Information Systems Security Manager (ISSM)
: Job Details :

EchoStar has an exciting opportunity for an Information Systems Security Manager (ISSM)/ Information Systems Security Offer (ISSO) in our Hughes Network Systems division to join our team to support various government customers for multiple Defense and Government Systems Division (DGSD) initiatives. The position will provide strategic and tactical day-to-day support for Collateral and Classified activities. This position is located at our headquarters in Germantown, Maryland.Responsibilities:Recommend resource allocations required to securely operate and maintain the DGSD IA requirements.Participate in information system risk assessment during the A&A processOversee cybersecurity and certification of a CUI environment including CMMCDevelop security requirements for hardware, software, and service acquisitions specific to DGSD networksIdentify alternative functional IA security strategies to address DGSD security concerns and develop plans capable of implementation.Evaluate the adequacy of security measures proposed or provided in response to requirements listed in acquisition and operations documentsDevelop and implement programs to ensure systems, network, and data users are aware of, understand, and follow DGSD IA policiesEvaluate IT enclave systems, assess risk posture and system security findings, and recommend mitigation and /or remediation actionsWork with IT network security best practices, applying policies, performing routine IT security scans and generating reportsBasic Requirements:Bachelor's degree in information systems, computer science, cyber security, related technical field or combination of education and experience10 years of overall experience3+ years of experience as an ISSO3+ years' experience using RMF and Incident management and response experienceSecurity+ certification3+ years' experience with computer networking concepts, protocols, and network security methodologies3+ years' experience with and knowledge of DoD and US Government (USG) information system (IS) accreditation and certification policies, standards, and governance, to include NIST FIPS Publications, DoDI 8500.2, and DISA STIGs3+ years' experience in Information security program management and project management principles and techniques3+ years' experience in System administration, network, and operating system hardening techniques3+ years' experience as an advanced user of any Unix/Linux derived operating system3+ years' knowledge of configuring and using Windows Server and WorkstationMust be capable of obtaining and holding a Top Secret U.S. government security clearance Preferred Qualifications:CISSP certificationExpertise in computer networking concepts, protocols, and security methodologies including host & network access control mechanismsWell versed in Risk Management processes (e.g., methods for assessing and mitigating risk) and management of cybersecurity threats and vulnerabilities Knowledge of laws, policies, procedures, or governance relevant to cybersecurity for critical infrastructures and current/emerging threats or threat vectorsPractitioner of cybersecurity best practices used to manage risks related to the use, processing, storage, and transmission of information or dataPractitioner of current industry methods for evaluating, implementing, and disseminating IT security assessment, monitoring, detection, and remediation tools and procedures utilizing standards-based concepts and capabilitiesExperience in Business Continuity and disaster recovery continuity of operations plans, system life cycle management principles, including software security and usabilityExperience facilitating scheduled risk reviews as well as developing custom reports, layouts, and filters; ability to coordinate Project Team meetings Will be eligible for discretionary bonus, with funding based on company performance#LI-CD1#H