Program Information Systems Security Manager (ISSM) - Tucson, AZ

RTXTucson, AZ
$107,500 - $204,500Onsite

About The Position

The Program Information Systems Security Manager (ISSM) is responsible for compliance oversight, assessment, and operations of systems under their purview. They may be assigned to a single large-scale program or oversee multiple programs. The ISSM also has cognizance of all collateral Classified Information System (CIS) at the Site per Commercial and Government Entity (CAGE) code as stipulated by various US Government requirements including (but not limited to): National Industrial Security Operating Manual (NISPOM) and related documentation such as: Risk Management Framework (RMF), Baseline Technical Security Configuration Standards, Defense Counter-Intelligence Security Agency (DCSA) Assessment and Authorization Process Manual (DAAPM), and Customer/contract specific Cybersecurity regulations. Components of the cybersecurity (CS) program include Assessment and Authorization (A&A) activities (documentation preparation, system configuration/validation, certification testing, etc.), security sustainment activities (hardware change management, software change management, account management, media protection, user interface, file transfers, etc.), conducting self-inspections, and delivering information systems security education and awareness. The ISSM will conduct recurring Cybersecurity reviews on information systems in accordance with DoD Manuals, NIST Special Publications, customer directives, and company policies as applicable. They are responsible for the execution of the Raytheon Continuous Monitoring Plan as required by CA-2 Security Assessments and will serve as subject matter experts (SME) on a broad range of Cybersecurity topics. The ISSM may represent the Cybersecurity organization and business unit to external Cybersecurity counterparts.

Requirements

  • University Degree or equivalent experience and minimum 8 years prior relevant experience, or An Advanced Degree in a related field and minimum 5 years experience.
  • Experience supporting cybersecurity compliance as stipulated by DCSA Assessment and Authorization Process Manual (DAAPM), Joint SAP Implementation Guide (JSIG), and/or National Industrial Security Program Operating Manual (NISPOM) regulations.
  • Direct leadership or project/program management experience.
  • IAM Level I certification (Security+ or other).
  • Active and transferable U.S. government issued security clearance is required prior to start date.
  • U.S. citizenship is required.
  • Secret - Current Security Clearance.
  • Active and existing security clearance required on day 1.
  • Within six months of hire date, must obtain and maintain a Security professional certification commensurate with IAM Level III certification commensurate with your role as a Program ISSM as required by DoD 8140 (8570) if you do not already have this certification.

Nice To Haves

  • Master’s Degree in Computer Science, Information Systems, Information Technology, Cyber Security, Criminal Justice, Business or other relevant degree.
  • Experience with various information system security tools that address vulnerability analysis and mitigation (e.g., Splunk, Forcepoint, Ivanti, Tenable, ACAS, HBSS).
  • Experience in the oversight and execution of the Assessment & Authorization processes (Certification & Accreditation), as defined in JSIG/RMF.
  • Experience in the execution and management of Information System’s (IS) incident response and administrative inquiries/investigations in collaboration with the Investigations department.
  • Experience in and execution of a continuous monitoring/improvement program (to include self-inspections, security control assessments, training, log management systems, automated inventory utilities).
  • Experience providing technical security expertise and oversight for complex, cross-domain, heterogeneous classified networked environments in collaboration with internal/external Customers, Information Technology (IT) and other Raytheon Business Units.
  • Experience working with the customer, both internal and external in the development of Basis of Estimates (BOE's) and contract negotiations.
  • Experience with any of the following: NISPOM, JAFAN 6/3, DCID 6/3, JSIG/RMF, and ICD-503 or equivalent requirements to include technical computer/network system auditing.
  • Experience in professional engagements with internal and external customers (i.e., AOs, DAOs, SCAs, Program Managers, etc.), to include negotiating controls/requirements with government Contracting Activities.

Responsibilities

  • Compliance oversight, assessment, and operations of systems under their purview.
  • Cognizance of all collateral Classified Information System (CIS) at the Site per Commercial and Government Entity (CAGE) code.
  • Assessment and Authorization (A&A) activities including documentation preparation, system configuration/validation, and certification testing.
  • Security sustainment activities including hardware change management, software change management, account management, media protection, user interface, and file transfers.
  • Conducting self-inspections and delivering information systems security education and awareness.
  • Conducting recurring Cybersecurity reviews on information systems in accordance with DoD Manuals, NIST Special Publications, customer directives, and company policies.
  • Execution of the Raytheon Continuous Monitoring Plan as required by CA-2 Security Assessments.
  • Serving as subject matter experts (SME) on a broad range of Cybersecurity topics.
  • Representing the Cybersecurity organization and business unit to external Cybersecurity counterparts.
  • Maintaining a working knowledge of all CIS functions, security policies, technical security safeguards, and operational security measures.
  • Interactions with DCSA SCA/ISSP to track items including upcoming authorizations (ATO), new technologies solutions, policy interpretations, and onsite A&A.
  • Developing, maintaining, and updating, in coordination with all system stakeholders, applicable site POAM(s) to identify system weaknesses, mitigating actions, resources, and timelines for corrective actions.
  • Coordinating DCSA SVA preparation activities for assigned CAGE in conjunction with site FSO/CS Manager.

Benefits

  • medical
  • dental
  • vision
  • life insurance
  • short-term disability
  • long-term disability
  • 401(k) match
  • flexible spending accounts
  • flexible work schedules
  • employee assistance program
  • Employee Scholar Program
  • parental leave
  • paid time off
  • holidays
  • annual short-term and/or long-term incentive compensation programs
© 2026 Teal Labs, Inc
Privacy PolicyTerms of Service