Ref No.: 20-00017
Location: Charleston, South Carolina
Position Type:Full Time
LIFE CYCLE ENGINEERING
Life Cycle Engineering (LCE) is a privately held, employee-owned company with an emphasis on "doing the right thing the right way”, which applies to the way we treat our customers and employees. We are proud to have been recognized as a "Best Place to Work” for 14 years running! Learn more below and at www.lce.com
 

Information Systems Security Manager - ISSM

Position Summary:

As ISSM, you will provide Risk Management Framework (RMF) Accreditation Service support to Naval Surface Warfare Center Philadelphia Division (NSWCPD). The effort includes preparation, review, revision, and maintenance of RMF A&A Packages and supporting the accreditation process from Step 1 thru Step 6 as needed. This will be done remotely from Charleston in support of NSWCPD.

Contract Requirements:

  • Must be a US citizen with the ability to obtain/maintain a DoD Secret security clearance
  • Must have an active CISSP certification or equivalent

Essential Functions and Responsibilities:

  • Develop RMF A&A package documentation required for ATO-submission in accordance with DoD/NAVSEA directives, which includes the following components: 
    • Platform IT (PIT) Determination package documentation
    • System Categorization Form
    • Information System Continuous Monitoring Strategy (ISCM)
    • Security Plan (SP)
    • Step Concurrence forms
    • Plan of Actions and Milestones (POA&M)
    • Security Assessment Plan (SAP)
    • Security Assessment Report (SAR)
    • Risk Assessment Report (RAR)
    • Security Authorization Package
    • CYBERSAFE Certification
    • Package Endorsement Letters
  • Ensure RMF A&A package is submitted to the Certification Authority (CA) in sufficient time for its review and operational cybersecurity risk recommendation to obtain Designated Accrediting Authority (DAA) authorization decision
  • Follow the published Navy, NAVSEA Business Rules, and PIT Validation guidance when preparing C&A packages.
  • Coordinate with the government-appointed Navy Validator throughout the C&A package creation and processing to ensure compliance with stated regulations to help ensure an efficient package-submission that results in ATO
  • Develop and maintain a Plan of Action and Milestone (POA&M) for all IA-related tasks and deliverables in accordance with the Security Technical Implementation Guide (STIG)
  • Develop Risk Assessment Reports (RARs) based on vulnerability test results, automated scan reviews, Assured Compliance Assessment Solution (ACAS) scans, and other DoD-mandated assessment-utilities.
  • Document A&A-information in the A&A Package consistent with all other Packages, and ensure that there are no omissions
  • Input reports in eMass, or deliver in MS Office-products/Visio formats, as appropriate

Required Education, Skills, and Experience:

  • Bachelor's Degree or equivalent experience
  • At least two (2) years' experience with DIACAP or RMF package creation.

Physical Demands and Expectations:

  • Regular physical activity to include walking, climbing stairs, bending, stooping, reaching, lifting (up to 30 pounds), and standing; occasional prolonged sitting
  • Ability to speak, read, hear and write, with or without assistance
  • Ability to use phone and computer systems, copier, fax and other office equipment
This position description represents a summary of the major components and requirements of the outlined job. Other duties and responsibilities may be assigned or required as business needs dictate. Questions regarding this description should immediately be addressed to the department manager or to Human Resources.
 
Mission
Our mission is to enable people and organizations to achieve their full potential.
As a professional services organization, our mission is focused on our clients' people and organizations. It is our company's cornerstone belief that we will not lead the industry in assisting our clients unless we excel at helping our own people and teams reach their full potential.
 

Culture
Our corporate culture encourages personal and professional growth because LCE's success depends on the talent, innovation, professionalism, and commitment of its employees. LCE is a strengths-based organization focused on turning individual talents into strengths and then turning individual strengths into organizational performance that supports our clients' success.

Benefits
  • Affordable Medical/Dental/Vision Plans for employees and their families
  • Free Employee Life and Disability Insurance, with supplemental coverage options available
  • Health Savings Account and Flexible Savings Account options
  • Company matched 401(k) & company-funded Employee Stock Ownership Program (ESOP)
  • Paid Vacation, Holiday, Sick Leave
  • Dynamic employee innovation/entrepreneurship program which includes education, empowerment, and monetary rewards
  • Continuing Education and Professional Development programs at all levels
  • Flexible Schedules and Relaxed Dress Code
  • Employer-sponsored events, social collaboration, and open communication
  • Free access to an extensive online training library, including certification prep
  • Bonus Program for outstanding contributions, Employee Referral Program, numerous Recognition Opportunities, and more…
*Benefits may vary by business unit and location.  http://www.lce.com/Employee_Benefits_358.html
 
Life Cycle Engineering (LCE) shall abide by the requirements of 41 CFR §§ 60-1.4(a), 60-300.5(a) and 60-741.5(a).  These regulations prohibit discrimination against qualified individuals based on their status as protected veterans or individuals with
disabilities, and prohibit discrimination against all individuals based on their race, color, religion, sex, sexual orientation, gender identity, or national origin.  Moreover, these regulations require that LCE take affirmative action to employ and advance in employment individuals without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, protected veteran status, disability, because of or on the basis of pregnancy, childbirth, or related medical conditions, including, but not limited to, lactation, and any other status protected by applicable state law.  In addition, LCE will not discharge or in any other manner discriminate against any employee or applicant for employment because such employee or applicant has inquired about, discussed, or disclosed the compensation of the employee or applicant or another employee or applicant.  LCE shall also abide by the requirements of 29 CFR Part 471, Appendix A.