Manager, Information Systems Security (ISSO)
Information Technology Team Office - Laurel, MD

This job posting is no longer available on Washington Suburban Sanitary Commission. Find similar jobs: Manager jobs - Information Technology Team Office jobs

Organization Name
Information Technology Team Office

Reports to
Sr. Manager, Information Security and Compliance

Full or Part Time
Full Time

If Part Time how many hours per week

Regular or Temporary
Regular

Position End Date (if temporary)

Work Schedule

Position Location
Laurel
Position Summary Information

General Summary
The Manager Information Systems Security ( ISSO ) is responsible for the day-to-day monitoring, regular vulnerability testing, threat assessment, and security in support of risk management activities. The incumbent stays abreast of issues and developments that have the potential to impact the business – including the current operating environment, developments in technology (and vulnerabilities) threats, best practice, and legislation/regulatory requirements. The incumbent will interface with business and technical staff to define and analyze security requirements, and audit these requirements regularly to ensure appropriate security controls are operating correctly and as intended.

Essential Functions
Develops, documents and implements information security procedures to enforce compliance with information security standards and policy;
Establishes metrics to ensure continuous improvement and ongoing compliance; Performs regular audits (system- and program-level) to monitor, measure, and report on compliance and identify residual risk; Conducts vulnerability analysis and threat assessment; Evaluates security products and recommends solutions for control enhancement; Provides ongoing analysis and assessment in support of incident response activities; Evaluates and assesses systems to support compliance verification; Participates in disaster recovery and business continuity planning, testing, and operations; Develops and mentors team personnel on security processes and best practices; Perform other related duties as assigned.

Other Functions

Work Environment And Physical Demands

Required Knowledge, Skills, And Abilities
Working knowledge of key risk management areas particularly network security, computer security, application security, and access control; Familiarity with a broad array of security solutions including administrative, technical, and physical controls; Ability to efficiently and effectively analyze large volumes of data to identify events of interest; Thorough understanding of network and communications technologies and products including routers, switches, firewalls, and IDS / IPS ; Strong practical knowledge of networking topologies and protocols including STP , OSPF , BGP , MPLS , and IPSec; Hands-on experience with SIEM solutions.

Minimum Education, Experience Requirements
·Bachelor’s Degree in Systems Engineering, Computer Science, or related discipline;
·7 years information security management experience that includes three years managing technology teams as well as the following:
·Experience developing, implementing, and evaluating security standards and procedures in multiple platforms and systems environments
·Practical knowledge of process control systems (e.g. SCADA , DCS , etc.) and their components
·Demonstrated experience with all stages of enterprise application life-cycle management;
·Demonstrated success in management of technical staff and multiple concurrent projects.
OR
·High School diploma or equivalent;
·13 years information security management experience that includes three years managing technology teams as well as the following:
·Experience developing, implementing, and evaluating security standards and procedures in multiple platforms and systems environments
·Practical knowledge of process control systems (e.g. SCADA , DCS , etc.) and their components
·Demonstrated experience with all stages of enterprise application life-cycle management;
·Demonstrated success in management of technical staff and multiple concurrent projects.
Additional Requirements
Completion of the Washington Suburban Sanitary Commission’s Financial Disclosure Statement within 30 days of employment and annually thereafter.
The position may require occasional work outside of regular business hours including nights, weekends, and holidays and travel to multiple locations throughout Montgomery and Prince George’s counties.
Preferences
Master’s degree in Management Information Systems, Computer Science, or Information Management; Certifications including: CISSP , CISA , CISM , GIAC , MSCE , CCNA , CCNP , and PMP ; Utility or relevant industry experience.
Salary
85,000 - 125,000
Posting Detail Information

EEO Statement
AN EQUAL EMPLOYMENT OPPORTUNITY EMPLOYER
It is the policy of the Commission to select new employees and to promote current employees without regard to race, sexual orientation, sex, religion, national origin, marital status, or handicap. The Commission does not discriminate against qualified individuals with a disability and will make reasonable accommodation for any disability that does not result in undue hardship for the Commission.

Close Date

Open Until Filled
Yes

Special Instructions to Applicants

Additional Information

Washington Suburban Sanitary Commission - 16 months ago - save job - block
Recommended Jobs
Information Systems Security Officer (ISSO)
Varen Technologies - Annapolis Junction, MD
Varen Technologies - 4 days ago

Information Systems Security Officer Level 1...
MOSAIC Technologies Group, Inc - Fort Meade, MD
MOSAIC Technologies Group, Inc - 30 days ago

GENSER Network Security Manager
The Johns Hopkins Applied Physics Laboratory - Laurel, MD
The Johns Hopkins Applied Physics Laboratory - 13 days ago