Information Systems Security Manager (ISSM)

L3Harris Technologies Company, seeking a Information Systems Security Manager (ISSM). This position will oversee the development, implementation, evaluation, and the certification and accreditation of classified information systems.  The ISSM will interface with management, maintain liaison with US Government information assurance, oversight agencies and prime/subcontractors; interpret government and company policy to ensure compliance with Cognizant Security Agency (CSA) requirements for classified information systems and/or networks of varying complexity.  Further, the ISSM will provide information security guidance and direction to program, engineering management and end users, which may include making recommendations on process tailoring; and establish and maintain required training and information security compliance deliverables. This position will be responsible for publicizing and submitting government Risk Management Framework (RMF) compliant, clear and effective written plans, procedures, and instructions; and sustaining compliance with all aspects of government approved plans throughout system and program life cycles. In order to establish and maintain strict program control, process support, analysis support, coordination support, security certification test support, security documentation support, investigations, software research, hardware introduction and release, emerging technology research inspections and periodic audits may be required. This position will report directly to the site Facility Security Officer (FSO) and may assist security management with the preparation of facility accreditation packages and site-specific security plans, including, but not limited to physical security requirements and other assignments as needed. The ISSM may also be required to assist security management in the maintenance and accountability of electronic communication equipment and additional document control.

Essential Functions:

Responsibilities of the ISSM include, but are not limited to:

• Developing, maintaining, and overseeing the system security program and policies for their assigned facility or area of responsibility
• Ensuring compliance with current government security policies, concepts, and measures when working with stakeholders to design and develop new systems
• Developing and implementing an effective information system security education, training, and awareness program
• Management of system Control Change Board (CCB) meetings
• Maintaining a working knowledge of system functions, security policies, technical security safeguards, and operational security measures
• Identifying and mitigating system vulnerabilities based on risk and impact
• Developing, maintaining, and updating Plans of Actions, and Milestones (POA&M) in order to identify system weaknesses, mitigation, and timelines for applying corrective actions.
• Certifying to government Authorizing Officials (AOs) that the requirements and procedures listed within the security plan are in accordance with contractually imposed regulations (NISPOM, NIST SP 800-53, DAAPM, JSIG, etc.).
• Ensuring systems are operated and maintained in accordance with the Security Plan and government issued Authorization to Operate (ATO).
• Ensuring audit records are collected and analyzed.
• Obtaining and maintaining NISP Enterprise Mission Assurance Support Service (eMASS), and/or applicable government system access, in order to effectively manage all security authorizations for systems under their purview.
• Managing, maintaining, and executing the continuous monitoring strategy.
• Conducting periodic assessments of systems and ensuing corrective actions are taken for all vulnerabilities and findings.

Qualifications:

• Bachelor’s with 6 years prior ISSM experience. Graduate Degree with 4 years prior ISSM experience. In lieu of a degree, minimum of 10 years of prior related ISSM experience.

• DOD 8570.1 Certified (Level II or higher); Security+ or Certified Information Systems Security Professional (CISSP) or other applicable 8570.1 certifications required.

Preferred Additional Skills:

• Experience with classified processing environments of varying complexity
• Experience with government compliance, regulations, and standards (NISPOM, DAAPM, RMF, JSIG, NIST 800-53)
• Experience with applicable regulations, practices and requirements of the government, customer, and the Company
• Experience with security requirements, clearances, and procedures
• Experience with applicable network, systems, hardware and software programs
• Experience with various communication protocols
• Experience in good decision-making and analytical skills

L3Harris Technologies is proud to be an Equal Opportunity Employer. L3Harris is committed to treating all employees and applicants for employment with respect and dignity and maintaining a workplace that is free from unlawful discrimination. All applicants will be considered for employment without regard to race, color, religion, age, national origin, ancestry, ethnicity, gender (including pregnancy, childbirth, breastfeeding or other related medical conditions), gender identity, gender expression, sexual orientation, marital status, veteran status, disability, genetic information, citizenship status, characteristic or membership in any other group protected by federal, state or local laws. L3Harris maintains a drug-free workplace and performs pre-employment substance abuse testing and background checks, where permitted by law.

Please be aware many of our positions require the ability to obtain a security clearance. Security clearances may only be granted to U.S. citizens. In addition, applicants who accept a conditional offer of employment may be subject to government security investigation(s) and must meet eligibility requirements for access to classified information.

By submitting your resume for this position, you understand and agree that L3Harris Technologies may share your resume, as well as any other related personal information or documentation you provide, with its subsidiaries and affiliated companies for the purpose of considering you for other available positions.

L3Harris Technologies is an E-Verify Employer. Please click here for the E-Verify Poster in English or Spanish. For information regarding your Right To Work, please click here for English or Spanish.