Apply on Employer Site

Boeing · 1 hour ago

Cybersecurity - Information System Security Officer (ISSO)

USA - Berkeley, MO

Full-time

Onsite

Mid Level

$105K/yr - $143K/yr

3+ years exp

The Boeing Company is seeking a highly motivated Cybersecurity – Information System Security Officer (ISSO) to join their team in Berkeley, MO. The selected candidate will support Enterprise activities and Boeing customers throughout multiple classified computing domains, focusing on maintaining and implementing Information System Security policies and standards.

AerospaceIndustrial

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Perform security analysis of operational and development environments, threats, vulnerabilities and internal interfaces to define and assess compliance with accepted industry and government standards

Lead and implement the Assessment and Authorization (A&A) processes under the Risk Management Framework (RMF) for new and existing information systems

Facilitate development of Memorandums of Understanding (MOU), Interconnection Security Agreements (ISA), Risk Acknowledgement Letters (RAL) and support Continuous Monitoring (CONMON)

Oversee configuration management of assigned systems; auditing systems to ensure security posture integrity

Lead staff with assessments and test/analysis data to document state of compliance with security requirements

Conduct risk assessments and investigations, execute appropriate risk mitigations, and oversee incident response activities

Conduct periodic hardware/software inventory assessments

Serve as organization spokesperson on advanced projects and programs

Act as advisor to management and customers on advanced technical research studies

Interface with the appropriate government customers, suppliers, and company personnel to implement protective mechanisms and to ensure understanding of and compliance with cybersecurity requirements

Oversee the development and deployment of program information security for all program systems to meet the program and enterprise requirements, policies, standards, guidelines and procedures

Manage and perform security compliance continuous monitoring

Oversee and participate in security assessments and audits

Prepare, review, and present technical reports and briefings

Identify root causes, prioritizes threats and recommends and/or implements corrective action

Explore the enterprise and industry for evolving state of industry knowledge and methods regarding information security best practices

Qualification

IAM Level 1 certificationRisk Management Framework (RMF)Cybersecurity policiesSecurity tools proficiencyInformation System Security OfficerSecurity compliance monitoringRisk assessmentIncident responseTechnical reporting

Required

IAM Level 1 DoD 8140.03 (previously 8570.01) compliant certification (i.e. , Security+ CE, CAP, CISSP, CASP, CISM, GSLC)

3+ years of combined experience and/or education in cybersecurity, IT, or a related field

3+ years of experience with the Risk Management Framework (RMF), cybersecurity policies, and RMF implementation (e.g., DAAG, CNSSI 1253, ICD-503, JSIG, or NIST SP 800 series)

3+ years of experience utilizing security relevant tools, systems, and applications in support of Risk Management Framework (RMF) to include NESSUS, ACAS, DISA STIGs, SCAP, Audit Reduction, and HBSS