INFORMATION SYSTEMS SECURITY MANAGER

Sonalysts, Inc. is seeking an Information Systems Security Manager (ISSM) for our Waterford, CT office. What you will be doing:

• Lead assigned Information Systems Security professionals
• Advise and interface with the Corporate Facility Security Officer (FSO) on security considerations in information systems procurement, development and implementation, operation and maintenance, and disposal activities under the Risk Management Framework (RMF) company-wide
• Lead information systems security compliance of classified information systems in accordance with the National Industrial Security Program Operating Manual (NISPOM)/32CFR§117, DCSA Assessment & Authorization Process Manual (DAAPM), DODI 8500.01, and NIST SP 800 (series)
• Supervise team in Identifying, managing, and resolving information system vulnerabilities by performing vulnerability scans, analyzing results, and implementing remediation actions
• Maintain information system security plans, contingency plans, incident response plans, and configuration management plans for all systems under their responsibility
• Monitor day-to-day server and network security operations
• Lead Configuration Control Board (CCB) and configuration management activities for all systems under his/her responsibility
• Serve as focal point on Department of Defense Information Network (DoDIN) connected systems
• Occasionally travel to receive training, complete system installations, and conduct oversight reviews

What's in it for you:

• Salary ranges between $110,000-$140,000, dependent on experience, qualifications and other relevant business criteria.  
• Becoming an integral part of an innovative employee-owned company which includes:
• Flexible Time Program enabling an optimal work-life balance by permitting partners to arrange their work around personal appointments, parent-teacher conferences, children’s activities and the like, so long as the partner gets the job done on-time.
• Paid Time Off
• 401(k) Plan with company match
• Employee Stock Ownership Plan (ESOP)
• Sales Bonus Program
• Special Performance and Retention Bonus Program
• Health and Preventive Dental Insurance
• Dependent Care Assistance Plan
• Health Care Reimbursement Plan
• Employee Referral Bonus Program
• Professional Development through Tuition Reimbursement Program, Online Training Program and Targeted Skills Program
• Relocation Assistance to Southeastern Connecticut, to be in the vicinity of our Waterford, CT headquarters. Southeastern Connecticut offers unlimited waterfront access from restaurants to parks, beaches and downtown areas, hundreds of miles of hiking trails, thrilling nightlife entertainment, fascinating history, and abundance of farms and vineyards with offerings of markets and farm-to-table dinners and is conveniently located at the mid-way point of Boston and New York City and within an hour drive of three major commercial airports.  Visit Southeastern Connecticut for the infamous lobster rolls, apple cider and steamed cheeseburgers and stay for the highly ranked schools, low crime rates and abundance of attractions.

Required qualifications:

• Bachelor’s degree in an Information Technology-related field and 10 years of relevant information systems security experience; OR 12 years relevant Information Systems security experience
• Hold a current DOD Information Assurance Workforce (IAWF) Level II (or higher) IAM or IAT certification(s) (e.g., GSEC, Security , SSCP, CCNA-Security, CISA, CISM, GCIH, GCED, CISSP, CASP)
• Must be a U.S. citizen, possessing an active U.S. Department of Defense (DoD) Final SECRET security clearance*

Preferred, but not required, experience in the following:

• Possessing an active U.S. Department of Defense (DoD) Top Secret Security Clearance*
• Experience with administration of Microsoft Windows Server 2012 R2 (or higher)
• Experience with administration of Microsoft Windows 10 (or higher)
• Experience with Linux OS
• Working knowledge of Microsoft Active Directory, including Group Policy Operations
• Working knowledge of Microsoft SQL server
• A Level III DOD IAWF Certification
• Experience with Enterprise Mission Assurance Support Service (eMASS) system
• Experience creating, maintaining, enforcing, and training Security policies
• Experience communicating security policy and concepts to Leadership
• Experience with security administration of a DOD classified network/information system.
• Experience with network monitoring, testing and troubleshooting tools/utilities
• Experience with vulnerability management to include creating and updating the Plan of Action and Milestones (POA&M) for an information system’s IA package, testing, applying, and verifying software updates and patches from an IA perspective
• Experience with vulnerability scanning tools and techniques (Nessus/ACAS, Nmap, Eye Retina, Nexpose, Metasploit), Security Information and Event Management (SIEM) tools and techniques
• Knowledgeable in the use of scripting languages/tools to automate information system administration and security functions (Shell Script, PowerShell, Python, etc.)
• Experience with Security Content Automation Protocol (SCAP) tools

*Maintaining a U.S. Government security clearance involves periodic comprehensive background checks.  Candidates are eligible for a clearance if they have demonstrated sound financial management (including good credit) over time, are free of criminal records, have limited foreign contacts or ties, and other factors indicative of a position of trust to protect information sensitive to the U.S. Government.

Sonalysts, Inc. is an equal opportunity employer.  All qualified applicants will receive consideration for employment without regard to, and will not be discriminated against on the basis of, race, religion, color, national origin, sex, sexual orientation, gender identity, age, status as a protected veteran, disability, or other basis protected by law.

This job is not available to residents of New York City because of local law restrictions there.

 Drug Testing Employer

 www.sonalysts.com