Information
Security
We directly support mission-critical operations within the Department of Defense, making a tangible and significant impact through the seamless execution of vital tasks in information security, bolstering Warfighter lethality and national security efforts.
Information Systems Security Manager (ISSM)
ASEC’s Information Systems Security Managers (ISSM) help to safeguard critical information systems and ensure their resilience against cyber threats. ISSMs serve as the principal advisor, offering expertise on all matters related to the security of information systems within their purview. Responsibilities encompass overseeing the correct implementation, assessment, and testing of security controls established in the Authority to Operate (ATO).
Staying ahead of today’s evolving cybersecurity challenges, our ISSMs implement leading frameworks such as the Risk Management Framework (RMF/NIST 800-37) and the Joint SAP Implementation Guide to the RMF (JSIG), allowing for the highest standards of security for our systems. As a leader within our organization, ISSMs manage a team of Information Systems Security Officers, Network Administrators, and System Administrators, empowering them to excel in their roles and contribute to our collective mission of safeguarding sensitive information.
ASEC ISSMs’ expertise in information systems security is highly valued and makes a tangible impact in protecting our organization and its stakeholders from cyber threats.
Information Systems Security Officer (ISSO)
ASEC Information Systems Security Officers (ISSOs) act as the guardians of classified computing environments. Our ISSOs work closely with our Information Systems Security Manager (ISSM) to uphold the highest standards of security, committing to strict adherence to relevant policies outlined in the Risk Management Framework (RMF) or the Joint SAP Implementation Guide (JSIG). Their role is pivotal in maintaining system compliance, conducting thorough audits, and developing robust security plans to safeguard our critical information assets.
Our ISSOs deliver impactful information systems security education and awareness programs, empowering our team members to stay vigilant against evolving threats. In collaboration with the ISSM, they coordinate any changes or modifications to our systems, ensuring that every action taken aligns with our commitment to security excellence. Their leadership extends to directing Network Administrators and System Administrators, guiding their efforts in system patching, malicious code protection, system backup, and recovery.