This is a remote position.
The
Information Security Manager / Chief Security Architect
will serve as the principal advisor on all cybersecurity matters, technical and otherwise, involving the security of infrastructure supporting delivery of enterprise information technology services to a state agency.
Day to Day Roles and Responsibilities:
• Ensuring all aspects of the project remain in compliance with all applicable security standards and requirements.
• Ensures the implementation of the Risk Management Framework (RMF), through the required government policy, make recommendations on process tailoring, participate in and document process activities.
• Will deliver information security support and design recommendations adhering to customer security policies and compliance mandates while fulfilling customer requirements.
• Will perform periodic assessments of systems and networks within the networking environment and/or enclave and will identify where those systems and networks deviate from acceptable configurations, enclave policy, and compliance requirements.
• Includes support of process, analysis, coordination, security certification test, security documentation, as well as investigations, software research, hardware introduction and release, emerging technology research inspections and periodic audits.
• Perform analyses to validate established security requirements and to recommend additional security requirements and safeguards.
• Document the results of Assessment and Authorization (A&A) activities and technical or coordination activity and prepare the System Security Plans and update the Plan of Actions and Milestones (POA&M).
• Provide oversight and guidance of information security personnel performing system analysis looking for patterns of non-compliance; ensure appropriate administrative or programmatic actions which minimize security risks and insider threats.
• Provide oversight and guidance ensuring systems are properly configured, optimized, and tested ensuring all policy and technical standards are met.
• Manage all cybersecurity related processes and procedures in the documentation of access control lists on routers, firewalls, CE, printing devices, and other network devices.
• Assess the performance of cybersecurity security controls within the environment.
• Perform control validation and remediation validation of network servers, routers, and switches to ensure they comply with security policy, procedures, and technical requirements.
• Evaluate potential cybersecurity security risk and take appropriate corrective and recovery action utilizing various tasking mechanisms such as Service Now
Requirements
• Bachelor’s degree and 8 years of experience or a Master’s degree and 6 years of experience or a High School diploma and 12 years of experience.
• Must be a U.S. Citizen.
• 2+ years’ experience with Risk Management Framework (RMF)
• 5 years of experience with FISMA, NIST, and state or federal information system requirements.
• Advanced written and verbal communication skills to effectively communicate security concepts and policies
• Certifications (must have 1 of the following):
• Security+
• CISSP
• CISA, or equivalent certifications (DoD 8570 IAM Level 2 equivalent).
Benefits
Experience a workplace where people are the X-Factor! At Info-Matrix, we believe our greatest strength is our team—a diverse group of passionate professionals united by a drive to solve real-world business challenges through innovative technology solutions. Our culture is built on integrity, teamwork, and a commitment to excellence, fostering an environment where every voice is valued and every contribution matters!
Comprehensive Benefits Offered by Info-Matrix
• Health & Wellness
: Customized Medical, Dental, and Vision Plans
• Paid Time Off
: Generous PTO & 11 paid holidays
• Info-Matrix Paid Coverage
: Short-term and long-term disability, life insurance, and AD&D insurance.
• Retirement Savings Offering
: 401(k) plan with company match