Cybersecurity – Senior Information System Security Manager (ISSM)
About The Position
The Boeing Company is currently seeking a Cybersecurity – Senior Information System Security Manager (ISSM) to join the team in Huntington Beach, CA. The selected candidate will rely on Cybersecurity and Information Assurance (IA) background to be a technical leader and support Enterprise activities and Boeing customers throughout multiple classified computing domains. The Senior ISSM is responsible for maintaining and implementing all Information System Security policies, standards, and directives to ensure assessment and authorization of information systems processing classified information.
Requirements
- Successfully completed a Tier 5 Investigation (T5), formerly known as a Single Scope Background Investigation (SSBI) by the federal government within the last 5 years, or have been enrolled in a Continuous Vetting program within the last 5 years
- Currently hold certification in good standing to satisfy IAM Level III (CISSP, GSLC, or CISM)
- 10+ years of experience in cybersecurity policies and implementation of Risk Management Framework (RMF): e.g. DAAPM, CNSSI 1253, ICD-503, JSIG, or NIST SP 800 series
- 5+ years of experience as an information system security officer (ISSO) or information system security manager (ISSM) supporting classified programs
- Meet U.S. export control compliance requirements (U.S. Person as defined by 22 C.F.R. §120.62 is required)
- Active U.S. Top Secret/SCI Security Clearance (U.S. Citizenship Required)
Nice To Haves
- 10+ years of experience utilizing security relevant tools, systems, and applications in support of Risk Management Framework (RMF) to include NESSUS, ACAS, DISA STIGs, SCAP, Audit Reduction, and HBSS
- 10+ years of experience assessing and documenting test or analysis data to show cyber security compliance
Responsibilities
- Perform security analysis of operational and development environments, threats, vulnerabilities and internal interfaces to define and assess compliance with accepted industry and government standards
- Lead and implement the Assessment and Authorization (A&A) processes under the Risk Managed Framework (RMF) for new and existing information systems
- Facilitate development of Memorandums of Understanding (MOU), Interconnection Security Agreements (ISA), Risk Acceptance Letters (RAL) and support Continuous Monitoring (CONMON)
- Oversee configuration management of assigned systems; auditing systems to ensure security posture integrity
- Partner with Information Technology, Program Engineering, and Management with security requirements
- Conduct risk assessments and investigations, execute appropriate risk mitigations, and oversee incident response activities
- Conduct periodic hardware/software inventory assessments
- Serve as organization spokesperson on advanced projects and programs
- Act as advisor to management and customers on advanced technical research studies
- Interface with the appropriate government customers, suppliers, and company personnel to implement protective mechanisms and to ensure understanding of and compliance with cybersecurity requirements
Benefits
- competitive base pay
- variable compensation opportunities
- health insurance
- flexible spending accounts
- health savings accounts
- retirement savings plans
- life and disability insurance programs
- a number of programs that provide for both paid and unpaid time away from work
Stand Out From the Crowd
Upload your resume and get instant feedback on how well it matches this job.
What This Job Offers
Job Type
Full-time
Career Level
Senior
Education Level
No Education Listed
Number of Employees
5,001-10,000 employees
