Listing Description

Information System Security Manager (ISSM) with TS/SCI

Based on site at Rocket Lab's Headquarters in Long Beach, CA the Information System Security Manager (ISSM) is primarily responsible for maintaining the overall security posture for all Rocket Lab classified information systems and is accountable for the implementation of the Risk Management Framework (RMF). The ISSM serves as the principal advisor on all matters, technical and otherwise, involving the security of the classified information systems. In this role you will report to the Security Manager, in support of the FSO/CPSO and Industrial Security organization.

WHAT YOU’LL GET TO DO:

• Continually improve and maintain the information system security program and document related policies as needed for a variety of information systems and areas of responsibility. This includes all documentation for information system authorization, security management, and continuous monitoring for all classified information system types.


• Ensure classified information systems meet cybersecurity requirements and government directives through the performance of system auditing, vulnerability risk assessments, assured file transfers, hardware and software configuration management, data integrity control implementation, and investigations on Information Assurance security violations and/or incidents.


• Provide cybersecurity education and training to all system users; Provide technical and procedural Information System security expertise as needed. 


• Assume ISSO responsibilities as necessary and assist in other disciplines of Security as needed to support the program.


• Develop, maintain, and update, in coordination with all system stakeholders, any required POA&Ms in order to identify system weaknesses, mitigating actions, resources, and timelines for corrective actions. Entries in the POA&M will be based on vulnerabilities and recommendations identified during assessments.


• Maintain the system in accordance with the security plan and Authorization to Operate (ATO); manage, maintain, and execute the continuous monitoring strategy.


• Ensure approved procedures are used for sanitizing and releasing system components and media. 


• Ensure proper measures are taken when a system incident or vulnerability affecting classified systems or information is discovered.

YOU’LL BRING THESE QUALIFICATIONS:

• Active Top Secret security clearance with SCI eligibility and CI polygraph (TS/SCI)


• 5 years of relevant work experience in cybersecurity, or information technology as an ISSM, ISSO, or System Administrator implementing or managing cyber security requirements, security plans, and accreditation packages for classified information systems under DoD and/or IC organizations


• Must possess or be able to obtain DoD 8570 IAM Level III security certification within 6 months of employment (CISSP or CASP equivalent).

THESE QUALIFICATIONS WOULD BE NICE TO HAVE:

• Bachelor’s degree in Computer Science or related technical discipline or the equivalent combination of education, professional training, or work experience.


• Experience with DAAPM, NISPOM, ICD 503, NIST 800-53, and NIST 800-171 implementations


• Experience with cyber tools (Nessus, Splunk, etc.)


• The ISSM must be capable of effectively handling day-to-day operations and responding to security instances.