At Two Six Technologies, we build, deploy, and implement innovative products that solve the world’s most complex challenges today. Through unrivaled collaboration and unwavering trust, we push the boundaries of what’s possible to empower our team and support our customers in building a safer global future.
Two Six Technologies is growing and we are looking for an Information System Security Manager (ISSM) to support our Corporate team. You will be responsible for maintaining corporate compliance with applicable security regulations and performing all information system security related duties as required at the corporate sites. This entails the design and successful execution of a Risk Management program which exceeds internal and external customer expectations and minimizes risk.
The position will be based out of our Arlington, VA office with local travel to our other sites.
What you will do:
- Establish, document, and monitor the Information Systems Security Program and create related policies and procedures for the facilities.
- Ensure Information System compliance in accordance with the Risk Management Framework (RMF), the National Industrial Security Program Operating Manual (NISPOM) 32 CFR, and the DCSA Assessment and Authorization Process Manual (DAAPM).
- Works with Security team and subcontractors to design and establish a classified network at a corporate facility. Responsible for working with the customer to obtain an Approval to Operate (ATO).
- Responds immediately to security-related incidents and provides a thorough post-event analysis. Reports all incidents to the Security Director, and ensures proper protection or corrective actions have been taken when an incident or vulnerability has been discovered.
- Responsible for establishing supporting policies and procedures required for the certification and accreditation of systems mandated by the Customer or other US Government agency.
- Ensures the deployment of program information security for all program systems meets the program and enterprise requirements, policies, standards, guidelines, and procedures.
- Responsible for conducting self-inspections to ensure that the Information System function is operating as accredited and that accreditation conditions have not changed.
- Responsible for developing and maintaining an Information system security audit and accountability program.
- Communicate with internal team and Government customers to implement solution designs and/or processes in hardware, software, data and procedures.
- Ensure all systems have necessary Approvals-to-Operate and system accreditations are maintained.
What you will need:
- 6+ Years of experience working on a combination of information system security, administration, and management
- Experience implementing, supporting, and leading assessments based on regulatory and governmental control frameworks, including CMMC, NIST SP 800-171/53, and ISO
- Direct experience performing self-assessments, certified audits, passing external assessments, and/or experience managing continuous monitoring technologies/information assurance teams
- Solid understanding of DOD 5220.22M, the National Industrial Security Program Operating Manual, Intelligence Community Directive (ICD) 503 and other security directives as required
- Expert knowledge of Risk Management Framework (RMF) process, eMass and XACTA workflow tools; the National Industrial Security Program Operating Manual (NISPOM) 32 CFR, and the DCSA Assessment and Authorization Process Manual (DAAPM)
- Working knowledge of STIGs
- Excellent communication (written and oral) and customer service skills and ability to collaborate with business stakeholders, solution teams, and others to plan and achieve outcomes
- Strong background in Compliance and Matrix management
- Experience building, leading, and developing teams of professionals who are empowered, inspired, and united to meet current and emerging industry and business demands
- Bachelor’s Degree or applicable Industry Professional Certifications
- Must have an active Top Secret level clearance with the ability to obtain an SCI with poly
What we would like:
- Active TS/SCI w/Poly
- Information Assurance Manager (IAM) IAM Level II certified per DOD 8570.01M
Security Clearance
- Must have an active Top Secret level clearance with the ability to obtain a SCI with poly