Job Title: Information Systems Security Manager (ISSM)

TRISTAR is seeking a Information Systems Security Manager (ISSM) for our upcoming government customer in MacDill AFB, FLThe Information Systems Security Manager (ISSM) will support PEO SDA, USSOCOM Components, TSOCs, and others to include Foreign Military Sales (FMS) as mission dictates, by providing technical and analytical mission planning, execution, and post-mission system supportMission planning is critical to special operations, the mission planning, execution, post-mission system/device will be maintained in a serviceable status to support combat/contingency operationsThe overall goal will be to achieve a system/device availability of 95% and a maintenance turnaround time of less than 24 hours from the time of notification within Continental United States (CONUS) and manned Outside the Continental United States (OCONUS) locationsSupport will be characterized by two (2) levels: Level I (Critical/Urgent) support will be defined as critical or emergency support to the mission planning and execution system/deviceThis level of support will be completed within 72 hours or as mission requirements dictateLevel II (Routine) support will be defined as cyclical support to the mission planning and execution system/deviceThis level of support will be completed within 30 days or as mission requirements dictatePosition ResponsibilitiesPromote system security to include all relevant hardware and software aligned under the Program, is properly configured, and documented, complies with DoD Intelligence Information Systems (DoDIIS) Security Certification and Accreditation guide, and the Defense Information Systems Agency's (DISA) Security Requirement SpecificationsInitiate, review, coordinate, and complete all documents, certifications, and accreditations required for equipment, systems, software, and/or networks associated with the PMO and its associated projectsDevelop and maintain necessary documentation in accordance with government directives and assist in the formation of security test plansConduct security engineering reviews to ensure security mechanisms are built into any new capabilities and upgradesManage the configuration and management release process for each software release/patch as they become available. Coordinate with J62 Cybersecurity accreditors to ensure timely approval of all software releasesAdminister the PMO's security strategy for mitigating security incidents (such as data spillage, unauthorized access, code injection, etc.)Provide risk mitigation recommendations to ensure better security while considering the user's operational needsAssess and enhance current policies and procedures to ensure that security checks are upgraded in line with best practicesEvaluate network security posture by running scans using USSOCOM Information Assurance (IA) standard scanning tools and comparing results against DISA Standard Technical Implementation Guides (STIGS) to determine severity of the findingsProvide results of findings to system engineers and assist their efforts to remediate any negative findings to bring reports into compliance with IA policies and proceduresRequirementsExperience with RMF artifacts, obtaining and maintaining system ATOs, and implementing new and complex technologies at multiple classification levels within large enterprise environmentsExperience performing continuous monitoring and cybersecurity hygiene of a windows domains and network enclavesProblem solving and time management capabilities5 years of experience working with federal/government agencies in sensitive and classified environmentsExperience with Risk Management Framework (RMF), NIST 800-53, DAPPM, and other legal and regulatory guidanceExcellent customer relations and customer support skillsExperience working in a team-oriented, collaborative environmentsMUST be a US CitizenAn ACTIVE Top Secret Clearance with SCI Eligibility is requiredEducation and/or CertificationBachelors Degree in Information Security, Information Technology, or related discipline, or equivalent experience/combined education, with 5+ years of professional experienceMust have and maintain a DoD 8570.01-M (Information Assurance Workforce) IAM level 1 certification (e.g. Security+, GSLC, CISM, or CISSP)About TRISTAR

TRISTAR is a professional services company supporting U.S. Department of Defense programs. Our core competencies include Electronic Warfare, Enterprise Management, Full Spectrum Cybersecurity, Information Technology, Digital Transformation, Software Engineering and Development, Maritime Modernization and Engineering, and Technical Solutions. Founded in March 1995, TRISTAR has built an employee-focused collaborative environment enabling our team of professionals to create and deliver customized solutions to meet mission critical challenges.

TRISTAR provides Equal Employment Opportunities to all employees and applicants for employment and prohibits discrimination and harassment of any type without regard to race, color, religion, age, sex, national origin, disability status, genetics, protected veteran status, sexual orientation, gender identity or expression, or any other characteristic protected by federal, state or local laws.

This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.