Information Systems Security Manager (Government)

Job Description:

This position requires office presence of a minimum of 5 days per week and is only located at customer's site.

AT&T Global Public Sector is a trusted provider of secure, IP enabled, cloud-based, network solutions and professional services to the Federal Government. We are dedicated to recruiting, developing and empowering a diverse, high-performing workforce that is passionate about what they do, committed to our shared values and dedicated to our customers' mission.

TAC2O (Technical Architecture for Command & Control Operations) is Task Order under the ten-year Helios IDIQ. AT&T's TAC2O contract provides a team of IT specialists to operate the DIA headquarters TAC2O system which serves as the collection point for multiple Special Access Programs (SAPs) developed under Helios. These systems deliver their digital information payloads from across the globe and outer-space to the TAC2O platform for processing, integration, correlation and access by Defense Department analysts and decision-makers. The TAC2O system is operated by AT&T specialists and selected AT&T Helios Teammates cleared to support the multitude highly sensitive programs.

AT&T has an opening for a senior information security professional to perform the role of an Information System Security Manager (ISSM) for the ATIP systems in providing managed IT support of SAP-IT systems for high-priority defense intelligence collection needs and develop and field advanced technical collection capabilities.

Job Duties/Responsibilities:

• Provides technical expertise to ensure the network systems meet DIA C&A and IA requirements and are Supervises an Information Assurance (IA) team consisting of ISSE's and ISSO's.
• Serves as the primary interface to the customer technical point of contact for IA subjects relating to the IT systems managed under the contract.
• Principal advisor on all matters, technical and otherwise, involving the security of information systems under purview.
• Responsible for the cybersecurity posture of the environment to include security testing, certification & accreditation, security documentation, and RMF PLUS processes.
• Responsible for Integrity, accreditations, media control, POAMs, STIGs and system hardening, auditing, COMSEC and continuous monitoring.
• Oversee the development, preparation, and submission of accreditation packages and documentation as part of the RMF lifecycle.
• Assist in Authorization and Accreditation (A&A) process using RMF across the design lifecycle for classified systems obtaining and maintaining Interim Authority to Operate (ATO), ATO and Authority to Connect (ATC).
• Interpret and adhere to Intelligence Community Directive (ICD) 503, JSIG, and DAAPM. Oversee and manage vulnerability assessments and security tests and evaluation.
• Provide subject matter expertise and consulting on security related matters for enterprise information system and network architectures, access problems, and implementation of security policies and procedures.
• Optimize system operation and resource utilization and perform system capacity planning/analysis while maintaining the security posture.

Required Clearance:

TS/SCI with Poly (#tssci) (#polygraph)

Required Qualifications:

• Must have detailed knowledge and expertise required to manage the security aspects of an information system.
• Demonstrates strong experience with IC/DoD customer's Assessment and Authorization (A&A) process (e.g., RMF, NIST800-53, ICD503).
• Experience in developing and implementing DoD/DIA approved information security controls, procedures and documentation for the operation of standalone classified systems.
• Must be willing to work full time on customer's onsite and cover classified and Special Access Programs (SAP). No Telework.
• A Bachelor's Degree from an accredited institute in an area applicable to this position and eight (8) years of relevant experience
• An additional four (4) years of relevant experience may be substituted for the bachelor's degree
• Must presently be 8570 compliant (IAM/T Level 3)

Desired Qualifications:

• Experience with the Xacta
• Experience as a Cybersecurity Control Assessor for SAP
• Experience with Ongoing Authorizations and Assessments
• Experience with DevSecOps processes

Our Information Systems Security Manager's earn between $98,100 - $225,000. Not to mention all the other amazing rewards that working at AT&T offers. Individual starting salary within this range may depend on geography, experience, expertise, and education/training.

Joining our team comes with amazing perks and benefits:

• Medical/Dental/Vision coverage
• 401(k) plan
• Tuition reimbursement program
• Paid Time Off and Holidays (based on date of hire, at least 23 days of vacation each year and 9 company-designated holidays)
• Paid Parental Leave
• Paid Caregiver Leave
• Additional sick leave beyond what state and local law require may be available but is unprotected
• Adoption Reimbursement
• Disability Benefits (short term and long term)
• Life and Accidental Death Insurance
• Supplemental benefit programs: critical illness/accident hospital indemnity/group legal
• Employee Assistance Programs (EAP)
• Extensive employee wellness programs
• Employee discounts up to 50% off on eligible AT&T mobility plans and accessories, AT&T internet (and fiber where available) and AT&T phone

Weekly Hours:
40

Time Type:
Regular

Location:
Reston, Virginia

It is the policy of AT&T to provide equal employment opportunity (EEO) to all persons regardless of age, color, national origin, citizenship status, physical or mental disability, race, religion, creed, gender, sex, sexual orientation, gender identity and/or expression, genetic information, marital status, status with regard to public assistance, veteran status, or any other characteristic protected by federal, state or local law. In addition, AT&T will provide reasonable accommodations for qualified individuals with disabilities. AT&T is a fair chance employer and does not initiate a background check until an offer is made.