CONTACT US   SITE MAP   ABOUT L-3   BUSINESS SEGMENTS   PRODUCTS & SERVICES   DIVISIONS   INVESTOR RELATIONS   NEWS & EVENTS   CAREERS   SUPPLIERS   CODE OF ETHICS   Home Career Search Careers Home Job Search Benefits New Grads/Interns Transitioning Military L-3 Overview CAREERS To apply, please click on the job number.     Division: MOI (California) Job#: 08-002 State: California City: Torrance Employment Type: Full-Time Employee Department: Other Posted Date: 2/8/2008 12:00:00 AM Job Title: Information Systems Security Manager About Division: This role is responsible for ensuring compliance for the L-3 Microdyne Contact and Logistics Centers with all Federal information systems security requirements. The 11 ISSM Support tasks areas are as follows •Security management •Risk management program •Administrative functions •Training and awareness •Physical security •Auditing •Incident and violations reporting •Security configuration management •Contingency planning •Security documentation. About Area: Job Responsibility: The ISSM functions as L-3 Microdyne’s focal point and principal advisor for INFOSEC matters on behalf of the Designated Approving Authority (DAA). The ISSM reports to the DAA and implements the overall INFOSEC program approved by the DAA. L-3 Microdyne may have multiple ISSMs. For example, an activity having several subordinate contracts/task orders may have an ISSM assigned for each subordinate organization. •The ISSM will prepare all certification and accreditation (C&A) documents for submission to an agency-designated ISSM. The agency ISSM will coordinate the submission of the C&A documents to the Designated Approving Authority (DAA) for approval. •The ISSM will correct any deficiencies identified in the certification and accreditation process until full accreditation from the DAA is obtained. •The ISSM is responsible for ensuring that information systems used in supporting task requirements meet initial and ongoing compliance of information systems security requirements in accordance with FIPS Publication 200, Minimum Security Requirements of Federal Information Systems. •The ISSM shall ensure that information systems used to support a specific task meet the minimum security requirements as defined in FIPS Publication 200 through the use of security controls in accordance with the NIST Special Publication 800 – 53, Recommended Security Controls for Federal Information Systems, as amended. This includes preparing all required documentations for the compliance process, including security plan, risk assessments, contingency and contingency test plans, configuration management plan, system test and evaluation reports, security certification and accreditation package. •Ensures that INFOSEC program requirements are met •Implements the risk management program required by L-3 and their Clients •Verifies that appropriate security tests are conducted and documented • Ensures that the accreditation support documentation is developed and maintained •Provides the DAA with accreditation packages for systems under the DAA’s purview to verify that each IS meets security specifications for an acceptable level of risk •Reviews the accreditation plan and reaccreditation activities •Ensures that proposed system changes are reviewed, and that implemented system modifications do not adversely impact the security of the system •Ensures contingency plans are developed and tested •Ensures that IS users’ activities are monitored to verify compliance with security policies and procedures •Coordinates regularly with Information Systems Security Officers (ISSO) and Network Security Officers (NSO), who provide system-level INFOSEC support within the confines of the ISSM’s area of responsibility •Maintains an Activity INFOSEC Plan (ISSP) and ensures the development of System Security Plans (SSP) for systems that contain sensitive information. Position reports to VP of Information Technology or to the Program Manager as appropriate Job Requirements: HS Diploma with 7 years of experience implementing security strategies and methods for creating a secure environment consistent the Federal government and NIST Security Principles including, CISM or CISSP Preferred but not mandatory: •Certification and Accreditation procedures, Engineering and System Design •Security Program Management •Vulnerability Assessment and Management •Incident Reporting and Response •Continuity of Operations, and •Secure Communications and Encryption. No specific formal degree program is required for the ISSM role but preference will be given to applicants that possess a CISM, CISSP or equivalent. This technical background must be balanced with effective management skills, because the ISSM must interact with people at all levels of the organization. The ISSM should be familiar, through work experience, with the ISSO and NSO roles and responsibilities. This is a key position Salary Range: Open     L-3 uses this website as a channel of distribution of material company information. Financial and other material regarding L-3 is routinely posted on this website for immediate access. Copyright 2009 L-3 Communications Holdings, Inc. All rights reserved. Terms & Conditions