Information System Security Manager (ISSM)

Sparton is an innovative defense contractor headquartered in DeLeon Springs, Florida, with a rich heritage dating back to 1900. Renowned for our exceptional manufacturing capabilities, we specialize in producing high-quality sonobuoys critical to the United States' undersea warfare arsenal, enhancing national security against current and future adversaries. But we are more than manufacturers; we are problem solvers. Our team of dedicated engineers and skilled professionals tackles some of the most challenging issues in defense technology. Our expertise includes advanced research systems, maritime solutions, sophisticated sensor technologies and payload delivery capabilities.

Job Summary

This position is for an Information System Security Manager (ISSM). The ISSM is responsible for managing all information system security requirements for Sparton's Authorized Information Systems (AIS) assuring continuous system compliance. The successful candidate will have the ability to learn the knowledge and expertise required to manage all security aspects of information systems and oversee the day-to-day security operations of each system, associated media and networks. The ISSM must be able to work with minimal supervision in a high-stress, fast-paced environment. The Primary work location will be DeLeon Springs, FL, with the potential requirement to travel to other ESA facilities on an as-needed basis. This position may require interface with external organizations such as customers, suppliers, law enforcement, and various government agency representatives.

Responsibilities and Tasks

• Reviewing, preparing, and updating ATO packages in accordance with Defense Counterintelligence and Security Agency Assessment and Authorization Process Manual (DAAPM) and customer policy, procedures and guidelines.
• Identify and communicate changes that might affect information system (IS) security authorization status to include identifying security deficiencies/discrepancies and providing recommendations for solutions.
• Act as a liaison with government agencies, such as Defense Counterintelligence and Security Agency (DCSA) Information System Security Professionals (ISSP), Advanced / Special Program Government Security Control Assessors (SCA), and other external / internal customers.
• Develop, implement, and maintain System Security Plans (SSP), Standard Operating Procedures (SOP), information security policies to ensure compliance with Risk Management Framework (RMF) guidelines.
• Initiates and maintains Plan of Action and Milestones (POA&M) through mitigation and risk acceptance.
• Oversee the scheduling, installation, implementation and maintenance of security software integration on all information systems under his / her purview.
• Ensure proper measures are taken when an information system incident or vulnerability is discovered.
• Manage, maintain, and execute the information security continuous monitoring (ConMon) plan.
• Ensure configuration management (CM) policies and procedures for authorizing the use of hardware/software on an information system are followed and assess changes to the system, its environment, and operational needs that could affect the security authorization.
• Perform self-inspections, provide security coordination and review of system test plans
• Identify vulnerabilities and work with technical subject matter experts to identify and implement countermeasures.
• Ensure the development and implementation of an effective information system security education, training, and awareness program.
• Coordinate, prepare, and track IS inspections, reports, and responses.
• Deploy and configure scanning tools to conduct security vulnerabilities reviews in support of continuous monitoring processes.
• Conduct manual SRG/STIG checklists and remediation.
• Conducts scheduled audits and managing audit data.
• Prepare reports on the status of security safeguards applied to computer systems.
• Ensure IS and network nodes are operated, maintained, and disposed of in accordance with security policies and practices.
• Coordinates with Network Security to identify potential threats and vulnerabilities and employs techniques to minimize risk.

• Minimum three (3) years of experience as ISSM, Alternate ISSM, or DoD equivalent at an organization of similar size and complexity.
• Relevant Bachelor's Degree a plus.
• 3-5 years experience in a similar functional role.

• Experience with AIS reaccreditation process under the NIST Risk Management Framework, in accordance with NIST special publications, including SP-800-171, SP-800-53, and DAAPM.
• Ability to author system security plans and maintain authorizations to operate (ATO).

• May require travel of up to 10%
• The physical demands describe here are representative of those that must be met by an employee to successfully perform the essential functions of the job. The work environment characteristics described are representative of those an employee may encounter while performing the essential functions of this job. This job operates in a professional office environment and a manufacturing environment. The employee may be exposed to fumes or airborne particles, moving mechanical parts and vibration. The employee is occasionally exposed to a variety of extreme conditions in the plant. The noise level in the work environment may be loud.
• While performing the duties of this job, the employee is frequently required to sit, stand, talk, and communicate, use hands/finger, feel, and reach with arms. This position requires the ability to lift, bend or stoop as necessary up to 20lbs.

• Robust medical, dental, vision, & disability coverage.
• Discounted health premiums available through qualified wellness participation.
• Healthcare concierge to help you navigate your benefit selections.
• Virtual health solutions for physical therapy, menopause, and diabetes.
• Company paid Basic Life Insurance. Additional Life & AD&D Insurances are available.
• On-site wellness clinic.

• Competitive compensation.
• 401k program to plan for your future with company match 50% up to 8%.
• Company Paid Time Off (Vacation and Sick).
• Paid parental leave.
• Adoption assistance.
• Fertility and family building assistance.

• Flexible work schedules available based on position:
  • 9/80 schedule providing every other Friday off
  • 4/10s
  • 3/12s
• Lifestyle spending account.
• Perks at work.
• Generous employee referral program.
• Tuition reimbursement.
• Voluntary benefits available: longer term care, legal, identity theft, pet Insurance, and many more options