Information System Security Administrator (2023-0499)

Description

Mobius is an award winning, Small Business Administration (SBA) certified Historically Underutilized Business Zone (HUBZone) company and certified Woman-Owned Small Business (WOSB) providing engineering, analytical, and programmatic expertise to the Federal Government and commercial customers. Our mission is to provide innovative advanced technology solutions to customers facing issues of national and global significance. We strive to hire excellent people; provide fair and honest partnership; and exhibit innovative problem solving and exceptional performance.

Come join our team! We are seeking an Information System Security Administrator (Privileged User) who will be responsible for all aspects of Mobius information security operations, including compliance, security policies/procedures, accreditation and continuous monitoring of the corporate network and secure IT systems supporting the Department of Defense (DoD) at multiple classification levels. The candidate will be responsible for the execution of the information security program as stipulated by various United States Government (USG) requirements documents (see task description below). The selected candidate will be responsible for day-to-day effective execution of this program, including configuration management, security controls, risk management, inspection, auditing, reporting and remediation of systems in compliance with government regulations and policies. The candidate will assist in developing, document, and execute policies and procedures to maintain the security and stability of Information Systems. The candidate will coordinate with the government agencies and partners to execute security requirements for secure IT systems including creating artifacts for obtaining government Authority to Operate (ATO). System and information integrity and confidentiality are critical components of this role as well as periodic risk assessments of the corporate network and all secure IT systems. This position operates from our corporate headquarters in Alexandria, VA.

Responsibilities:

• Ensure compliance on the corporate network and all secure IT systems, routers, switches, servers, WAN/LAN and standalone systems.
• Assist ISSM with developing an information security program including development of policy and procedures as needed as well as development of artifacts to obtain government ATO. 
• Ensure IT systems are commensurate to the classification level of information they protect and process. 
• Ensure compliance with applicable policies and guides (preferred):
  • Title 32 CFR, Part 117.18 National Industrial Security Program Operating Manual (NISPOM) 
  • Defense Counterintelligence and Security Agency Assessment and Authorization Process Manual (DAAPM)
  • Joint Special Access Programs Implementation Guide (JSIG)
  • Intelligence Community Directive (ICD) 503
  • National Institute of Standards and Technology (NIST) Special Publications (SP)
  • Enhanced protection measures in accordance with Public Law 112-239 and Title 10 U.S.C. 391.
  • Security Technical Implementation Guides (STIGs)
• Assist with conducting on-going systems security reviews, tests and audits to ensure effective and functional security      controls. Prepare/maintain ongoing reports for historical records and facility inspection readiness. 
• Collect metrics for reporting and risk assessments. Ensure compliance with requirements with artifacts and tools. 
• Assist with Plan of Actions and Milestones (POA&M).
• Work closely with the corporate Facility Security Officer (FSO) and Information System Security Manager (ISSM).  Support the FSO in managing operational and physical security at the facility. 
• Establish and activate/deactivate user accounts, reset account lock-out, password reset, suspend accounts to include validate approved user lists.
• Maintain system software, operating system, anti-virus, in support of operations to include maintaining patches/updates and active license agreements.
• Conduct inventories, backups, and test disaster recovery plans for resource optimization to include disk partition management, and plan procurement for resources lifecycle.
• Identify and recommend solutions to meet or exceed security requirements required by NIST SP 800, CNSSI 1253 and DoDI 8510.01.

Requirements

• Prefer candidate with an Active Top-Secret Clearance with SCI Eligibility with written consent to undergo CI Poly.
• Eligibility for access to Special Access Program Information (preferred)
• Bachelor's degree in Computer Science, Information Systems, Information Assurance, Cyber Security, or related field of study; or 6 years of equivalent experience in lieu of education
• 2+ years of experience in Information Systems security/information assurance, security engineering.
• Current DoD 8570.01-M IT certification (Security+, etc.). IAT Level II certification is preferred.  
• Experience executing the Risk Management Framework (RMF) process and performing risk assessments.
• Familiarity with various Information System Security assessment/hardening tools - SCAP Compliance Checker, STIG Viewer, SPLUNK, ACAS, Nessus, SECSCN, DISA SRR, Retina, HBSS, etc.
• Experience with cloud-based computing and classified/isolated networks (enclave) Local Area Network (LAN) Information Systems. 
• Demonstrated ability to act independently, prioritize tasks, and establish daily routine with short/long term goals.
• Ability to work on multiple projects simultaneously with a commitment to completion of project on a timely basis.
• Strong problem-solving skills and detail-oriented approach to task prioritization, while able to simultaneously work across multiple projects.
• Strong written and verbal communication skills. Knowledge of Microsoft Office and VISIO preferred.
• Professional demeanor, good interpersonal skills, and ability to excel in a high-paced multi-tasked environment.
• Strong team player. Ability to work effectively with corporate and government stakeholders. 
• Flexibility to travel no more than 10% in local National Capital Region. 

MOBIUS Benefits: Mobius offers a stable work environment, a competitive salary, and a comprehensive benefits package, which includes medical, dental and vision plans, 401k Plan, Flexible Work Schedules, Tuition Reimbursement, Paid Leave and much more.

Mobius is committed to hiring and retaining a diverse workforce. We are proud to be an Equal Opportunity Employer/Affirmative Action Employer, making decisions without regard to race, color, religion, creed, sex, sexual orientation, gender identity, marital status, national origin, age, veteran status, disability, or any other protected class.