Remote Information Systems Security Manager
at Raft

Summary

Join our passionate team of high-impact problem solvers as an experienced Information Systems Security Manager to support our customers and shape and enforce our cybersecurity frameworks in alignment with federal policies and mandates.

Requirements

• Minimum of 6 years' experience in ISSM/O roles with at least 4 years focused on federal government projects
• Expert knowledge of the NIST CSF & related NIST Special Publications such as NIST SP 800-53 & 800-171
• Expert knowledge of GRC tools such as ServiceNow, XACTA, eMASS, Archer, or SAP
• Expert proficiency in conducting risk assessments, audits, and compliance monitoring within federal government environments
• Demonstrated proficiency in managing and creating Body of Evidence (BOE) artifacts, including POA&Ms, SSPs, RARs, Vulnerability Assessments, Security Assessment Plans, etc
• Understanding of and experience with SIEM tools such as Splunk, Grafana, or ELK
• Expert experience managing compliance activities for both on-prem & cloud-based systems & networks
• Expert experience conducting internal self-assessments and audits with external assessors
• Deep understanding of common cybersecurity tools and technologies such as vulnerability & compliance scanners, static & dynamic code analyzers, DLP, IDS, etc
• Excellent communication skills with the ability to convey complex cybersecurity and compliance concepts, controls, & risk scenarios to technical and non-technical stakeholders
• Ability to translate compliance requirements into business and system risks and present to technical & non-technical Senior Leadership
• Ability to collaborate with and advise business units on governance structures and operational adjustments needed to align with governance frameworks
• Ability to identify gaps or conflicts in current policies and processes and work to develop solutions with internal business units
• Obtain CISSP or other DoD 8570 IAM Level II or higher certification within 90 days of employment with Raft
• Bachelor's degree in Cybersecurity, Information Technology, or a related field

Responsibilities

• Collaborate with internal and external stakeholders to promote cybersecurity awareness, education, training, communication, alignment, collaboration, and cooperation
• Drive the identification, assessment, and mitigation of cyber risks, ensuring a robust compliance posture that fosters trust and confidence among our government stakeholders
• Aid in the design, implementation, and maintenance of the cybersecurity platforms under the purview of the contract in collaboration with customer security teams

Benefits

• Highly competitive salary
• Fully covered healthcare, dental, and vision coverage
• 401(k) and company match
• Take as you need PTO + 11 paid holidays
• Education & training benefits
• Annual budget for your tech/gadgets needs
• Monthly box of yummy snacks to eat while doing meaningful work
• Remote, hybrid, and flexible work options
• Team off-site in fun places!
• Generous Referral Bonuses