Job description

MANTECH seeks a motivated, career and customer-oriented Security Controls Assessor III to join our team in Doral, FL. Responsibilities Include But Are Not Limited To • Determines the effectiveness of security controls within Information Systems (IS), ensuring compliance and identifying vulnerabilities. • Rates the severity of weaknesses and recommends corrective actions, while overseeing Collateral, SCI, and SAP activities for sensitive information security. • Oversees IS security program policy, specifically SAP network infrastructure integration, and assesses Risk Management Framework (RMF) methodologies in accordance with the Joint SAP Implementation Guide (JSIG). • Advises ISO, IDO, PSO, and DAO/AO on security issues, evaluates authorization packages, and recommends authorization; ensures security assessments are completed, prepares Security Assessment Reports (SAR), assesses proposed changes to Authorization Boundaries, and creates Plans of Action and Milestones (POA&M) for identified weaknesses. • Reviews sanitization and clearing procedures, assists with compliance inspections and cybersecurity incidents, ensures corrective measures, and evaluates hardware/software for security impact. • Ensures organizations address all phases of the Software Development Lifecycle (SDLC), evaluates Continuous Monitoring Plans, and provides direction and mentorship to subordinate staff. Minimum Qualifications • Bachelors degree or 4 years of additional experience may be exchanged in lieu of a required bachelor's degree • 9+ years of experience with 5+ years of position-specific related experience. • 6+ years of experience in SAP, SCI, or Collateral Information Systems (IS) security and the implementation of regulations identified in the description of duties, or as an Information System Security Officer (ISSO), Information System Security Manager (ISSM), or SCA. • DoD 8570.01-M IAT Level III or DoD 8570.01-M IAM Level III certification. Desired Qualifications • Master’s degree in Cybersecurity, Computer Engineering, Computer Science, or other closely related IT discipline. • Experience with ServiceNow, Microsoft TechCenter, or Jira ticketing systems. • Experience with military/diplomatic operations working within a J-6/G-6/S-6 Directorate or with Special Operations Forces (SOF) or the Department of State (DoS) leading and performing cybersecurity risk assessments for and across multiple commands, agencies, and regionally distributed locations in a Security Operations Center (SOC). • DoD 8570.01-M IASAE Level III certification (ISC2 CISSP-ISSAP, CISSP-ISSEP, or CISSP-ISSMP). • Certified Ethical Hacker (CEH), GIAC Incident Handler (GCIH), Global Information Assurance Certification (GCIA), GIAC Penetration Tester (GPEN). • Experience at a DoD Combatant Command (e.g., SOUTHCOM, NORTHCOM, CENTCOM, CYBERCOM, INDOPACOM, EUCOM, AFRICOM, STRATCOM, TRANSCOM, SOCOM, SPACECOM) or a component is desired. Clearance Requirements • Must have an active Secret clearance Physical Requirements • Must be able to remain in a stationary position 50% • Constantly operates a computer and other office productivity machinery, such as a calculator, copy machine and computer printer • The person in this position frequently communicates with co-workers, management and customers, which may involve delivering presentations. Must be able to exchange accurate information in these situations.

Requirements