
• Must be able to lift and carry or otherwise move up to 25 pounds regularly.
  
  
  

This job description provides a high-level review of the responsibilities of the position. Other job-related duties or requirements may be assigned as necessary.

What We Offer:

As a two-time recipient of the Business of the Year award and a recognized 'Best Places to Work' organization, we prioritize employee well-being and foster a culture that values individuals. Our competitive total rewards package for eligible employees, which includes:

• Comprehensive health benefits encompassing medical, dental, and vision coverage.
• Company-paid disability and life insurance.
• 401(k) plan with guaranteed generous company contribution.
• Paid time-off options including floating holidays, personal time, parental leave, and community service opportunities.
• In-office perks including free parking, complimentary snacks and beverages, and a central office location in Downtown Dayton.
• Investment in employee growth and development through tuition reimbursement and discounted tuition programs with select colleges.
  
  
  

Infinity Labs is an equal opportunity employer, including disability/vets.