Principal Information System Security Manager

Posted 2 Days Ago
Be an Early Applicant
Herndon, VA
Senior level
Software
The Role
The Senior Information System Security Manager at CCG manages the Authorization to Operate (ATO) process, develops security artifacts, supports classified environments, and ensures compliance with security policies. This role involves collaboration with project management and engineering teams, performing risk analysis, and implementing automated security practices.
Summary Generated by Built In

Company Overview

CCG delivers solutions to the most challenging problems our nation faces in cyberspace. We combine extensive cyber tradecraft with a principled, innovative, and asymmetric approach to deliver unparalleled results. Excellence is our standard and mission success is our metric.

Role

As a CCG Senior ISSM, you will be directly embedded with Program Management and Developer Team Leads. Additionally, you will be responsible for driving security innovation and implementation as part of the project as a whole. The role also entails the establishment and maintenance of ATO packages and their associated artifacts. We are looking for a passionate information security professional who flourishes at being in the forefront of new ideas and has a desire to learn and apply automated and cutting-edge practices.

*This is an on-site position that will require full time presence in Herndon, Virginia; there is a potential for tele-work within the position.

Responsibilities

  • Manage and develop artifacts as part of a Government Authorization to Operate (ATO), supporting classified cloud, CI/CD, and Infrastructure as Code high risk environments.
  • Create and update artifacts (i.e. SSP, hardware/software lists, PPSM, SCTM).
  • Maintain communication with project management/engineers on the implementation of security controls and policy enforcement.
  • Engage with the security control assessor (SCA) from the authorizing official (AO) office, to negotiate the balance of mission needs and cybersecurity.
  • Support the maintenance of ATO packages in classified areas.
  • Evaluate, develop and/or implement information assurance guidelines and procedures as required.
  • Recommend security solution mitigations and enhancements supporting information assurance guidelines and customer requirements.
  • Perform vulnerability/risk analysis of computer systems and applications during all phases of the system development life cycle.
  • Establish programmatic support plans ensuring the continuing accreditation of mission critical systems.
  • Ensure that all information systems meet or exceed compliance requirements.
  • Identify, report, and ensure the resolution of security violations.
  • Monitor and review the IA needs for classified environments.

Minimum Qualifications

  • Active TS Clearance// SCI with ability to obtain Poly
  • Current DoDM 8570 IAM Level III Certification
  • 8 years of experience working as an ISSM
  • Strong program management skills, the ability to communicate with team members and stakeholders clearly and effectively. Ability to implement programmatics and manage multiple systems, ATOs, and mission requirements while maintaining stakeholder expectations.
  • Has experience, and is confident in, auditing and performing control assessments on Classified, and Cloud systems.
  • Fluent in understanding the Risk Management Framework (RMF)
  • Solid understanding of the System Development Life Style (SDLC)
  • Exceptional verbal, written, interpersonal and presentation skills, customer relationship building skills, analytical skills and ability to lead/mentor teammates
  • Independent and diligent with their assigned work
  • Knowledge of government classified contract requirements from an information security perspective
  • Experience using scanners (i.e. ACAS, Nessus, SonarQube)
  • Demonstrated experience having taken multiple packages from creation to full ATO, and experienced in ISA’s and ATC.
  • Must be eligible for employment in the United States


Preferred Qualifications

  • Certified Information Systems Security Professional (CISSP)
  • Ability to identify needed changes to processes and activities and help to implement continuous improvement solutions
  • Experience working with JSIG system ATOs.
  • Have experience creating various types of vulnerability and assessment scans with multiple tools
  • Experience using eMASS or Xacta


We are an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status.

Top Skills

Acas,Nessus,Sonarqube,Emass,Xacta
The Company
HQ: Herndon, Virginia
127 Employees
On-site Workplace
Year Founded: 2017

What We Do

Chameleon Consulting Group, LLC was founded by a small group of professionals with extensive experience in cyber operations, software engineering, data analysis, and physical operations across DoD and IC. Our foremost focus is on our customers and their mission success. Our goal is to be a trusted partner and "go-to" provider of critical cyberspace mission capabilites and expertise for our customers. Our growing team is comprised of professionals who are experts in their trade and passionate about their work.

As a company, we are committed to providing our employees a rewarding and fun work environment, opportunities for professional and personal development, exciting and meaningful work, and a corporate culture that is their own. Whether you are a potential client or team member, CCG excels at meeting and exceeding your expectations.

Similar Jobs

Alarm.com Logo Alarm.com

Security Engineering Manager

Internet of Things • Software
Tyson's Corner, VA, USA
1100 Employees

STR Logo STR

Systems Administrator

Machine Learning • Security • Software • Analytics • Defense
Arlington, VA, USA
600 Employees

STR Logo STR

Cyber Principal Investigator

Machine Learning • Security • Software • Analytics • Defense
Arlington, VA, USA
600 Employees

Similar Companies Hiring

Jobba Trade Technologies, Inc. Thumbnail
Software • Professional Services • Productivity • Information Technology • Cloud
Chicago, IL
45 Employees
RunPod Thumbnail
Software • Infrastructure as a Service (IaaS) • Cloud • Artificial Intelligence
Charlotte, North Carolina
53 Employees
Hedra Thumbnail
Software • News + Entertainment • Marketing Tech • Generative AI • Enterprise Web • Digital Media • Consumer Web
San Francisco, CA
14 Employees

Sign up now Access later

Create Free Account

Please log in or sign up to report this job.

Create Free Account