Raytheon Technologies Senior Information System Security Officer (ISSO), RMD Cyber Compliance in United States
Principal Specialist, Information Workplace Services, Cybersecurity
Raytheon Missile &Defense (RMD) (Telecommute)
RMD Digital Technology - IT Security Team
Information System Security Officer (ISSO)
At Raytheon Missiles & Defense (RMD), fresh thinking and possibilities are forged in times of change and you will be on the front lines as we trailblaze new approaches, push the boundaries of innovation and chart a course to a tomorrow you can be proud to have a hand in creating.
The RMD DT organization embraces the opportunity to deliver business value by connecting business insight with technical expertise and innovation. We’re continuously pushing the envelope to create leading-edge secure technological solutions for complex systems and program challenges. In joining our team, you will have the opportunity to be an integral part of a team responsible for managing business risk through the implementation of cost effective IT controls.
As a Principal Specialist, Information Workplace Services, Cybersecurity you will be a member of the Information System Security Officer (ISSO) group. As an ISSO you will serve as an advisor on all technical and policy matters, involving the security of information systems assigned. In this role, you will partner with IT system administrators to assess unclassified information systems to assure compliance with applicable IT security policies, including but not limited to compliance with National Institute of Standards & Technology (NIST) Special Publication (SP) 800-171 and 800-53. As an ISSO you will support risk assessments and assist with selection of IT controls to achieve compliance. Your role will also include conducting assessments of Information Systems (ISs) seeking an Authority To Operate (ATO), assisting with the development of remediation plans and making recommendations to grant ATO for an IS to the Chief Information Security Officer (CISO).
Responsibilities to anticipate for this role:
Create, consult on, and ensure the completion of Security Assessment Packages (SAPs) for RMD managed systems as part of the Information Risk Assessment and Management Process (IRAMP).
Capture and refine security requirements for ISs to which you are assigned.
Ensure the security requirements are effectively integrated into the IS through purposeful security architecting, design, development, and configuration.
Request export control review for systems that process Export Controlled information.
Assist IT system admins to complete and maintain SAPs for an IS, ensuring the SAP is kept current throughout the lifecycle of the IS.
Perform assessments of ISs against associated SAPs including overlays.
Monitor the operational security posture for ISs to which they are assigned and ensure the ISs operate in accordance with their SAP and have a current ATO.
Conduct annual security reviews of assigned ISs.
Initiate the IRAMP for an existing system if a proposed change affects the security controls or security posture of the IS or for expiring ATOs
Conduct reviews and analysis of waiver requests for their assigned IS. Ensure that if the request is approved, the SAP Plan of Action and Milestones (POA&M) documents the residual risk(s) associated with the waiver.
Contribute to successful completion of Information Security goals.
Educate users/colleagues on information security topics such as policies, standards, guidelines and best practices.
Qualifications You Must Have
5+ years overall directly related Information Technology/Information Assurance experience Bachelor's degree or equivalent
Understand the implementation of NIST SP 800-171 and/or NIST SP 800-53
Recognized IT security certification or equivalent, or equivalent
Developed enterprise risk management concepts including strategic, operational and technical risk management.
You are at ease with assessing system compliance against standards and IT Security Policies.
You have identified risks and propose risk mitigation solutions to harden systems.
Established technical writing skills
Qualifications We Value:
Passion for information security and demonstrated willingness to be a life-long learner
CISSP, CCNA, CISSP-ISSAP, CISSP-ISSEP or equivalent.
Participate on cross-functional teams to resolve complex challenges and shape future opportunities.
Understand audit concepts and strategies in a highly complex, regulated environment.
Excellent communication skills.
Familiarity with DOD Defense Counterintelligence and Security Agency (DCSA) audit procedures
Familiarity with processes to harden computer systems.
Manage multiple complex initiatives simultaneously
Strong interpersonal skills - ability to dialogue, negotiate, influence and work with others collaboratively and constructively
Eligibility to obtain a US DOD Secret Security Clearance. Except in Rare Cases, only US Citizens are eligible to obtain US Security Clearances.
Education (including Major):
BS/BA - Information Technology, MIS, Engineering, Science, Mathematics or Business
For Non-Degreed applicants, an additional 2 years of Cyber/IT/STEM/ISSO experience may be substituted for each 1 completed year of college.
This role can be work-from-home or based at one of several RMD locations throughout the Domestic US, which can include: AZ – Tucson, CA – San Diego, CA - Fullerton, IN – Fort Wayne, MA - Andover, MA - Marlborough, MA – Tewksbury, MA - Woburn. If relocation is absolutely necessary for the selected applicant, support will be offered as a capped amount if the applicant is eligible per company policy and will be solely at the discretion of the hiring manager. Telecommuting/Remote is strongly preferred.
Raytheon Missile & Defense (RMD) continues to be in the Top 100 Best Places to Work in IT offering flexible work schedules including compressed work weeks, and telecommuting. As a company, RMD has also been recognized in the 100 Best Corporate Citizens, awarded especially high marks in the areas of the environment, philanthropy and financial transparency. Let us be your partner for achieving professional success, with opportunities to have flexible schedules, work in a diverse and supportive work environment, and gain access to professional learning and growth opportunities.
Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, age, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.