• Security Assurance Manager

    Posted Date 1 month ago(7/15/2019 2:07 PM)
    ID
    2019-3184
    # of Openings
    1
    Category
    Consulting
    Work Site - City
    New Orleans
    Department
    Consulting Technical Services - Platform
    Work Site - State
    LA
    Security Clearance Level
    Public Trust
    Maximum Expected Travel
    None
    Type
    Regular Full-Time
    Remote/Telecommute Available?
    No - Applicants Must be Local to Work Site
  • Job Overview & Responsibilities

     Mythics is looking for a Security Assurance Manager (SAM) who will be responsible and accountable for all security activities related to project infrastructure, applications, development, and operations. The SAM will work closely and be accountable to the Government Information Systems Security Officer (ISSO) to ensure that all infrastructure and systems meet all applicable NIST and agency security requirements.

    Essential Duties and Responsibilities:

    • Advises the ISSO regarding security considerations in applications systems procurement and development, implementation, operation and maintenance, and disposal activities (i.e., life cycle management). 
    • Leads all contractor security staff in meeting Government objectives and mandates.
    • Ensures that all applicable NIST SP 800-53 security controls are addressed during development. Works closely with development leads, solution architects, DBAs, and System Administrators to ensure that all development and Operations meets applicable NIST, and OMB security requirements and guidelines
    • Reports POA&M status to ISSO.
    • Represents Contractor security in all meetings (e.g. Configuration Management Board meetings).
    • Works with the ISSO to manage project related activities of the Continuous Diagnostics and Mitigation (CDM) Program. This includes coordinating control assessments during the year. Provides input to ISSO on all security related data calls (e.g. FISMA quarterly updates).
    • Identifies and reports any potential weakness/vulnerability to the ISSO. This includes updating the Trigger Log with any security findings or control failures.
    • Assists in the determination of appropriate security configuration commensurate with the level of data sensitivity.
    • Assists in the development and maintenance of security and contingency plans.
    • Works with the ISSO on security impact analysis of system safeguards and program elements and in Authorization and Assessment (A&A) activities. 
    • Coordinates the resolution of weaknesses identified in POA&Ms.
    • Reports POA&M resolution status to the ISSO on a regular basis. Prioritizes action plans based on input from ISSO and other Government stakeholders. Works with POA&M owners to ensure timely status reporting to the ISSO.
    • Acts as the main Contractor point of contact (POC) for all security incidents involving the project
    • Provides oversight of vulnerability scanning and penetration testing of systems/networks. Ensures that security tools are properly used and maintained. Ensures that vulnerability mitigation is performed according to Government policy and procedure including the tracking of residual vulnerabilities. 
    • Supports the ISSO in all third party assessments (e.g. OIG assessments).

    Qualifications

    • Bachelor's degree in Computer Science, Cyber Security, Engineering, Information Systems or similar technical disciplines and/or equivalent work experience
    • 12+ years of experience in hands-on roles providing information security engineering, architecture, and governance supporting
    • 3+ years in a SAM or similar role covering scope and scale as required in this call order
    • Must hold a nationally recognized security certification (e.g. CISSP, CISM) 
    • Deep knowledge of Security Frameworks such as NIST 800-53 
    • Deep knowledge of Security Engineering for Application Development

    Company Overview

    Why work at Mythics?


    Because at Mythics, YOU count!  
    At Mythics, we have an environment that fosters creative thinking, respects your contributions, and accepts nothing less than excellence in serving our customers.  We demonstrate these core principles daily through our corporate Values of Respect – Empathy – Excellence – Fun (REEF). Our REEF values are the foundation of everything we do.

    • Comprehensive Health, Dental, and Vision plans available for you and your family
    • Premier 401k retirement plan with corporate matching and a 529 college saving plan
    • Tax-advantaged Health Savings Account and Dependent Care Flexible Spending Account options
    • Generous PTO bank and paid holidays
    • Tuition reimbursement for continuing education
    • Engaging company events such as quarterly awards, annual kick off parties, and FUN Fridays (early release once a month)
    • Free gourmet coffee, tea, fresh fruits and healthy snacking alternatives
    • Community Service activities and charitable giving programs
    • Our GREEN approach – tracking energy consumption for reduction and purchasing only environmentally friendly products for our offices

    Founded in 2000, Mythics is an award-winning Oracle systems integrator, consulting firm, managed services provider and elite Oracle platinum resale partner. Our business model is all about deep knowledge of Oracle technologies and business processes. We offer procurement and Oracle systems integration expertise across the full range of Oracle cloud, software, support, hardware, engineered systems, and appliances.  It’s a focus that gives us the critical business experience and the Oracle technology advantage you need to succeed.

     

    Mythics, Inc. is an equal opportunity employer, and all qualified applicants will receive consideration for employment without regard to race, color, religion, national origin, sex, physical or mental disability, sexual orientation, gender identity, age, marital status, medical condition, veteran status, or any other factor determined to be unlawful by federal, state, or local statutes. Mythics, Inc. will treat all employees equally with respect to compensation; opportunities for advancement, including upgrading, promotion and transfer, and all other terms and conditions of employment. This company is a VEVRAA Federal Contractor, and has designed and agreed to implement an Affirmative Action Program in accordance with Executive Order 11246 and VEVRAA Final Rule.  Mythics, Inc. is able to provide alternative methods of application for those who are unable to complete an online form.  Please contact accommodationrequests@mythics.com to arrange reasonable accommodations.  To read more about your rights, please visit the Department of Labor Disability Rights Fact Sheet here. For more information about Federal laws prohibiting job discrimination, please view the “EEO is the Law” Poster here.

    Options

    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on your newsfeed

    Connect With Us!

    Don't see any positions that match your skillset? Not ready to apply? You can still Connect with us for future consideration!