Information System Security Manager (ISSM)

Riverside Research is an independent National Security Nonprofit dedicated to research and development in the national interest. We provide high-end technical services, research and development, and prototype solutions to some of the country’s most challenging technical problems.

Job Number: 1116

Riverside Research is seeking an Information System Security Manager to administer Riverside Research’s Collateral programs, to include Assessment & Authorization (A&A) requirements. This position functions as an ISSM, responsible for the development and oversight of a comprehensive information security program as identified in applicable customer requirements to include NISPOM, ICD 503/CNSSI 1253, DFARS, NIST 800-53, NIST 800-171, etc.

All Riverside Research opportunities require U.S. Citizenship.

Job Responsibilities:

• Create and maintain A&A packages, System Security Plans (SSPs), Risk Assessment Reports (RARs), Security Controls Traceability Matrices (SCTMs) and Plans of Action & Milestones (POA&Ms) for assigned classified systems
• Establish and administer appropriate security systems, policies, standards, and procedures in compliance with applicable government and corporate directives, guidelines, and contractual obligations
• Conduct analysis and assessment of the security control assessment guidance, procedures, and templates, ensuring correct and uniform implementation of the new RMF based assessment processes
• Configure and validate information system compliance using DISA STIGs, SCAP Compliance Checker (SCC) and STIG Viewer
• Conduct regular audits/CM in accordance with government customer requirements
• Provide technical and professional leadership to support personnel, provide oversight for assigned classified system compliance and conduct self-assessments at multiple Riverside Research offices
• Provide CM for security-relevant information system software, hardware and firmware
• Investigate information system security violations and prepare reports with corrective actions and preventative measures.
• Make recommendations regarding tools, trend analysis and applicable network countermeasures
• Interfaces directly with DCSA or other DoD entities to conduct Information System security inspections, tests, and reviews
• Guarantee system security requirements are addressed during all phases of system life cycle
• Ensures system security assessments and audits are completed and documented
• Certify that all Information System authorization documentation is current and accessible to authorized individuals
• Supervisor/mentor Information System Security Officers.
• Other duties as assigned

Required Qualifications:

• Active Secret Security Clearance
• Education and Experience (preferably as an ISSO/ISSM/IAM):
  • Master’s degree with five (5) years' relevant experience, or
  • Bachelor's degree with seven (7) years' relevant experience, or
  • without a degree, ten (10) years of information assurance experience
• Experience with NIST 800-53 and Risk Management Framework (RMF) based accreditations
• Experience to include working in a classified environment consisting of Collateral, SCI and/or SAP
• Knowledge of computer operating systems (Windows, Linux)
• Experience developing standard operating procedures and system security plans
• Certification Requirements: Current DoD 8570.1-M IAM Level 1 certification required.
• Self-motivated and possess good written, verbal, listening and presentation skills
• Strong customer service, leadership and team building skills
• Organizational skills to include: attention to detail, time management and ability to multitask

Desired Qualifications:

• TS/SCI Security Clearance
• Experience with DCSA (NISPOM/DAAPM) preferred.
• Experience with DISA Security Technical Implementation Guides (STIGs), SCAP Compliance Checker (SCC) and STIG Viewer preferred.

Riverside Research does not mandate COVID vaccination as a condition of employment. However, proof of vaccination or negative test may be required to enter certain government facilities and sites. Vaccination requirements will depend on the status of the federal contractor mandate and customer site-specific requirements. To protect the health and safety of its employees, their families, and to comply with customer requirements, the company requires all employees to disclose vaccination status (upon hire). 

Riverside Research strives to be one of America's premier providers of independent, trusted technical and scientific expertise. We continue to add experienced and technically astute staff who are highly motivated to help our DoD and Intelligence Community (IC) customers deliver world class programs. As a not-for-profit, technology-oriented defense company, we believe service to customers and support of our staff is our mission. Our goal is to serve as a destination company by providing an industry-leading, positive, and rewarding employee experience for all who join us. We aspire to be a valued partner to our customers and to earn their trust through our unwavering commitment to achieve timely, innovative, cost-effective and mission-focused solutions.

All positions at Riverside Research are subject to background investigations. Employment is contingent upon successful completion of a background investigation including criminal history and identity check.

Our EEO Policy
Riverside Research is an equal opportunity employer. We recruit, employ, train, compensate and promote without regard to race, religion, sex, color, national origin, age, gender identity, sexual orientation, marital status, disability/veteran, status as a protected veteran, or any other basis protected by applicable federal, state and local law.

If you need assistance at any time in our application or interview process, please contact Recruiting at email Recruiting@RiversideResearch.org. A member of the Recruiting team will be available to assist.

This contractor and subcontractor shall abide by the requirements of 41 CFR 60-741.5(a). This regulation prohibits discrimination against qualified individuals on the basis of disability and requires affirmative action by covered prime contractors and subcontractors to employ and advance in employment qualified individuals with disabilities.

This contractor and subcontractor shall abide by the requirements of 41 CFR 60-300.5(a). This regulation prohibits discrimination against qualified protected veterans and requires affirmative action by covered contractors and subcontractors to employ and advance in employment qualified protected veterans.

For more information on "EEO is the Law," please visit:
http://www.dol.gov/ofccp/regs/compliance/posters/pdf/eeopost.pdf

https://www.dol.gov/sites/dolgov/files/ofccp/regs/compliance/posters/pdf/eeopost.pdf