Riverside Research is an independent National Security Nonprofit dedicated to research and development in the national interest. We provide high-end technical services, research and development, and prototype solutions to some of the country’s most challenging technical problems.
 
 All Riverside Research opportunities require U.S. Citizenship.
 

Riverside Research is seeking an Information System Security Manager to administer several classified programs, to include Assessment & Authorization (A&A) requirements. This position functions as an ISSM, responsible for the development and oversight of a comprehensive information security program as identified in applicable customer requirements to include NISPOM, ICD 503/CNSSI 1253, DFARS, NIST 800-53, NIST 800-171, etc.

• Create and maintain A&A packages, System Security Plans (SSPs), Risk Assessment Reports (RARs), Security Controls Traceability Matrices (SCTMs) and Plans of Action & Milestones (POA&Ms) for assigned classified systems
• Establish and administer appropriate security systems, policies, standards, and procedures in compliance with applicable government and corporate directives, guidelines, and contractual obligations
• Conduct analysis and assessment of the security control assessment guidance, procedures, and templates, ensuring correct and uniform implementation of the new RMF based assessment processes
• Configure and validate information system compliance using DISA STIGs, SCAP Compliance Checker (SCC) and STIG Viewer
• Conduct regular audits/CM in accordance with government customer
  requirements
• Provide technical and professional leadership to support personnel, provide oversight for assigned classified system compliance and conduct selfassessments at multiple Riverside Research offices
• Provide CM for security-relevant information system software, hardware and firmware
• Investigate information system security violations and prepare reports with corrective actions and preventative measures.
• Make recommendations regarding tools, trend analysis and applicable network countermeasures
• Interfaces directly with DCSA or other DoD entities to conduct Information System security inspections, tests, and reviews
• Guarantee system security requirements are addressed during all phases of system life cycle
• Ensures system security assessments and audits are completed and documented
• Certify that all Information System authorization documentation is current and
  accessible to authorized individuals
• Other duties as assigned

 

• Active Top Secret/SCI Security Clearance and the ability to obtain and maintain a polygraph
• Education and Experience (preferably as an ISSM/IAM):
  
  • Master’s degree with five (5) years' relevant experience, or
  • Bachelor's degree with seven (7) years' relevant experience, or
  • HS diploma with ten (10) years of information assurance experience
• Above Experience to consist of:
  
  • NIST 800-53 and Risk Management Framework (RMF) based accreditations
  • Working in a classified environment consisting of multiple Collateral, SCI and/or SAP systems
  • Managing multiple projects at one time that could have many tasks within each.
  • Working with Windows operating systems
  • Developing standard operating procedures and system security plans
  • Supervising and mentoring ISSO level team
• Certification Requirements: Current DoD 8570.1-M IAM Level 1
• Self-motivated and possess good written, verbal, listening and presentation skills
• Strong customer service, leadership and team building skills
• Organizational skills to include: attention to detail, time management, ability to multitask and prioritize.

Desired Qualifications:

• TS/SCI Security Clearance (w/Poly)
• Experience with DCSA (NISPOM/DAAPM) preferred.
• Experience with DISA Security Technical Implementation Guides (STIGs),
  SCAP Compliance Checker (SCC) and STIG Viewer preferred.

$105,000 - $170,000 This represents the typical compensation range for this position based on experience, location and other factors.

 
Riverside Research Institute is a not-for-profit, technology-oriented defense company, where service to our customers and support of our staff is our overall mission. Riverside is an affirmative action-equal opportunity employer and complies with all applicable federal, state, and local laws regarding recruitment and hiring.  Riverside offers comprehensive compensation and benefit packages to our employees.
Riverside bases its employment decisions solely on technical experience, qualifications and other job-related criteria related to our organizational purpose as a not-for-profit company, and without regard to race, color, religion, age, sex marital status, sexual orientation, national origin, physical or mental disability, veteran’s status or any other status legally protected by applicable federal, state, and local law.