Information Systems Auditor Salary in USA

DescriptionInformation Technology AuditorU.S. citizenship is required for this position due to Department of Defense restrictions.Role Summary:The Information Technology Auditor is responsible for assisting in the development and execution of corporate Information Technology (IT) audit and compliance work programs. WPS works on multiple healthcare related Federal contracts that include the Department of Defense (DOD) and the Center for Medicare and Medicaid Services (CMS).  This position assist with ensuring WPS is complying with legal/regulatory requirements across all business lines and contracts.  There is also the opportunity to participate on integrated engagements supporting financial and operational auditors by testing IT general controls.In this role you will:Assist in the planning and managing of audit engagements, including the development of audit work programs for testing and reporting audit results under the general direction of the IT Audit Manager.Perform evaluations of compliance with required security and privacy controls including areas required by CMS-Medicare, DHA-Tricare, HIPAA, ERISA, Model Audit Rule, and other legislationParticipate in audits of complex information systems and technologies to evaluate and document control systems with the following key objectives: effectiveness and efficiency of IT operations; reliability of financial reporting systems; compliance with applicable laws and regulations and internal policies; and safeguarding IT assets from waste, loss, and abuse.Assess security controls for effectiveness in the following areas: access to programs and data - physical and logical security; computer operations – service level management, management of third-party services, system availability, configuration and system management, problem and incident management, releases; disaster recovery planning; and business continuity.Assume supporting role in evaluation and assessment of risks associated with general IT functions, controls and applications.Schedule and perform follow-up testing activity as required to report on current status of action plans.Maintain an advanced understanding of IT control environment, risk management, and insurance.This role could be a good fit if you: Have a passion for process improvement and applying your analytical skills.Possess a keen understanding of how technology comes into play when planning, designing and maintaining organizational compliance processes.Like to work on difficult and complex problems that have multifaceted and sometimes equally complex solutions.Have the desire to work independently, but also enjoy meeting people and learning new things.Can bring new perspectives and ideas to areas of audit and compliance.You’ll benefit from this experience by:Having the ability to see the efforts of your labor be adopted and implemented, in some cases company wide.Working in a performance driven environment.Working in an environment that serves our Nation’s military, veterans, Guard and Reserves along with their families.You need to have: U.S. citizenship is required for this position due to Department of Defense restrictions.Bachelor's Degree in related field or equivalent post high school and/or related work experienceWe also prefer you have the following skills:2 or more years of Audit experience or applicable experience.Certified Information System Auditor (CISA)Critical thinking abilities.Ability to apply sound reasoning and analysis for creative problem solvingReading comprehension and ability to communicate effectivelyWill lead and assist IT internal audits working with IT professionals to educate, prepare, maintain and implement audit standards / guidelines throughout WPS health solutions.Compensation and BenefitsEligible for annual Performance Bonus Program401(k) with dollar-per-dollar match up to 6% of salaryCompetitive paid time offHealth and dental insurance start DAY 1Vision insuranceFlexible spending, dependent care, and health savings accountsShort- and long-term disability, group life insuranceDress for your dayInnovative professional and cognitive development programsWho We AreWPS Health Solutions is an innovator in health insurance and a worldwide leader in claims administration, serving millions of beneficiaries in the United States and abroad.Founded in 1946, WPS offers health insurance plans for individuals, families, and seniors, and group plans for small and large businesses. We are a world-class claims processor and program administrator for the government’s Medicare program. And we manage benefits for millions of active-duty and retired military personnel and their families.WPS has been named one of the World's Most Ethical Companies® by the Ethisphere® Institute for 10 years in a row.Learn more about WPS. Our Purpose and ValuesOur purpose is to make healthcare easier for those we serve. Click HereOur values – Customer Focused, Individual Responsibility, Mutual Respect, and Driven & Passionate – are the core of who we are and how we conduct business every day.Health InsuranceWPS Health Insurance offers high-quality health insurance plans for individuals and families, Medicare supplement plans for seniors, and group health plans for businesses of every size.http://wpshealthsolutions.com/business-units/wpshi.shtmlMilitary and Veterans HealthWPS Military and Veterans Health administers claims and provides customer service and related activities for the U.S. Department of Defense and the U.S. Department of Veterans Affairs and their beneficiaries.http://wpshealthsolutions.com/business-units/wpsmvh.shtmlGovernment Health Administrators WPS Government Health Administrators manages Medicare Part A and Part B benefits for more than 7 million beneficiaries. As one of the largest contractors for the Centers for Medicare & Medicare Services, we’ve served Medicare beneficiaries and their health care providers since 1966.http://wpshealthsolutions.com/business-units/wpsgha.shtmlAriseArise Health Plan provides innovative and high-value health plans to groups and individuals in eastern and northeastern Wisconsin. With our quality Wisconsin-based customer service, Arise offers health care expertise with a personal touch.http://wpshealthsolutions.com/business-units/arise.shtmlEPIC Specialty BenefitsEPIC Specialty Benefits provides businesses group insurance products that cover:LifeDisabilityDentalVisionVoluntary benefitshttp://wpshealthsolutions.com/business-units/epicsb.shtml Stay connected: Sign-up for Job AlertsFOLLOW US!FacebookTwitterLinkedIn Equal Opportunity Employer/Protected Veterans/Individuals with DisabilitiesThe contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor's legal duty to furnish information. 41 CFR 60-1.35(c)

Summary: Allyon, Inc. is an established IT and Healthcare Services firm and we love what we do! It makes our day when we are able to help talented individuals achieve their career goals while at the same time helping our clients build quality teams. If you are interested in joining the Allyon Team, please apply or submit your resume for review today! Job Title:Information Systems Security Manager (ISSM)Location:Indianapolis, INDuties & Responsibilities:• Provide assessment and authorization of computer networks using government standards and data contamination management, including coordinating clean-up efforts, reporting requirements, and ensuring auditing requirements are completed.• Maintain responsibility for monitoring media control, virus scanning, hardware and software control, and computer security briefings, serve as an advocate for all disciplines within the security program, and ensure business needs are met.• Work with system administrators to ensure all systems security procedures are being followed and audit files are being maintained and reviewed in accordance with multiple client requirements.• Make sound decisions, take independent action, analyze problems, and provide focused solutions. Communicate information effectively to various audiences orally and through written communications.• Interact with internal and external clients or government security officials to perform security duties, address routine information security matters with employees regarding issues, and perform report preparation, system security access briefings, and other duties, as required.Minimum Requirements:• TS/SCI clearance• 1+ years of experience with incident handling, forensics, sensor alert tracking, or Cybersecurity case management• Knowledge of ISSM and ISSO• Knowledge of Risk Management Framework (RMF) package documentation• Knowledge of the RMF assessment and authorization process for DoD computer systems• Knowledge of managing incidents and data spills for unclassified and classified systems• Ability to work in a team environment• HS diploma or GED• Possession of excellent organizational skills• Possession of excellent oral and written communication skills• Level II IAM CertificationWhat we Offer: • Competitive pay and benefits• 401k eligibility after 6 months, including company match Allyon, Inc. is an equal employment opportunities (EEO) employer and terms of employment are without regard to race, color, religion, sex, national origin, age, disability or genetics. Allyon, Inc. complies with applicable state and local laws governing nondiscrimination in employment. This policy applies to all terms and conditions of employment.

Own Your Future. Modern Technology Solutions, Inc. (MTSI) is seeking a Senior Information Systems Security Manager (Sr. ISSM) in Dayton, OH.Why is MTSI known as a Great Place to Work?Interesting Work: Our co-workers support some of the most important and critical programs to our national defense and security. Values: Our first core value is that employees come first. We challenge our co-workers to provide the highest level of support and service, and reward them with some of the best benefits in the industry. 100% Employee Ownership: we have a stake in each other's success, and the success of our customers. It's also nice to know what's going on across the company; we have company wide town-hall meetings three times a year. Great Benefits - Most Full-Time Staff Are Eligible for: Starting PTO accrual of 20 days PTO/year + 10 holidays/yearFlexible schedules6% 401k match with immediate vestingSemi-annual bonus eligibility (July and December)Company funded Employee Stock Ownership Plan (ESOP) - a separate qualified retirement accountUp to $10,000 in annual tuition reimbursementOther company funded benefits, like life and disability insuranceOptional zero deductible Blue Cross/Blue Shield health insurance planTrack Record of Success: We have grown every year since our founding in 1993Modern Technology Solutions, Inc. (MTSI) is a 100% employee-owned engineering services and solutions company that provides high-demand technical expertise in Digital Transformation, Modeling and Simulation, Rapid Capability Development, Test and Evaluation, Artificial Intelligence, Autonomy, Cybersecurity and Mission Assurance. MTSI delivers capabilities to solve problems of global importance. Founded in 1993, MTSI today has employees at over 20 offices and field sites worldwide.For more information about MTSI, please visit www.mtsi-va.com.Responsibilities:The Information Systems Security Manager (ISSM) will serve as information security professional responsible for conducting information system security engineering activities that captures and refines information security requirements and ensures the requirements are effectively integrated into information systems. The candidate shall have the necessary experience to support the customer by independently executing the following tasks: • Provide technical input, recommendations and assistance with the implementation of both higher and granular-level cyber security approaches, methods and solutions that incorporate and maintain compliance to requirements resulting from laws, regulations and other pertinent guidance. • Advise the ISO and PSO concerning the impact levels for confidentiality, integrity, and availability for the information systems. • Evaluate threats and vulnerability to information systems to ascertain the need for additional safeguards. • Review and approve information system security assessment plan which is comprised of the SSP, the SCTM, and the security control assessment procedures. • Ensure security assessments are completed for information systems. • Prepare the final Security Assessment Report (SAR) which includes assessment results and findings, at the conclusion of each security assessment activity. • Initiate a POA&M with identified weakness and suspense dates for each information system based on findings and recommendations from the sar. • Evaluate security assessment documentation and provide written recommendations for security authorization to the ao • Develop recommendation for authorization and submit the security authorization package to the ao. • Assess proposed changes to information systems, their environment of operation, and mission needs that could affect system authorization. • Provide purposeful security architecting, design, development, and configuration of information systems. • Provide inputs to development teams responsible for designing and developing organizational information systems and upgrading legacy systems. • Employ best practices when implementing security requirements for information systems including software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques. • Keep abreast of current and new security technologies and threats. • Research and review proposed new systems, networks, and software designs for potential security risks and impacts; recommend mitigation, countermeasures or other options. • Identify integration issues related to the implementation of new systems within the existing infrastructure; recommend mitigation and/or resolution options.Qualifications:• Minimum of 10 years of relevant DoD work experience• No less than three (3) years' experience in a SAP and/or SCI environment within the least five (5) years• Master of Arts/Master of Science/Master of Engineering (MA/MS/ME) degree• Must possess an active top secret security clearance, current within five years, based upon a single scope background investigation (SSBI) or SSBI periodic review and be eligible for sensitive compartmented information (SCI) and special access programs (SAP) accessADDITIONAL NOTES:• Experience working with platform integrated technology (PIT) is desirable#LI-DB1

Responsible for executing audit assignments, documenting system processes and testing controls as assigned by the Senior Information Systems Auditor/or Information Systems Audit Manager. Role model and demonstrate the company's core values of respect, honesty, integrity, diversity, inclusion and safety of others.From one tiny Cincinnati grocery store more than a century ago, we've grown into what today is the nation's largest grocer with nearly 2,800 stores in 35 states operating under 28 different names. As America's grocer, we take pride in bringing diverse teams with a passion for food and people together with one common purpose: To Feed the Human Spirit. With a history of innovation, we work tirelessly to create amazing experiences for our customers, communities AND each other, with food at the heart of it all.Here, people matter. That's why we strive to provide the ingredients you need to create your own recipe for success at work and in life. We help feed your future by providing the value and care you need to grow. If you're caring, purpose-driven and hungry to learn, your potential is unlimited.Whether you're seeking a part-time position or a new career path, we've got a fresh opportunity for you. Apply today to become part of our Kroger family!Minimum: Bachelor's degree with a major in Information Systems, Accounting or Finance 1+ years of experience as an IS auditor (Level 5) Familiarity with Microsoft Windows and products such as Excel, Word and Access Knowledge of basic accounting and business processes Ability to communicate findings in a clear, concise manner Ability to work independently and meet agreed to deadlines Ability to communicate with technical and non-technical team members Availability for occasional weekend assignments Ability to travel independently (up to 30%) Desired: Experience with SQL or another structured query language or data extraction tool Ability to understand and document existing IT processes Application development experience through college course work or internship Execute assigned tests, document findings and summarize conclusions. Review conclusions and test results with Information Systems Staff or business personnel responsible for the area being audited. Maintain program and user documentation for software developed by the Internal Audit. Assist financial audit staff defining report requirements for new applications. Develop and maintain audit software using Business Objects, ACL, Information Expert, JD Edwards One World, CULPRIT and the Consul Report writer. Must be able to perform the essential functions of this position with or without reasonable accommodation.

About us:Gen3 Technology Consulting isan SBA-certified Woman-Owned Small Business (WOSB) providinga diverse set of technology services and solutions to federal and commercial clients. Founded in 2017, Gen3 leverages over 25 years of information technology management and leadership experience to help our clients define, plan, manage, and achieve their strategic vision while protecting their critical IT assets.We attract and retain the highest caliber of talent by supporting an inclusive work environment, cultivating growth and leadership both professionally and personally, and encouraging work-life balance. We strive to make it our priority to be compassionate, family-friendly, respectful, and flexible. Gen3's Joint Ventures,Pivotal Impact(JV with Caladwich) andVetCentric(JV with PingWind) expand our team'sknowledge and expertise as we pool resources to bring federal agencies strong technical, program management, and cyber security solutions, derived by a disciplined management consulting approach.About the role:Gen3 is looking for an Information System Security Officer to support UNICOR. As an Information System Security Officer, you'll ensure compliance with all applicable requirements, providing in-depth technical analysis for sound compliance/regulatory driven program decisions and input into the multitude of data calls, process improvements, and requirement updates that will need to be implemented throughout the organization. Location:?Washington, DCWhat you'll do:?Implement and maintain robust information security measures to safeguard UNICOR or federal prison system data and infrastructure.Develop and enforce security policies, procedures, and guidelines in accordance with industry best practices and regulatory requirements.Conduct regular security assessments and audits to identify vulnerabilities and mitigate risks.Provide expert guidance and support to IT teams on security-related matters, including network and system configurations, access controls, and incident response.Monitor and analyze security logs and alerts to detect and respond to security incidents in a timely manner.Collaborate with internal stakeholders and external partners to address security concerns and ensure compliance with security standards and regulations.Stay abreast of emerging threats and technologies in the field of information security andRecommend proactive measures to enhance the security posture of UNICOR or federal prison.What you'll need:?Bachelor of Arts or Bachelor of Sciencedegreein a related discipline and a minimumof 5 years of related and relevant experience in information security management.CISSP (Certified Information Systems Security Professional) or equivalent.Certified Tenable.sc proficiency.Certified TrendMicro Tipping Point Security Solutions Administration.AWS Essentials for Tipping Point Administrators.Expertise in DISA STIGS compliance for network devices, servers, systems, and applications.Change Auditor for log reporting.Trustwave Db Protect with SQL and SAP servers and services.SolarWinds Logging and Event Manager.Spunk Enterprise scripting.Linux administration.Familiarity with Linux/Microsoft Windows forensic tools.Working knowledge of ELMs tool.Spunk Enterprise scripting- Expert level knowledge Solar winds Logging and Event Manager.What's desired to have:?Previous experience supporting federal or state agencies, especially UNICOR, DOJ, or the prison system is highly desired.*Position is pending contract award.

Leads and enhances the institution's IT audit functions, including cybersecurity, system integrity, and data privacy. Responsible for developing and implementing comprehensive IT audit strategies, policies, and procedures to ensure the institution's IT assets are effectively safeguarded and comply with applicable laws and regulations. Working closely with senior management and various department heads, and subject matter experts from various areas of IT this position will identify potential IT risks and vulnerabilities, recommend mitigation strategies, and provide critical insights to support the institution's strategic objectives. This position will also be responsible for enhancing audits using technology and computer aided auditing tools. By leveraging their expertise in IT audit and information systems, the Information Technology Auditor will play a key role in strengthening the institution's IT governance framework, improving operational effectiveness, and fostering a culture of continuous improvement and compliance. Through their efforts and collaboration, they will enable the institution to achieve higher levels of assurance, control, and efficiency in its use of technology, supporting data-driven decision-making and enhancing overall institutional resilience. Formulates comprehensive IT audit strategies, policies, and procedures that address the institution's specific needs and regulatory landscape, ensuring effective safeguarding of university IT assets and data. Responsible for performing and overseeing the planning, execution, and management of IT audit projects, focusing on cybersecurity, system integrity, and data privacy to ensure alignment with federal, state, regulatory and institutional goals and compliance requirements. Serves as the liaison with IT for IT external auditors and/or co-sourced audit consultants such as IT subject matter experts (SMEs). Conducts thorough risk assessments to identify IT vulnerabilities and threats. Develop and recommend areas to manage identified risks and enhance the institution's security posture/compliance. Integrates and utilizes advanced technology and computer-aided auditing tools to increase the efficiency and effectiveness of audit processes. Explores and implements new technologies that can support auditing activities. Acts as a trusted partner to senior management and various department heads to provide expert advice on IT risks, security controls, and compliance issues. Offer actionable insights to support the institution's strategic planning, decision-making processes and compliance goals. Prepares and presents detailed audit reports that clearly communicate audit findings, implications, and recommendations to stakeholders, while ensuring they are placed in the appropriate context. Ensures timely follow-up on audit recommendations to monitor implementation and impact. Enhances the institution's IT governance framework by ensuring that IT audit activities are aligned with overall governance structures and compliance requirements. Advocates for best practices in IT governance, risk management, and control. Evaluates and recommends improvements to operational processes through the strategic application of IT audit findings. Foster a culture of continuous improvement and operational excellence across the institution. Keeps abreast of the latest trends and developments in IT audit, cybersecurity, and regulatory compliance. Participates in professional development opportunities and share knowledge with the audit team and broader institution. Engages with internal and external stakeholders to build trust and collaboration. Participate in committees and working groups related to IT governance, risk management, and audit to represent the audit department's interests and perspectives. Performs other job-related duties as required. EEO/AABachelors and 3 years experienceEducation: Requires a thorough understanding of both theoretical and practical aspects of an analytical, technical or professional discipline; or the basic knowledge of more than one professional discipline. Knowledge of the discipline is normally obtained through a formal, directly job-related 4 year degree from a college or university or an equivalent in-depth specialized training program that is directly related to the type of work being performed.Experience: Requires a minimum of three (3) years of directly job-related experience. Preferred: Experience in a distributed higher education environment.Certification/Licensing: Requires licensing, certification or registration directly related to the job, as specified on the job posting details. Preferred Certifications: ISACA Certified Information Systems Auditor (CISA), or ISO Auditor certification or equivalent formal audit certification.

Information System Security DeveloperFIST 4573-585CALIBRE Systems Inc., an employee-owned Management Consulting and Digital Transformation Company is seeking a Information System Security Developer (Mid-level) that will design, develop, test, and evaluate information system security throughout the systems development life cycle.The Information System Security Developer’s responsibilities include, but are not limited to, the following:Analyze design constraints, analyze trade-offs and detailed system and security design, and consider life cycle support.Apply security policies to applications that interface with one another, such as Business-to-Business (B2B) applications.Assess the effectiveness of cybersecurity measures utilized by system(s).Assess threats to and vulnerabilities of computer system(s) to develop a security risk profile.Build, test, and modify product prototypes using working models or theoretical models.Conduct Privacy Impact Assessments (PIAs) of the application’s security design for the appropriate security controls, which protect the confidentiality and integrity of Personally Identifiable Information (PII).Design and develop cybersecurity or cybersecurity-enabled products.Design hardware, operating systems, and software applications to adequately address cybersecurity requirements.Design or integrate appropriate data backup capabilities into overall system designs, and ensure that appropriate technical and procedural processes exist for secure system backups and protected storage of backup data.Develop and direct system testing and validation procedures and documentation.Develop detailed security design documentation for component and interface specifications to support system design and development.Develop Disaster Recovery and Continuity of Operations plans for systems under development and ensure testing prior to systems entering a production environment.Develop risk mitigation strategies to resolve vulnerabilities and recommend security changes to system or system components as needed.Develop specific cybersecurity countermeasures and risk mitigation strategies for systems and/or applications.Identify components or elements, allocate security functions to those elements, and describe the relationships between the elements.Identify and direct the remediation of technical problems encountered during testing and implementation of new systems (e.g., identify and find workarounds for communication protocols that are not interoperable).The Information System Security Developer will have demonstrated experience in the following:Designing countermeasures to identified security risks.Designing security controls based on cybersecurity principles and tenets.Designing the integration of hardware and software solutions.Developing and applying security system access controls.Discerning the protection needs (i.e., security controls) of information systems and networks.Evaluating the adequacy of security designs.Conducting audits or reviews of technical systems.Integrating and applying policies that meet system security objectives.The use of design modeling (e.g., unified modeling language).Applying cybersecurity and privacy principles to organizational requirements (relevant to confidentiality, integrity, availability, authentication, non-repudiation).Conducting vulnerability scans and recognizing vulnerabilities in security systems.Desired skills for this position include the ability to:Apply the methods, standards, and approaches for describing, analyzing, and documenting an organization's enterprise information technology (IT) architecture (e.g., Open Group Architecture Framework [TOGAF], Department of Defense Architecture Framework [DoDAF], Federal Enterprise Architecture Framework [FEAF]).Effectively communicate complex information, concepts, or ideas in a confident and well-organized manner through verbal, written, and/or visual means.Effectively collaborate with others as a member of planning teams, coordination groups, and task forces as necessary.US citizenActive Top Secret/Sensitive Compartmented Information (TS/SCI) clearance, eligible for Counterintelligence (CI) Polygraph.IAT, IAM, or IASAE Level 3 certification.Bachelor’s degree or higher from an accredited college or university in Computer Science, Cyber Security, Information Technology, Software Engineering, Information Systems, or Computer Engineering degree; or a degree in a Mathematics or Engineering field.Available for possible travel within the Continental United States (CONUS) and Outside CONUS (OCONUS).St. Louis, Missouri, United StatesFull-Time/RegularEqual Opportunity Employer, including disability/protected veteransPI240049221

Own Your Future. Modern Technology Solutions, Inc. (MTSI) is seeking a Senior Information Systems Security Manager (Sr. ISSM) in Dayton, OH.Why is MTSI known as a Great Place to Work?Interesting Work: Our co-workers support some of the most important and critical programs to our national defense and security. Values: Our first core value is that employees come first. We challenge our co-workers to provide the highest level of support and service, and reward them with some of the best benefits in the industry. 100% Employee Ownership: we have a stake in each other's success, and the success of our customers. It's also nice to know what's going on across the company; we have company wide town-hall meetings three times a year. Great Benefits - Most Full-Time Staff Are Eligible for: Starting PTO accrual of 20 days PTO/year + 10 holidays/yearFlexible schedules6% 401k match with immediate vestingSemi-annual bonus eligibility (July and December)Company funded Employee Stock Ownership Plan (ESOP) - a separate qualified retirement accountUp to $10,000 in annual tuition reimbursementOther company funded benefits, like life and disability insuranceOptional zero deductible Blue Cross/Blue Shield health insurance planTrack Record of Success: We have grown every year since our founding in 1993Modern Technology Solutions, Inc. (MTSI) is a 100% employee-owned engineering services and solutions company that provides high-demand technical expertise in Digital Transformation, Modeling and Simulation, Rapid Capability Development, Test and Evaluation, Artificial Intelligence, Autonomy, Cybersecurity and Mission Assurance. MTSI delivers capabilities to solve problems of global importance. Founded in 1993, MTSI today has employees at over 20 offices and field sites worldwide.For more information about MTSI, please visit www.mtsi-va.com.Responsibilities:The Information Systems Security Manager (ISSM) will serve as information security professional responsible for conducting information system security engineering activities that captures and refines information security requirements and ensures the requirements are effectively integrated into information systems. The candidate shall have the necessary experience to support the customer by independently executing the following tasks: • Provide technical input, recommendations and assistance with the implementation of both higher and granular-level cyber security approaches, methods and solutions that incorporate and maintain compliance to requirements resulting from laws, regulations and other pertinent guidance. • Advise the ISO and PSO concerning the impact levels for confidentiality, integrity, and availability for the information systems. • Evaluate threats and vulnerability to information systems to ascertain the need for additional safeguards. • Review and approve information system security assessment plan which is comprised of the SSP, the SCTM, and the security control assessment procedures. • Ensure security assessments are completed for information systems. • Prepare the final Security Assessment Report (SAR) which includes assessment results and findings, at the conclusion of each security assessment activity. • Initiate a POA&M with identified weakness and suspense dates for each information system based on findings and recommendations from the sar. • Evaluate security assessment documentation and provide written recommendations for security authorization to the ao • Develop recommendation for authorization and submit the security authorization package to the ao. • Assess proposed changes to information systems, their environment of operation, and mission needs that could affect system authorization. • Provide purposeful security architecting, design, development, and configuration of information systems. • Provide inputs to development teams responsible for designing and developing organizational information systems and upgrading legacy systems. • Employ best practices when implementing security requirements for information systems including software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques. • Keep abreast of current and new security technologies and threats. • Research and review proposed new systems, networks, and software designs for potential security risks and impacts; recommend mitigation, countermeasures or other options. • Identify integration issues related to the implementation of new systems within the existing infrastructure; recommend mitigation and/or resolution options.Qualifications:• Minimum of 10 years of relevant DoD work experience• No less than three (3) years' experience in a SAP and/or SCI environment within the least five (5) years• Master of Arts/Master of Science/Master of Engineering (MA/MS/ME) degree• Must possess an active top secret security clearance, current within five years, based upon a single scope background investigation (SSBI) or SSBI periodic review and be eligible for sensitive compartmented information (SCI) and special access programs (SAP) accessADDITIONAL NOTES:• Experience working with platform integrated technology (PIT) is desirable#LI-DB1

Own Your Future. Modern Technology Solutions, Inc. (MTSI) is seeking a Senior Information Systems Security Manager (Sr. ISSM) in Dayton, OH.Why is MTSI known as a Great Place to Work?Interesting Work: Our co-workers support some of the most important and critical programs to our national defense and security. Values: Our first core value is that employees come first. We challenge our co-workers to provide the highest level of support and service, and reward them with some of the best benefits in the industry. 100% Employee Ownership: we have a stake in each other's success, and the success of our customers. It's also nice to know what's going on across the company; we have company wide town-hall meetings three times a year. Great Benefits - Most Full-Time Staff Are Eligible for: Starting PTO accrual of 20 days PTO/year + 10 holidays/yearFlexible schedules6% 401k match with immediate vestingSemi-annual bonus eligibility (July and December)Company funded Employee Stock Ownership Plan (ESOP) - a separate qualified retirement accountUp to $10,000 in annual tuition reimbursementOther company funded benefits, like life and disability insuranceOptional zero deductible Blue Cross/Blue Shield health insurance planTrack Record of Success: We have grown every year since our founding in 1993Modern Technology Solutions, Inc. (MTSI) is a 100% employee-owned engineering services and solutions company that provides high-demand technical expertise in Digital Transformation, Modeling and Simulation, Rapid Capability Development, Test and Evaluation, Artificial Intelligence, Autonomy, Cybersecurity and Mission Assurance. MTSI delivers capabilities to solve problems of global importance. Founded in 1993, MTSI today has employees at over 20 offices and field sites worldwide.For more information about MTSI, please visit www.mtsi-va.com.Responsibilities:The Information Systems Security Manager (ISSM) will serve as information security professional responsible for conducting information system security engineering activities that captures and refines information security requirements and ensures the requirements are effectively integrated into information systems. The candidate shall have the necessary experience to support the customer by independently executing the following tasks: • Provide technical input, recommendations and assistance with the implementation of both higher and granular-level cyber security approaches, methods and solutions that incorporate and maintain compliance to requirements resulting from laws, regulations and other pertinent guidance. • Advise the ISO and PSO concerning the impact levels for confidentiality, integrity, and availability for the information systems. • Evaluate threats and vulnerability to information systems to ascertain the need for additional safeguards. • Review and approve information system security assessment plan which is comprised of the SSP, the SCTM, and the security control assessment procedures. • Ensure security assessments are completed for information systems. • Prepare the final Security Assessment Report (SAR) which includes assessment results and findings, at the conclusion of each security assessment activity. • Initiate a POA&M with identified weakness and suspense dates for each information system based on findings and recommendations from the sar. • Evaluate security assessment documentation and provide written recommendations for security authorization to the ao • Develop recommendation for authorization and submit the security authorization package to the ao. • Assess proposed changes to information systems, their environment of operation, and mission needs that could affect system authorization. • Provide purposeful security architecting, design, development, and configuration of information systems. • Provide inputs to development teams responsible for designing and developing organizational information systems and upgrading legacy systems. • Employ best practices when implementing security requirements for information systems including software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques. • Keep abreast of current and new security technologies and threats. • Research and review proposed new systems, networks, and software designs for potential security risks and impacts; recommend mitigation, countermeasures or other options. • Identify integration issues related to the implementation of new systems within the existing infrastructure; recommend mitigation and/or resolution options.Qualifications:• Minimum of 10 years of relevant DoD work experience• No less than three (3) years' experience in a SAP and/or SCI environment within the least five (5) years• Master of Arts/Master of Science/Master of Engineering (MA/MS/ME) degree• Must possess an active top secret security clearance, current within five years, based upon a single scope background investigation (SSBI) or SSBI periodic review and be eligible for sensitive compartmented information (SCI) and special access programs (SAP) accessADDITIONAL NOTES:• Experience working with platform integrated technology (PIT) is desirable#LI-DB1

Own Your Future. Modern Technology Solutions, Inc. (MTSI) is seeking a Senior Information Systems Security Manager (Sr. ISSM) in Dayton, OH.Why is MTSI known as a Great Place to Work?Interesting Work: Our co-workers support some of the most important and critical programs to our national defense and security. Values: Our first core value is that employees come first. We challenge our co-workers to provide the highest level of support and service, and reward them with some of the best benefits in the industry. 100% Employee Ownership: we have a stake in each other's success, and the success of our customers. It's also nice to know what's going on across the company; we have company wide town-hall meetings three times a year. Great Benefits - Most Full-Time Staff Are Eligible for: Starting PTO accrual of 20 days PTO/year + 10 holidays/yearFlexible schedules6% 401k match with immediate vestingSemi-annual bonus eligibility (July and December)Company funded Employee Stock Ownership Plan (ESOP) - a separate qualified retirement accountUp to $10,000 in annual tuition reimbursementOther company funded benefits, like life and disability insuranceOptional zero deductible Blue Cross/Blue Shield health insurance planTrack Record of Success: We have grown every year since our founding in 1993Modern Technology Solutions, Inc. (MTSI) is a 100% employee-owned engineering services and solutions company that provides high-demand technical expertise in Digital Transformation, Modeling and Simulation, Rapid Capability Development, Test and Evaluation, Artificial Intelligence, Autonomy, Cybersecurity and Mission Assurance. MTSI delivers capabilities to solve problems of global importance. Founded in 1993, MTSI today has employees at over 20 offices and field sites worldwide.For more information about MTSI, please visit www.mtsi-va.com.Responsibilities:The Information Systems Security Manager (ISSM) will serve as information security professional responsible for conducting information system security engineering activities that captures and refines information security requirements and ensures the requirements are effectively integrated into information systems. The candidate shall have the necessary experience to support the customer by independently executing the following tasks: • Provide technical input, recommendations and assistance with the implementation of both higher and granular-level cyber security approaches, methods and solutions that incorporate and maintain compliance to requirements resulting from laws, regulations and other pertinent guidance. • Advise the ISO and PSO concerning the impact levels for confidentiality, integrity, and availability for the information systems. • Evaluate threats and vulnerability to information systems to ascertain the need for additional safeguards. • Review and approve information system security assessment plan which is comprised of the SSP, the SCTM, and the security control assessment procedures. • Ensure security assessments are completed for information systems. • Prepare the final Security Assessment Report (SAR) which includes assessment results and findings, at the conclusion of each security assessment activity. • Initiate a POA&M with identified weakness and suspense dates for each information system based on findings and recommendations from the sar. • Evaluate security assessment documentation and provide written recommendations for security authorization to the ao • Develop recommendation for authorization and submit the security authorization package to the ao. • Assess proposed changes to information systems, their environment of operation, and mission needs that could affect system authorization. • Provide purposeful security architecting, design, development, and configuration of information systems. • Provide inputs to development teams responsible for designing and developing organizational information systems and upgrading legacy systems. • Employ best practices when implementing security requirements for information systems including software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques. • Keep abreast of current and new security technologies and threats. • Research and review proposed new systems, networks, and software designs for potential security risks and impacts; recommend mitigation, countermeasures or other options. • Identify integration issues related to the implementation of new systems within the existing infrastructure; recommend mitigation and/or resolution options.Qualifications:• Minimum of 10 years of relevant DoD work experience• No less than three (3) years' experience in a SAP and/or SCI environment within the least five (5) years• Master of Arts/Master of Science/Master of Engineering (MA/MS/ME) degree• Must possess an active top secret security clearance, current within five years, based upon a single scope background investigation (SSBI) or SSBI periodic review and be eligible for sensitive compartmented information (SCI) and special access programs (SAP) accessADDITIONAL NOTES:• Experience working with platform integrated technology (PIT) is desirable#LI-DB1