Senior Information Systems Security Officer (ISSO) II - Tucson, AZ

About the position

At Raytheon, the foundation of everything we do is rooted in our values and a higher calling - to help our nation and allies defend freedoms and deter aggression. We bring the strength of more than 100 years of experience and renowned engineering expertise to meet the needs of today's mission and stay ahead of tomorrow's threat. Our team solves tough, meaningful problems that create a safer, more secure world. Our cybersecurity team is seeking a Senior Information Systems Security Officer (ISSO) II to support our team 100% onsite at our facility in Tucson, Arizona. The ISSO is responsible for compliance oversight, assessment, and operations of systems under their purview. They may be assigned to a single large-scale program or oversee multiple programs. Although you will not have direct reports, you will mentor a team of ISSO's to provide support and advice pertaining to day-to-day occurrences or issues. You will conduct recurring Cybersecurity reviews on information systems in accordance with DoD Manuals, NIST Special Publications, customer directives, and company policies as applicable. You'll serve as subject matter experts (SME) on a broad range of Cybersecurity topics. You may represent the Cybersecurity organization and business unit to external Cybersecurity counterparts. You are responsible for providing guidance and technical training to ISSOs across the organization.

Responsibilities

• Reviewing and approving (within authority) configuration management requests
• Conducting technical and administrative assessments
• Integrating new Cybersecurity processes, procedures and tools
• Support ISSOs and Cybersecurity Managers in the creation, review and update of Cybersecurity documentation and other technical writing
• Oversee ISSO's to ensure implementation of policies and procedures as outlined within the Cybersecurity artifacts and governing documentation
• Intermittent travel to other Raytheon locations (10-20%)

Requirements

• Typically requires a Bachelor's degree and a minimum 8 years prior relevant experience, or an Advanced Degree in a related field and minimum 5 years experience.
• IAM Level I certification (Security+ or other)
• Relevant Experience Considered in any combination: Cybersecurity, systems security or hardening, Information Technology, Compliance-based auditing using the Risk Management Framework (RMF), DCSA Assessment and Authorization Process Manual (DAAPM), Joint SAP Implementation Guide (JSIG), National Industrial Security Program Operating Manual (NISPOM), and/or non-defense regulations such as FAA, Payment Card Industry (PCI), ISO 9001 Quality Management standards, or HIPPA
• Experience working with and/or supporting computer technologies (such as: databases, operating systems, computer network hardware, software programs, hardware troubleshooting or electronics)
• Physical security/security, policework/criminal justice, investigations, or Border Patrol
• Project or program management, office management, senior administration, or account management

Nice-to-haves

• Experience working in DoD classified operating and/or laboratory environments
• Experience with various information system security tools that address vulnerability analysis and mitigation. These may include Splunk, Forcepoint, Ivanti, Tenable, ACAS, HBSS, etc.
• Familiarity with implementation of Government directives and policies derived from NIST, CNSSI, DoD, or other Government Regulatory compliance standards within a professional industry
• Experience in the execution of the Assessment & Authorization processes, as defined within the Risk Managed Framework (RMF)
• Experience providing technical security consultation for complex, cross-domain, heterogeneous classified networked environments in collaboration with internal/external Customers, Information Technology (IT)
• Familiarity with large multi-facility networks including complex components, including Windows and Linux environments
• Experience interpreting, implementing, and assessing DISA STIGs.
• Familiarity with the execution and management of cyber incident response; preservation, containment, and eradication

Benefits

• Medical, dental, vision, life insurance
• Short-term disability, long-term disability
• 401(k) match
• Flexible spending accounts
• Flexible work schedules
• Employee assistance program
• Employee Scholar Program
• Parental leave
• Paid time off, and holidays