Information system security manager

Overview:

Draper is an independent, nonprofit research and development company headquartered in Cambridge, MA. The 2,000+ employees of Draper tackle important national challenges with a promise of delivering successful and usable solutions. From military defense and space exploration to biomedical engineering, lives often depend on the solutions we provide. Our multidisciplinary teams of engineers and scientists work in a collaborative environment that inspires the cross-fertilization of ideas necessary for true innovation. For more information about Draper, visit

Job Description Summary:

The ISSM 1 supports the Information Assurance (IA) efforts for multiple Department of Defense (DoD) and/or Special Program information systems. The ISSM 1 is familiar with the implementation of NIST SP 800-53 and its application with respect to the DAAPM, JSIG, or ICD 503. The ISSM 1 performs the development, implementation, and evaluation of information system security for assigned programs in compliance with the Risk Management Framework (RMF) as outlined in either the DAAPM, JSIG, or ICD 503. The ISSM 1 will work under the direction of the Cybersecurity Manager and does not manage direct reports.

Job Description:

Duties/Responsibilities

• Use cyber defense tools for continuous monitoring and analysis of systems to identify malicious activity.

• Document and escalate incidents that may cause ongoing and immediate impact to the environment.

• Perform cyber defense trend analysis and reporting.

• Work with stakeholders to resolve computer security incidents and vulnerability compliance.

• Perform risk analysis whenever an application or system is implemented or changed.

• Ensure successful implementation and functionality of security requirements and appropriate IT policies and procedures.

• Perform security reviews, identify gaps in security architecture, and develop a security risk management plan.

• Perform other duties as assigned.

Skills/Abilities

• Ability to configure and review security functions of information systems.

• Ability to conduct security analyses, including security configurations and risk assessments.

• Familiarity working with DoD/IC Security Control Assessors.

• Familiarity with C2G/C2C interconnected systems and/or Wide Area Network (WAN) environments.

• Understanding of virtual environments and containerization tools/technologies.

• Ability to identify systemic security issues based on the analysis of vulnerability and configuration data.

• Ability to apply techniques for detecting host and network based intrusions using intrusion detection technologies.

• Ability to function effectively in a dynamic, fast paced environment.

• Strong interpersonal skills with effective verbal and written communication skills.

• Clear and structured thought processes and coherent decision making skills.

Education

Associates Degree in Computer Science, Cybersecurity, Information Technology or equivalent field of study required.

Experience

Minimum of 1 year of experience as an ISSO or similar, implementing DCSA Assessment and Authorization Process Manual (DAAPM), DoD Joint Special Access Program Implementation Guide (JSIG), and/or Intelligence Community Directive (ICD) 503 Risk Management, Certification and Accreditation requirements.

Additional Job Description:

Applicants selected for this position will be required to obtain and maintain a government security clearance.

Current in scope Top Secret security clearance is required.

Connect With Draper for Future Opportunities! If you don't find the right posting in our Career Opportunities, you may submit your resume for future consideration.

Job Location - City:

Cambridge

Job Location - State:

Massachusetts

Job Location - Postal Code:

02139-3563

The US base salary range for this full-time position is

$95,000.00 - $237,500.00

Our salary ranges are determined by role, level, and location. The range displayed on each job posting reflects the minimum and maximum target salaries for the position across all US locations. Within the range, individual pay is determined by work location and additional factors, including job-related skills, experience, and relevant education or training. Union ranges will be in compliance with the collective bargaining agreement's approved rates by location and role. Your recruiter can share more about the specific salary range for your preferred location during the hiring process. Please note that the compensation details listed in US role postings reflect the base salary only, and does not include bonuses or benefits.

Our work is very important to us, but so is our life outside of work. Draper supports many programs to improve work-life balance including workplace flexibility, employee clubs ranging from photography to yoga, health and finance workshops, off site social events and discounts to local museums and cultural activities. If this specific job opportunity and the chance to work at a nationally renowned R&D innovation company appeals to you, apply now

Draper is committed to creating an inclusive environment. We understand the value of inclusivity and its impact on a high-performance culture. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, national origin, veteran status, or genetic information. Draper is committed to providing access, equal opportunity, and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation, please contact [email protected].