Information Systems Security Manager (ISSM)

Company Review:

Keselowski Advanced Manufacturing (KAM) is a vertically integrated engineering through serial production manufacturing company providing end-to-end advanced metal manufacturing solutions (Additive (LPBF-M) CNC capabilities.) The KAM team is comprised of top engineering and machining talent who excel through innovation, creativity and problem solving, to develop groundbreaking custom solutions for several industries including commercial launch, satellite communication, aerospace, defense, and energy.

KAM serves our customers with the highest quality and integrity. In this pursuit, we value speed, sustainability and our greatest resource, our team.

The Information Systems Security Manager is responsible for maintaining compliance with applicable security regulations and performing all security related duties as required on-site at Keselowski Advanced Manufacturing, LLC in Statesville, NC.

This encompasses the design and successful execution of the IT security program to minimize security risks. He or she must apply a comprehensive knowledge of information technology security principles, practices, and procedures to develop, implement, and manage the overall information system security program in support of the FSO. Must Ensure assigned Information Systems (IS) are properly managed, according to the DoD 5220.22-M the National Industrial Security Program Operating Manual (NISPOM) and other security directives as required.

DUTIES AND RESPONSIBILITIES:

• Establish, document, implement, and monitor the Information System (IS) Security Program and related procedures for the facility.
• Ensure Information System (IS) compliance in accordance with the Risk Management Framework (RMF), National Industrial Security Program Operating Manual (NISPOM) and the DSS Assessment and Authorization Process manual (DAAPM).
• Ensure the development, documentation, and presentation of IS security education, awareness, and training activities for IS personnel, users, and others, as appropriate.
• Conduct self-inspections to ensure that the IS function is operating as accredited and that accreditation conditions have not changed.
• Ensure the development of facility procedures to: Govern marking, handling, controlling, removing, transporting, sanitizing, reusing, and destroying media and equipment containing classified information.
• Report IS security incidents to the Facility Security Officer; assuring proper protection or corrective measures have been taken when an incident/vulnerability has been discovered.
• Implement and monitor security features for the detection of malicious code, viruses, and intruders (hackers), as appropriate or needed.
• Inform the Customer, U.S Government Defense Security Service and FSO of security relevant changes to accredited information systems as required.
• Responsible for developing and maintaining an IS security audit and accountability program.
• Responsible for the oversight and continued training and education of Information System Security Officer(s) (ISSO).
• Responsible for GSC quarterly updates and presentations.
• Other related duties as assigned by supervisor or FSO.

MINIMUM QUALIFICATIONS:

Education:

Bachelor’s degree required. Computer Science or related concentration preferred.

Certifications/Licenses:

Preferred certifications that meet the basic requirement for Information Assurance Manager (IAM) Level II, per DoD 8570.01-M:

• ISC2 Certified Authorization Professional (CAP)
• ISC2 Certified Information System Security Professional (CISSP (or Associate))
• ISACA Certified Information Security Manager (CISM)
• CompTIA Advanced Security Practitioner (CASP)
• GIAC Security Leadership (GSLC)

Experience Required:

Functional (Using Skill Set): 5-10 years

Industry: 3-5 years

• Valid Driver’s License and able to pass full background check and drug testing.
• This role requires compliance with the U.S. State Department’s International Traffic in Arms Regulations (ITAR) and the U.S. Commerce Department’s Export Administration Regulations, which require U.S. citizenship or U.S. Permanent Residency (Permanent Green Card.)

KNOWLEDGE, SKILLS, ABILITIES REQUIRED:

• Working Knowledge of the Risk Management Framework (RMF), National Industrial Security Program Operating Manual (NISPOM) and the DSS Assessment and Authorization Process manual (DAAPM).
• Working Knowledge of National Institute of Standards and Technology (NIST) Special Publication (SP) 800-53 controls, based on NIST SP 800-53r4, as they are mapped to the corresponding NISPOM and RMF references.
• Working knowledge of SCAP and STIG Viewer.
• Experience/Knowledge of the following Operating Systems:
• Microsoft Windows Server 2019 and above
• Microsoft Windows 10 and 11 Professional
• Highly proficient with Microsoft Word, Excel, PowerPoint, and Outlook
•  Proven analytical and problem-solving experience
• Ability to effectively prioritize and execute tasks in a high-pressure environment.
•  Excellent, written, oral, and interpersonal communication skills.
• Ability to present ideas in a business-friendly and user-friendly (non-technical) language
• Highly self-motivated and directed
• Team oriented mentality and skilled in working within a collaborative environment

PHYSICAL DEMANDS:

The physical demands described here are representative of those that must be met by an employee to successfully perform the essential functions of this job. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.

While performing the duties of this job, the employee is regularly required to stand or use a lab stool. The employee will be required to walk; reach with hands and arms; bend over work at tables; stoop, kneel, crouch; and talk or hear. Specific vision abilities required by this job include full color vision, close vision, peripheral vision, depth perception, and the ability to adjust focus.

The employee must regularly lift and/or move up to 10 pounds and occasionally lift and/or move up to 25 pounds.

EQUAL OPPORTUNITY EMPLOYER:

KAM is an equal opportunity employer and does not discriminate on any basis prohibited by federal, state, or local law, including national origin or citizenship. KAM uses E-Verify to verify the right of all new employees to legally work in the United States.