Information Systems Security Manager (ISSM)

Position Summary

The position serves as the ISSM for the Warren, MA site and is responsible for the Information Assurance (IA) program as stipulated by various US Government requirements from the DoD and regulatory bodies. This person maintains the formal IS security program and policies for their assigned area of responsibility and oversees the operational information systems security implementation policy and guidelines.

The Information Security System Manager deploys, maintains, and supports on premise services. The incumbent also provides impeccable customer service by responding to customer service requests timely and accurately. Responsible for the design, implementation, maintenance, and support of CIRCOR’s Intel & cloud servers, backend systems supporting the production processes for the division, as well as data storage platforms and hosted services. Provides support in maintaining service levels, and performance monitoring. Ensures that all allocated tasks and procedures are carried out effectively and efficiently to current documented standards and agreed levels of service.

• The ISSM provides support for a program, organization, system, or enclave’s information assurance program.
• Maintains operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed.
• Assists with the management of security aspects of the information system and performs day-to-day security operations of the system.
• Performs vulnerability/risk assessment analysis to support certification and accreditation.
• Manages changes to system and assesses the security impact of those changes.
• Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs).
• Works with vendors to identify, troubleshoot, and resolves resolve hardware, software, network-related, operating system issues; research and tests possible solutions and implements solutions.
• Perform daily monitoring and management of backups; monitor backup jobs, execute restore jobs, troubleshoot failed jobs, and initiate corrective actions, when necessary.
• Monitors the health of critical systems, identify trends, and present results to IT Management.
• Ensure operational stability of technologies and services supporting the lines of business.
• Lead & meet project deliverables for new and / or changes to existing technology within project requirements.
• Participate in technical integration activities in support of mergers and acquisitions.
• Complete projects to budget, timelines, quality standards and business stakeholder requirements.
• Maintain broad technical knowledge on current and emerging technologies relevant to the enterprise.
• Monitor cybersecurity compliance by performing periodic self-inspections, tests, and reviews of information systems to ensure that workstations/servers are operating as authorized/accredited and that conditions have not changed.
• Coordinate with program/project stakeholders, IT & Trade and compliance teams, Facility Security Officer (FSO), and other Security and IT team members to define, implement and maintain an acceptable information systems security posture.
• Maintain day-to-day security posture and continuous monitoring of IS including security event log review and analysis, including audit & updates of air-gapped laptops.
• Preparation and maintenance of security Assessment and Authorization documentation.
• Adhere to established IT policies and standard operating procedures.

Internal & External Relationships:

Works closely with all departments to provide a reliable infrastructure to support the business needs. Frequent communication with all levels of management and associates. Interaction with department Managers to provide sufficient

CANDIDATE REQUIREMENTS

• Three (3) to five (5) years’ ISSO/ISSM experience
• Bachelor’s degree in computer science preferred
• US Security Clearance preferred