Principal ISSE

Company: ManTech
Location: Chantilly
Posted on: June 20, 2022

Job Description:

Become an integral part of a diverse team while working at an Industry Leading Organization, where our employees come first. At ManTech International Corporation, you will help protect our national security while working on innovative projects that offer opportunities for advancement. ManTech is looking for a motivated, customer-oriented Principal ISSE in support of a secure Windows based Information System in Chantilly, VA focusing on ManTech in-house and proprietary tools.Responsibilities include, but are not limited to:

• Discover Information System Protection Needs through analyzing the Activity's mission; identifying legal and regulatory requirements; identify classes of threats; determining impacts against risk; identifying security services; documenting the protection needs; and identifying design constraints.
• Define System Security Requirements by developing the system security context, Security Concept of Operations (CONOPs), and Security Requirements Baselines from the gathered Customer and Stakeholder requirements.
• Design System Security Architecture by working with SEs in areas of functional analysis and allocation by analyzing candidate architectures, allocating security services, and selecting security mechanisms. The ISSE identifies components or elements, allocates security functions to those elements, and describes the relationships between the elements.
• Develop Detailed Security Design by analyzing design constraints, analyzing trade-offs, generating detailed system and security design, with life-cycle support consideration.
• Implement System Security from the hands-on approach to participation in a multidisciplinary examination of all systems issues that provides input to the Certification and Accreditation(C&A) process activities.
• Assess Information Protection Effectiveness by focusing on the effectiveness of the information protection whether the system can provide confidentiality, integrity, availability, authentication, and nonrepudiation for the information it is processing that is required for mission success.
• Evaluate Commercial off the Shelf (COTS) and Government off the Shelf (GOTS) technologies - systems, applications, and services -against the Activity's INFOSEC and Cybersecurity requirements and needs.
• Conduct INFOSEC and Cybersecurity assessment testing and reporting in accordance with the RMF and NIST 800 53; identifies deficiencies and documents them as Plans of Actions and
• Milestones (POA&Ms) and provides recommendations for solutions in line with best practices and security industry standards.Basic Qualifications:
  • Requires Bachelor's plus minimum 8 years' experience, or equivalent education/experience.
  • DoD 8570 IAT Level III Certification required (ISC2 CISSP, CompTIA CASP)
  • Shall have 5 or more years of progressive experiencing personally driving Customer and Stakeholder system security requirements gathering exercises to discover, capture, analyze, and decompose the information protection needs such that formal system security requirements can be developed.
  • Shall have 5 or more years of experience in ingesting INFOSEC and Cybersecurity risks and threats, categorizing and classifying the risk and threat, evaluating remediation and mitigation alternatives, proposing, and defending your recommendation, implementing the final remediation, and testing and verifying the implemented remediation/mitigation addresses the identified threat to a Customer acceptable level.
  • Shall have 5 or more years of experiencing with supporting SSE activities in secure processing environments which must adhere to U.S. Government (USG) Information Assurance and Security standards such as the Defense Information Systems Agency (DISA) Security Requirements Guides (SRGs) and Security Technical Implementation Guides (STIGs).
  • Support the Activity's IT Change Management process by performing technical reviews of proposed and planned changes from the context of INFOSEC and Cybersecurity to identify risks and threats and support the remediation or mitigation prior to implementation.
  • Provides SME consulting services and escalated support to all aspects and groups of the Activity's IT organization, Stakeholders, and customer base in the specialty focus of SSE and Cyber Resiliency.
  • Provides mentorship and on the job training (OJT) to junior and/or lesser experienced personnel.Preferred Qualifications:
    • Degree in Computer Science, Cybersecurity, or other cyber discipline.
    • Knowledge and experience using common INFOSEC and Cybersecurity tools in direct support of USG and Department of Defense (DOD) security and compliance efforts such as Tenable Nessus and Security Center, McAfee ePolicy Orchestrator (ePO), DISA's Security Compliance Checker (SCC) and Security Content Automation Protocol (SCAP) content. Experience with Linux, VMWare, and Cisco Operating SystemsSecurity Clearance Requirements:
      • US Citizenship required and active TS clearance adjudicated within the last 6 years
      • Candidate must be willing to submit to a random CI polygraphPhysical Requirements:
        • Must be able to remain in a stationary position 50%.
        • Needs to occasionally move about inside the office to access file cabinets, office machinery, etc.
        • Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer.
        • Often positions self to maintain computers in the lab, including under the desks and in the server closet.
        • Frequently communicates with co-workers, management and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations.
        • May be asked to move Audio/Visual or Computer equipment
        • Must be able to lift to shoulder height and move items, like servers, computers, racks, up to and over 25 pounds with varying dimensions.ManTech International Corporation, as well as its subsidiaries proactively fulfills its role as an equal opportunity employer. We do not discriminate against any employee or applicant for employment because of race, color, sex, religion, age, sexual orientation, gender identity and expression, national origin, marital status, physical or mental disability, status as a Disabled Veteran, Recently Separated Veteran, Active Duty Wartime or Campaign Badge Veteran, Armed Forces Services Medal, or any other characteristic protected by law.If you require a reasonable accommodation to apply for a position with ManTech through its online applicant system, please contact ManTech's Corporate EEO Department at (703) 218-6000. ManTech is an affirmative action/equal opportunity employer - minorities, females, disabled and protected veterans are urged to apply. ManTech's utilization of any external recruitment or job placement agency is predicated upon its full compliance with our equal opportunity/affirmative action policies. ManTech does not accept resumes from unsolicited recruiting firms. We pay no fees for unsolicited services.If you are a qualified individual with a disability or a disabled veteran, you have the right to request an accommodation if you are unable or limited in your ability to use or access http://www.mantech.com/careers/Pages/careers.aspx as a result of your disability. To request an accommodation please click careers@mantech.com and provide your name and contact information.

Keywords: ManTech, Chantilly , Principal ISSE, Other , Chantilly, Virginia