Apply on Employer Site

Boeing · 1 month ago

Cybersecurity – Senior Information System Security Manager (ISSM)

USA - Herndon, VA

Full-time

Onsite

Senior Level

$161K/yr - $217K/yr

5+ years exp

The Boeing Company is seeking a Senior Information System Security Manager (ISSM) to join their Cybersecurity team in Herndon, VA. The ISSM will lead the development and deployment of information security for assigned systems, ensuring compliance with security policies and standards while supporting enterprise activities and customers.

AerospaceIndustrial

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Lead the development and deployment of program information security for assigned systems to meet the program and enterprise requirements, policies, standards, guidelines and procedures

Manage Risk Management Framework (RMF) processes, product development and product maintenance for assigned systems

Manage and perform security compliance continuous monitoring

Lead and participate in security assessments and audits

Prepare, review, and present technical reports and briefings

Identify root causes, prioritize threats and recommend/implement corrective action

Provide mentoring and technical leadership to the information security program team

Explore the enterprise and industry for the evolving state of industry knowledge and methods regarding information security best practices

Develop enterprise-wide information security policies, standards, guidelines and procedures that may reach across multiple stakeholder organizations

Qualification

Cybersecurity policiesRisk Management Framework (RMF)IAM Level III certificationInformation System Security ManagerSecurity compliance monitoringSecurity assessmentsContinuous Vetting programTechnical leadershipMentoringTechnical reporting

Required

Successfully completed Tier 5 Investigation (T5), formerly known as a Single Scope Background Investigation (SSBI) by the federal government within the last 5 years, or requires candidate to have been enrolled in a Continuous Vetting program within the last 5 years

Currently hold certification in good standing to satisfy IAM Level III (CISSP, GSLC, or CISM)

5+ years of experience in cybersecurity policies and implementation of Risk Management Framework (RMF): e.g. DAAPM, CNSSI 1253, ICD-503, JSIG, or NIST SP 800 series

Ability to obtain access to Sensitive Compartmented Information (SCI) Programs

Active Full Scope Polygraph

Preferred

5+ years of experience as an information system security officer (ISSO) or information system security manager (ISSM) supporting classified programs

5+ years of experience utilizing security relevant tools, systems, and applications in support of Risk Management Framework (RMF) to include NESSUS, ACAS, DISA STIGs, SCAP, Audit Reduction, and HBSS

5+ years of experience assessing and documenting test or analysis data to show cyber security compliance