Raytheon IDS Marlborough, MA Security Information Systems Security Manager (ISSM) This position is for an Information System Security Manager (ISSM) at Raytheon, Marlborough, MA. This ISSM position provides support primarily to Special Access Programs as well as some Collateral classified computing environments. The ISSM is responsible for the Information Assurance (IA) program as stipulated by various US Government requirements including (but not limited to): Joint Special Access Program (SAP) Implementation Guide (JSIG), National Industrial Security Operating Manual (NISPOM) and related documentation such as the Baseline Technical Security Configuration Standards, DSS Authorization and Assessment Process Manual (DAAPM) as well as customer/contract specific Information Assurance (IA) regulations. Components of the IA program include Assessment and Authorization (A&A) activities (documentation preparation, system configuration/validation, certification testing, etc.), security sustainment activities (hardware change management, software change management, account management, media protection, user interface, file transfers, etc.), conducting self-inspections, audit trail review, and delivering information systems security education and awareness. This position manages the IA incident response program as well as interfaces with other IA team members, other security disciplines (industrial security, physical security, special programs security, etc.), program personnel and government security representatives. Relocation is available for this opportunity for the selected applicant if they are eligible per Company Policy. The budget will be capped at an amount to be discussed at the appropriate time. U.S. Citizenship status is required as this position needs an Active U.S. Top Security Clearance as of day one of employment. Required Skills: Active U.S. Top Secret Clearance on day one of employment. Six (6+) years of experience working with and/or supporting computer technologies (such as: Microsoft Office applications, databases, operating systems or computer network hardware) Experience with JSIG, JAFAN 6/3, DCID 6/3 or ICD 503, or National Industrial Security Program Operating Manual (NISPOM) Chapter 8 requirements. Currently holds an Information Security professional certification commensurate with DoD 8570.1-M Level 3 requirements (CISSP or other). Desired Skills: Previous experience performing successfully as an Information System Security Manager (ISSM) in an industrial security environment Working experience with operating systems; Windows, Linux, Solaris, or HPUX Design and implement a process to identify and mitigate specific risks within the security environment Understands and leverages IDS business knowledge to achieve results (financial, manpower, etc) Experience working with government regulations, such as JSIG, JAFAN, NISPOM, DIACAP and Risk Management Framework (RMF). Regulation is based on customer requirements Experience supporting various system configurations (Stand Alone, Local Area Networks, Wide Area Networks, Government, and Contractor connections) Experience with Interconnected Security Agreements (ISA), Network Security Plans (NSP), Memorandum of Agreement/Understanding (MOA/U) Preparation of Assessment and Authorization documents and procedures Ability to deliver Information Assurance (IA) related briefings and training material Self-motivated and possess good written, verbal, listening and presentation skills, particularly in documenting evaluation results Previous experience working in a classified information systems environment Desire and ability to work as a team member Customer focused, adaptable and willing to work varying assignments Familiarity with Test Equipment and Sanitization Procedures Organizational skills to include: attention to detail, time management and ability to multitask Must be flexible and work with general supervision Experience with audit reviews such as: physical security, network and application, password administration, file access privileges, etc. Required Education: Bachelor's Degree in either Computer Science, Information Systems Management, Information Technology, Criminal Justice, Business or other relevant degree OR 8 years related experience in lieu of degree Desired Education: The following courses can be completed at the DSS Training Website: NISPOM Chapter 8 Requirements for Industry (IS201.16) Introduction to Industrial Security (IS011.16 / .06) Special Access Program Overview (SA001.16/06) Safeguarding Classified Information (IS109.16 / .06) OPSEC Security Awareness(GS130.16) Cyber Security Awareness(CI130.16) Introduction to the Risk Management Framework (RMF) (CS124.16) Risk Management Framework (RMF) Curricula (CS100.CU) Continuous Monitoring (CS200.16) All these job responsibilities are to be executed in harmony with Raytheon's Code of Business Ethics and Conduct policy which sets the standard by which we operate and how we treat others. Key Words: NISPOM DD254 Security Windows UNIX LINUX Information Systems Security Information Assurance Certification and Accreditation Cyber Software Engineer Computer Science MIS Management Information Systems ISSO CISSP CISM JAFAN JSIG DCID ISSM Information Security Information Technology IT Auditing Cyber DSS C&A IA IAM IAO Information Systems Security Officer Information Systems Security Manager Microsoft Windows Office UNIX Linux HPUX Solaris, Cybersecurity 114906
Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.
Associated topics: identity, iam, information security, information technology security, leak, malicious, protect, security engineer, security officer, violation