At Boeing, we innovate and collaborate to make the world a better place. From the seabed to outer space, you can contribute to work that matters with a company where diversity, equity and inclusion are shared values. We're committed to fostering an environment for every teammate that's welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.
East Region Classified Cybersecurity is seeking a highly motivated Cybersecurity - Information System Security Manager (ISSM) to join the team in Oklahoma City, OK.
The selected candidate will rely on cybersecurity and Information Assurance (IA) background to be a technical leader and support Enterprise activities and Boeing customers throughout multiple classified computing domains. The ISSM is responsible for ensuring all Information System Security policies, standards, and directives are enforced to support assessment, authorization and continued operation of information systems processing classified information.
Position Responsibilities:
Performs security analysis of operational and development environments, threats, vulnerabilities and internal interfaces to define and assess compliance with accepted industry and government standards
Leads and implements the Assessment and Authorization (A&A) processes under the Risk Managed Framework (RMF) for new and existing information systems
Facilitates development of Memorandums of Understanding (MOU), Interconnection Security Agreements (ISA), Risk Acceptance Letters (RAL) and support Continuous Monitoring (CONMON)
Configures management of assigned systems; auditing systems to ensure security posture integrity
Leads staff with assessments and test/analysis data to document state of compliance with security requirements
Conducts risk assessments and investigations, implements appropriate risk mitigations, and coordinates incident response activities
Serves as organization spokesperson on sophisticated projects and programs
Acts as advisor to management and customers on sophisticated technical research studies
Collaborates with the appropriate government customers, suppliers, and company personnel to implement protective mechanisms and to ensure understanding of and compliance with cybersecurity requirements
Supports and understands Defense Federal Acquisition Regulation Supplement (DFARS) and Cybersecurity Maturity Model Certification (CMCC) requirements, NIST 800-171, and contractual DFARS clauses
Additional Responsibilities:
Supervises the development and deployment of program information security for all program systems to meet the program and enterprise requirements, policies, standards, guidelines and procedures
Handles assigned team to facilitate effective execution of Risk Management Framework (RMF)
Provides guidance and mentor to support team within Information Security
Leads and performs security compliance continuous monitoring
Coordinates and participates in security assessments and audits
Prepares, reviews, and presents technical reports and briefings
Explores the enterprise and industry for evolving state of industry knowledge and methods regarding information security best practices
Leads development of enterprise-wide information security policies, standards, guidelines and procedures that may reach across multiple partner organizations
This position is expected to be 100% onsite. The selected candidate will be required to work onsite at one of the listed location options.
This position requires an active U.S. Secret Security Clearance (U.S. Citizenship Required). (A U.S. Security Clearance active in the past 24 months is considered active.)
Currently hold certification in good standing to satisfy IAM Level III (CISSP, GSLC or CISM)
3+ years of experience in utilizing security relevant tools, systems, and applications in support of Risk Management Framework (RMF) to include: NESSUS, ACAS, DISA STIGs, SCAP, Audit Reduction, and HBSS
Bachelor's degree or equivalent work or military experience
3+ years of experience with cybersecurity policies and implementation of Risk Management Framework (RMF): e.g. DAAPM, CNSSI 1253, ICD-503, JSIG, and/or NIST SP 800 series
3+ years of experience as an information system security officer (ISSO) or information system security manager (ISSM) supporting classified programs
3+ years of experience in assessing and documenting test or analysis data to show cybersecurity compliance
Typical Education/Experience:
Typically, 9 or more years' related work experience or relevant military experience. Advanced degree (e.g. Bachelor, Master, etc.) preferred, but not required.
Relocation:
Relocation assistance is not a negotiable benefit for this position. Candidates must live in the immediate area or relocate at their own expense.
Drug Free Workplace:
Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies .
Work Shift:
This position is for first shift.
At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base pay and variable compensation opportunities.
The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.
The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements.
Please note that the information shown below is a general guideline only. Pay is based upon candidate experience and qualifications, as well as market and business considerations.
Summary pay range: $107,100 - $144,900
Applicants for this position will be accepted through December 10th, 2024.
Export Control Requirements: U.S. Government Export Control Status: This position must meet export control compliance requirements. To meet export control compliance requirements, a "U.S. Person" as defined by 22 C.F.R. §120.15 is required. "U.S. Person" includes U.S. Citizen, lawful permanent resident, refugee, or asylee.
Export Control Details: US based job, US Person required
Equal Opportunity Employer:
Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.