Senior Information Systems Security Officer (ISSO)

Date Posted:

2023-10-17

Country:

United States of America

Location:

MA803: Marlborough, MA Building 3 1001 Boston Post Road Building 3, Marlborough, MA, 01752 USA

Position Role Type:

Onsite

At Raytheon, the foundation of everything we do is rooted in our values and a higher calling – to help our nation and allies defend freedoms and deter aggression. We bring the strength of more than 100 years of experience and renowned engineering expertise to meet the needs of today’s mission and stay ahead of tomorrow’s threat. Our team solves tough, meaningful problems that create a safer, more secure world.  

Job Summary:

Our cybersecurity team in Marlborough, MA, is seeking a Sr. Information Systems Security Officer (ISSO), Cyber Security & Risk Management Professional.  Relocation support is available, see below for further details regarding what we offer.

The Sr. ISSO is responsible for compliance oversight, assessment, and operations of systems under their purview. They may be assigned to a single large-scale program or oversee multiple programs.  Although you will not have direct reports, you will mentor a team of ISSO’s to provide support and advice pertaining to day-to-day occurrences or issues.

You will conduct recurring Cybersecurity reviews on information systems in accordance with DoD Manuals, NIST Special Publications, customer directives, and company policies as applicable (see list below for further details**).

You’ll serve as subject matter experts (SME) on a broad range of Cybersecurity topics. You may represent the Cybersecurity organization and business unit to external Cybersecurity counterparts. You are responsible for providing guidance and technical training to ISSOs across the organization.

Responsibilities to Anticipate:

  • Reviewing and approving (within authority) configuration management requests
  • Conducting technical and administrative assessments
  • Integrating new Cybersecurity processes, procedures and tools
  • Support ISSOs and Cybersecurity Managers in the creation, review and update of Cybersecurity documentation and other technical writing
  • Oversee ISSO’s to ensure implementation of policies and procedures as outlined within the Cybersecurity artifacts and governing documentation
  • Intermittent travel to other RMD locations (10-20%)

Basic Qualifications:

  • Typically requires a Bachelor’s degree with 8 years of relevant experience as described below or an advanced degree with 5 years of relevant experience described in the bullet below
  • Relevant experience consists of any combination:
    • Cybersecurity, systems security or hardening
    • Information Technology
    • Experience with network security and/or systems security, which includes any of the following: architecture, topology, protocols, components, and/or principles 
    • Experience with configuring and/or auditing operating systems
    • Compliance-based auditing using the Risk Management Framework (RMF), DCSA Assessment and Authorization Process Manual (DAAPM), Joint SAP Implementation Guide (JSIG), National Industrial Security Program Operating Manual (NISPOM), and/or non-defense regulations such as FAA, Payment Card Industry (PCI), ISO 9001 Quality Management standards, or HIPPA
    • Experience working with and/or supporting computer technologies (such as: databases, operating systems, computer network hardware, software programs, hardware troubleshooting or electronics)
    • Physical security/security, policework/criminal justice, investigations, or Border Patrol
    • Project or program management, office management, senior administration, or account management
  • IAM Level I certification (Security+ or other)
  • Active and transferable U.S. government issued security clearance is required prior to start date.  U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance.

Preferred Qualifications:

  • Experience working in DoD classified operating and/or laboratory environments
  • Experience with various information system security tools that address vulnerability analysis and mitigation.  These may include Splunk, Forcepoint, Ivanti, Tenable, ACAS, HBSS, etc.
  • Familiarity with implementation of Government directives and policies derived from NIST, CNSSI, DoD, or other Government Regulatory compliance standards within a professional industry
  • Experience in the execution of the Assessment & Authorization processes, as defined within the Risk Managed Framework (RMF)
  • Experience providing technical security consultation for complex, cross-domain, heterogeneous classified networked environments in collaboration with internal/external Customers, Information Technology (IT)
  • Familiarity with large multi-facility networks including diverse and complex components, including Windows and Linux environments
  • Experience interpreting, implementing, and assessing DISA STIGs.
  • Familiarity with the execution and management of cyber incident response; preservation, containment, and eradication

** The National Industrial Security Program Operating Manual (NISPOM), DoD Special Access Program (SAP) Security Manuals, Risk Management Framework (RMF), Intelligence Community Directive (ICD-503), Joint Special Access Program (SAP) Implementation Guide (JSIG), Defense Counterintelligence Security Agency (DCSA) Assessment and Authorization Process Manual (DAAPM), associated National Institute of Standards and Technology (NIST).

What We Offer:

Whether you’re just starting out on your career journey or are an experienced professional, we offer a robust total rewards package that goes above and beyond with compensation; healthcare, wellness, retirement and work/life benefits; career development and recognition programs. Some of the superior benefits we offer include parental (including paternal) leave, flexible work schedules, achievement awards, educational assistance and child/adult backup care.

Check us out on YouTube!

https://www.youtube.com/raytheontechnologies

#LI-Onsite

RTX is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.

Privacy Policy and Terms:

Click on this link to read the Policy and Terms

Organisation: 
Raytheon Technologies