Cybersecurity – Information System Security Manager (ISSM)

About The Position

Requirements

• Currently hold certification in good standing to satisfy IAM Level III (CISSP, GSLC, or CISM)
• 5+ years of experience with cyber security policies and implementation of Risk Management Framework (RMF): e.g. DAAPM, CNSSI 1253, ICD-503, JSIG, or NIST SP 800 series
• This position requires an active U.S. Secret Security Clearance (U.S. Citizenship Required). (A U.S. Security Clearance that has been active in the past 24 months is considered active)
• This position must meet U.S. export control compliance requirements. To meet U.S. export control compliance requirements, a “U.S. Person” as defined by 22 C.F.R. §120.62 is required. “U.S. Person” includes U.S. Citizen, U.S. National, lawful permanent resident, refugee, or asylee.

Nice To Haves

• 5+ years of experience as an information system security officer (ISSO) or information system security manager (ISSM) supporting classified programs
• 5+ years of experience utilizing security relevant tools, systems, and applications in support of Risk Management Framework (RMF) to include NESSUS, ACAS, DISA STIGs, SCAP, Audit Reduction, and HBSS
• 5+ years of experience assessing and documenting test or analysis data to show cyber security compliance
• Experience in project management
• Current CAPM (Certified Associate of Project Management) or PMP Certification
• Exceptional verbal, written, interpersonal and presentation skills, customer relationship building skills, analytical skills and ability to lead/mentor teammates
• Demonstrated experience leading audits conducted by external stakeholders

Responsibilities

• Perform security analysis of operational and development environments, threats, vulnerabilities, and internal interfaces to define and assess compliance with accepted industry and government standards on centrally managed and administrated network infrastructure
• Lead and implement the Authorization and Assessment (A&A) processes under the Risk Managed Framework (RMF) for existing eWAN and onboarding programs
• Facilitate development of Memorandums of Understanding (MOU) and Interconnection Security Agreements (ISA)
• Support Continuous Monitoring (CONMON) at data centers and at connected nodes across the Enterprise
• Oversee configuration management and auditing systems to ensure security posture integrity
• Conduct risk assessments and investigations, execute appropriate risk mitigation, and oversee incident response activities
• Conduct periodic hardware/software inventory assessments
• Interface with the appropriate government customers, suppliers, and company personnel to implement protective mechanisms and to ensure understanding of and compliance with cybersecurity requirements

Benefits

• At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base pay and variable compensation opportunities.
• The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.
• Pay is based upon candidate experience and qualifications, as well as market and business considerations.