MIT Lincoln Laboratory Information Security Operations Manager in Lexington, Massachusetts

Security Services

The Security Services Department's overall mission is to ensure a safe and secure environment and protect MIT Lincoln Laboratory at all facilities in which staff members perform their mission of research and development. To accomplish this mission, this department formulates and implements policies, plans, and actions designed to protect facilities against threats of vandalism, accidental destruction, and sabotage; and safeguards personnel, classified and unclassified information systems, personal identifiable information, property, and other assets from exploitation and recruitment by foreign intelligence agencies.

Information Security Operations Manager

The Security Services Department's overall mission is to ensure a safe and secure environment and protect MIT Lincoln Laboratory at all facilities in which staff members perform their mission of research and development. To accomplish this mission, this department formulates and implements policies, plans, and actions designed to protect facilities against threats of vandalism, accidental destruction, and sabotage; and safeguards personnel, classified and unclassified information systems, personal identifiable information, property, and other assets from exploitation and recruitment by foreign intelligence agencies.

The Information Security Group provides Cybersecurity and Risk Assessment services to the Laboratory. The functional areas include the Forensic Analysis Center (FAC), consisting of Forensic Analysis and Cybersecurity Risk Assessment Services, Special Programs Information Assurance (IA) and Collateral Information System Security.

The Operations Manager - Information Security, reports directly to the Laboratory's Information Security Manager (ISM). This position is responsible for assisting with the management and coordination of numerous ongoing Enterprise-level project initiatives across the Laboratory, as well as organizing and overseeing the daily work direction of the Information Security Group.

Primary Duties Include:

  • Contribute to developing and maintaining the vision and strategy for the Information Security Group, consistent with Security Services Department goals and objectives.

  • Assist with overseeing and managing the daily activities, goals, projects and deliverables of Information Security Group Assistant Managers, to include organizing and assuring execution of tasks while managing workload and coverage.Assist in reviewing and tracking administrative and technical tasks undertaken by the Information Security Group, ensuring staff members are capable of applying “best practices” for supported programs, including a full understanding of requirements and timely completion of work.

  • Participate directly in, support and assist with the hiring and personnel retention process in the Information Security Group, identifying opportunities for professional development of staff by conducing and managing staff retention “Stay Interviews”, maintaining records and investigating new training and education activities.Oversee and direct the activities of the Information Security Group Training Officer by insuring that the Information Security Group Field Training Program is being appropriately administered, and Field Training Manuals are maintained and updated accordingly.

  • Ensure that all staff members adhere to, and remain current with all Information Security Policies and Procedures established by the ITSC, while ensuring that the Information Security Operations Manual (ISOP) remains consistent with policy and current.

  • Develop effective working relationships with other Group, Department and Division managers, supervisors, technical staff and program managers.Participate in various enterprise-level project meetings with Laboratory stakeholders and provide security leadership direction for projects and operational initiatives consistent with the goals and objectives of the Chief Security Officer (CSO) and ISM.

  • Assist the ISM in maintaining appropriate governance, information assurance oversight, policy guidance, and inspection preparedness for Laboratory Unclassified and Classified Collateral and Special Programs systems and networks to ensure compliance with DoD and other sponsor mandated regulations.

  • Participate in regular, ongoing status meetings to keep Information Security Group and Security Services Department leadership informed of ongoing projects and initiatives.Present briefings, and assist with ensuring consistent Information Security Group reporting of risk assessments, metrics, overviews of emerging technology, information security incidents and ongoing investigations.

Position Requirements:

  • Bachelor’s degree in Computer Science, Information Technology, Computer Information Systems, or related field with particular emphasis on Information Systems Security is required

  • Seven or more (7+) years of management experience in a Department of Defense (DoD) Industrial Security setting is desired, with related work in the following areas: Information Assurance, Risk Assessment, IT Security, Computer Forensics and Incident Response.

  • Must have excellent oral, written and presentation skills.Proven ability to influence outcomes without direct authority is needed.Demonstrated ability to multi task projects/programs and to redirect priorities as needed

  • Strong leadership, organization, planning and communications skills, with a demonstrated ability to effectively interact and work with executive leadership, peers, industry partners, sponsors, and program managers

  • Prior formal line management experience and proven track record of successfully solving complex problems, and cultivating strong relationships/collaboration across organizational boundaries.

  • Demonstrated managerial skills, including direct supervision, hiring, training, and staff development

  • Must have demonstrated knowledge of Certification, Accreditation and Authorization requirements identified in the National Industrial Security Operations Manual (NISPOM) regarding the protection of classified information systems, as well as the Department of Defense IT Security Assessment and Authorization Process, based on the Risk Management Framework (RMF), NIST 800-53 controls

  • Thorough understanding of National Institute of Standards and Technology (NIST) standards, Federal Information System Modernization Act (FISMA) processes, and The Federal Risk and Authorization Management Program (FedRAMP) requirements for cloud security, as well as Defense Federal Acquisition Regulation Supplement (DFARS) requirements for protecting DoD Contractor information systems

  • The position has a direct interface and coordination role with members of the IT Department and must have demonstrated ability to work across organizational units and with customers

  • Selected candidate must be a reliable self-starter who makes sound, well-informed and objective decisions, works independently with a demonstrated ability to manage complex situations and have the ability to follow-up and solve problems

  • Desired certifications include PMP, CISSP, CISM, Security+, EnCE, CFCE, GCFA, GREM, GCIH, CEH, CISA

  • Must have excellent interpersonal communication, organizational, and customer service skills

  • Position may require local and some overnight travel

  • The successful candidate will be subject to pre-employment investigation and must meet all eligibility requirements for access to classified information including compartmented programs

  • Ability to obtain and maintain a government security clearance is required

Requisition ID: [[id]]

For Benefits Information, click http://hrweb.mit.edu/benefits

MIT Lincoln Laboratory is an Equal Employment Opportunity (EEO) employer. All qualified applicants will receive consideration for employment and will not be discriminated against on the basis of race, color, religion, sex, sexual orientation, gender identity, national origin, age, veteran status, disability status, or genetic information; U.S. citizenship is required.