• Manager, Special Programs IS Security

    Job Location US-MA-Cambridge
    Posted Date 1 month ago(2/12/2019 4:40 PM)
    Requisition ID
  • Overview

    Draper is an independent, nonprofit research and development company headquartered in Cambridge, MA. The 1,700 employees of Draper tackle important national challenges with a promise of delivering successful and usable solutions. From military defense and space exploration to biomedical engineering, lives often depend on the solutions we provide. Our multidisciplinary teams of engineers and scientists work in a collaborative environment that inspires the cross-fertilization of ideas necessary for true innovation. For more information about Draper, visit www.draper.com.


    Our work is very important to us, but so is our life outside of work. Draper supports many programs to improve work-life balance including workplace flexibility, employee clubs ranging from photography to yoga, health and finance workshops, off site social events and discounts to local museums and cultural activities. If this specific job opportunity and the chance to work at a nationally renowned R&D innovation company appeals to you, apply now www.draper.com/careers.



    Equal Employment Opportunity

    Draper is committed to creating a diverse environment and is proud to be an affirmative action and equal opportunity employer.   We understand the value of diversity and its impact on a high-performance culture.  All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, disability, age, sexual orientation, gender identity, national origin, veteran status, or genetic information.   


    Draper is committed to providing access, equal opportunity and reasonable accommodation for individuals with disabilities in employment, its services, programs, and activities. To request reasonable accommodation, please contact hr@draper.com.


    This position will lead a team of cybersecurity professionals fulfilling the roles of contractor Information System Security Manager (ISSM) and Information System Security Officer (ISSO) for multiple Department of Defense (DoD) and Intelligence Community (IC) programs.  The manager is ultimately responsible for establishing, leading, and integrating a comprehensive cybersecurity (information assurance) program which ensures the confidentiality, integrity, and availability of all Special Programs information systems in compliance with government requirements including ICD 503 and JSIG.  The Manager of Special Programs Information Systems Security report to the Director of Security, and will work closely with program managers, security personnel at other companies and government sponsors, and Draper security managers from other security disciplines.  When circumstances warrant, the position may fill the ISSM, ISSO, and/or System Administrator (SA) roles for one or more systems.  Candidates should have expert level knowledge, skills, and abilities in information technology, government security policies, leadership and management.  The team operates in a dynamic, multi-tasking environment that demands technical proficiency, customer service, communication, and organizational skills.


    Essential Functions

    • Lead and mentor talented team of cybersecurity professionals to ensure the current and future success of the IS Security program. Actively participate in the recruitment of "A" players to further enhance team performance.
    • Responsible for establishing, leading and integrating a comprehensive cybersecurity program for multiple Department of Defense (DoD) and Intelligence Community (IC) programs
    • Responsible for the awareness and training program specific to Special Programs ISs.
    • Responsible for the day-to-day management of a geographically separated IA team, including task assignments, performance management, direct charge labor, and material costs.
    • Promote daily contact with high level program management, engineering staff, IA staff, and other security and program personnel to resolve IA related issues.
    • Application of cyber security standards including DISA STIGs, RMF security controls (SP 800-53, SP 800-171, CNSSI 1253).
    • Align Draper policies and procedures to government requirements and best practices.
    • Support ISSMs through sponsor-specific Assessment and Authorization (A&A) processes.
    • Develop relationships and interface regularly with numerous cognizant security representatives across multiple organizations.
    • Coordinate with other Draper security and information systems stakeholders to ensure computing assets are maintained with an acceptable security posture and authorized for use.
    • Lead security incident response, including spill remediation, intrusions, malicious code investigation, reporting, and implementation of mitigations to prevent reoccurrence.
    • Act as ISSM, ISSO, and/or SA for multiple systems, as necessary.
    • Oversee Continuous Monitoring of security controls.
    • Perform other duties as assigned by the Director of Security.


    Education and Experience

    Bachelor’s degree in Computer Science, Computer Engineering, Cybersecurity, or related discipline from an accredited college or university.  Advanced degree in Cybersecurity, management, or relevant technical area preferred.  Other formal training and demonstrated proficiency/experience will also be considered in place of an advanced degree.

    • Experience administering the system functions including security policies and account management in Windows, Linux, and virtual environments.
    • Professional certification IAW DoD Directive 8570.1 IAM Level II or higher certification. (CISSP or CISM preferred)
    • Experience deploying/managing information systems in isolated/standalone environments.
    • 5+ years’ relevant experience, such as an ISSM, ISSO, ISSE, or System Administrator.
    • 2+ years’ experience implementing NIST RMF, ICD 503, and/or JSIG requirements.
    • Demonstrated success in leadership roles and in teaching/mentoring junior staff.
    • Excellent communication and organizational skills.
    • Able to manage multiple projects in a dynamic, resource-constrained environment. 
    • Prefer additional training, education, certifications, or experience in areas including different operating systems, computing environment, networking, and computer network defense.
    • Requires active TOP SECRET security clearance with Sensitive Compartmented Information (SCI) access eligibility and agreement to take a polygraph examination.

    Physical Requirements

    • Able to use small tools and work in computer chassis or rack
    • Able to lift at least 30lbs on own


    Sorry the Share function is not working properly at this moment. Please refresh the page and try again later.
    Share on social media

    Connect With Draper for Future Opportunities!

    If you don't find the right posting in our Career Opportunities, you may submit your resume for future consideration.