Cybersecurity – Information System Security Manager (ISSM)

About The Position

Requirements

• Successfully completed Tier 5 Investigation (T5), formerly known as a Single Scope Background Investigation (SSBI) by the federal government within the last 5 years, or requires candidate to have been enrolled in a Continuous Vetting program within the last 5 years
• Currently hold certification in good standing to satisfy IAM Level III (CISSP, GSLC, or CISM)
• 5+ years of experience with cyber security policies and implementation of Risk Management Framework (RMF): e.g. DAAPM, CNSSI 1253, ICD-503, JSIG, or NIST SP 800 series

Nice To Haves

• 5+ years of experience as an information system security officer (ISSO) or information system security manager (ISSM) supporting classified programs
• 5+ years of experience utilizing security relevant tools, systems, and applications in support of Risk Management Framework (RMF) to include NESSUS, ACAS, DISA STIGs, SCAP, Audit Reduction, and HBSS
• 5+ years of experience assessing and documenting test or analysis data to show cyber security compliance

Responsibilities

• Performs security analysis of operational and development environments, threats, vulnerabilities and internal interfaces to define and assess compliance with accepted industry and government standards
• Leads and implements the Assessment and Authorization (A&A) processes under the Risk Management Framework (RMF) for new and existing information systems
• Facilitates development of Memorandums of Understanding (MOU), Interconnection Security Agreements (ISA), Risk Acknowledgement Letters (RAL) and support Continuous Monitoring (CONMON)
• Oversees configuration management of assigned systems; auditing systems to ensure security posture integrity
• Leads staff with assessments and test/analysis data to document state of compliance with security requirements
• Conducts risk assessments and investigations, execute appropriate risk mitigations, and oversee incident response activities
• Conducts periodic hardware/software inventory assessments
• Serves as organization spokesperson on advanced projects and programs
• Acts as advisor to management and customers on advanced technical research studies
• Interfaces with the appropriate government customers, suppliers, and company personnel to implement protective mechanisms and to ensure understanding of and compliance with cybersecurity requirements

Benefits

• Elements of the Total Rewards package include competitive base pay and variable compensation opportunities.
• The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.