Date Posted:

Country:

Location:

Position Role Type:

At Raytheon Missiles & Defense (RMD), you have the opportunity to try new things and make a bigger difference across a broader end-to-end solution, a richer technology and product set, an expanded range of disciplines, a growing global footprint and a more diverse team of colleagues and customers.

Our Cybersecurity team is presently seeking a Site Information System Security Manager to maintain the Information Systems at White Sands Missile Range, NM. Relocation support is available.

Job Summary:

The Cybersecurity Site Information Systems Security Manager is responsible for compliance oversight, assessment, and operations of systems under their purview. They may be assigned to a single large-scale program or oversee multiple programs.

Site ISSM also has cognizance of all collateral Classified Information System (CIS) in the White Sands Site per Commercial and Government Entity (CAGE) code as stipulated by various US Government requirements including (but not limited to):

National Industrial Security Operating Manual (NISPOM) and related documentation such as:

• Risk Management Framework (RMF)
• Baseline Technical Security Configuration Standards
• Defense Counter-Intelligence Security Agency (DCSA)
• Assessment and Authorization Process Manual (DAAPM)
• Customer/contract specific Cybersecurity regulations

Components of the cybersecurity (CS) program include Assessment and Authorization (A&A) activities (documentation preparation, system configuration/validation, certification testing, etc.), security sustainment activities (hardware change management, software change management, account management, media protection, user interface, file transfers, etc.), conducting self-inspections, and delivering information systems security education and awareness.

You will conduct recurring Cybersecurity reviews on information systems in accordance with DoD Manuals, NIST Special Publications, customer directives, and company policies as applicable (see list below for further details**).

You are responsible for the execution of the RMD Continuous Monitoring Plan as required by CA-2 Security Assessments. You’ll serve as subject matter experts (SME) on a broad range of Cybersecurity topics. You may represent the Cybersecurity organization and business unit to external Cybersecurity counterparts.

There’s no such thing as a perfect candidate, so don’t hold back. Your qualifications could add tremendous value to our team. Our customers come from all different backgrounds, and so do our employees. If you’re passionate about what you could accomplish here, we’d love to hear from you.

Cybersecurity Site ISSMs are required to maintain IAM Level III certification commensurate with their role as required by DoDD 8140 (8570).

Responsibilities to Anticipate:

• Complete all DCSA and RMD GSS required training within 6 months of appointment (annual requirements thereafter).
• Accountability for all systems under site CAGE: metrics, eMASS, RMD business process (RCAST), Continuous Monitoring (ConMon) as described by Sr. ISSM
• Maintaining a working knowledge of all CIS functions, security policies, technical security safeguards, and operational security measures.
• Interactions with DCSA SCA/ISSP to track items including, but not limited to, upcoming authorizations (ATO), new technologies solutions (i.e., new SIEM, OS, etc.), policy interpretations (in conjunction with Sr. ISSM), and onsite A&A.
• Developing, maintaining, and updating, in coordination with all system stakeholders (CS Manager, ISO, DT, etc.), applicable site POAM(s) to identify system weaknesses, mitigating actions, resources, and timelines for corrective actions.
• Coordinating DCSA SVA preparation activities for assigned CAGE in conjunction with site FSO/CS Manager. AS

Qualifications You Must Have:

• Typically require a Bachelor’s degree in Computer Science, Cybersecurity, Information Systems Management, Management Information Technology, Criminal Justice, Business, Math, or other degrees will be considered In lieu of degree, will consider individuals with 12 years of relevant cybersecurity, network security, and/or information technology experience.
  • An advanced degree in a related field may be substituted for additional 2 years of experience.
• Eight (8) years of cybersecurity, network security, and/or information technology experience
• Experience supporting cybersecurity compliance as stipulated by NISPOM/DAAPM, JSIG, ICD 503, STIGs and associated NIST publications
• An active and in-scope secret US security clearance

Qualifications We Value:

• Master’s Degree in Computer Science, Information Systems, Information Technology, Cyber Security, Criminal Justice, Business or other relevant degree
• Experience with various information system security tools that address vulnerability analysis and mitigation. These may include Splunk, Forcepoint, Ivanti, Tenable, ACAS, HBSS, etc.
• Experience in the oversight and execution of the Assessment & Authorization processes (Certification & Accreditation), as defined in JSIG/RMF
• Experience in the execution and management of Information System’s (IS) incident response and administrative inquiries/investigations in collaboration with the Investigations department
• Experience in and execution of a continuous monitoring/improvement program (to include but not limited to self-inspections, security control assessments, training, log management systems, automated inventory utilities, etc.)
• Experience providing technical security expertise and oversight for complex, cross-domain, heterogeneous classified networked environments in collaboration with internal/external Customers, Information Technology (IT) and other Raytheon Missiles & Defense Business Units
• Experience working with the customer, both internal and external in the development of Basis of Estimates (BOE's) and contract negations
• Experience with any of the following: NISPOM, JAFAN 6/3, DCID 6/3, JSIG/RMF, and ICD-503 or equivalent requirements to include technical computer/network system auditing
• Experience in professional engagements with internal and external customers (i.e., AOs, DAOs, SCAs, Program Managers, etc.), to include negotiating controls/requirements with government Contracting Activities

** The National Industrial Security Program Operating Manual (NISPOM), DoD Special Access Program (SAP) Security Manuals, Risk Management Framework (RMF), Intelligence Community Directive (ICD-503), Joint Special Access Program (SAP) Implementation Guide (JSIG), Defense Counterintelligence Security Agency (DCSA)

What We Offer:

Whether you’re just starting out on your career journey or are an experienced professional, we offer a robust total rewards package that goes above and beyond with compensation; healthcare, wellness, retirement, and work/life benefits; career development and recognition programs. Some of the superior benefits we offer include parental (including paternal) leave, flexible work schedules, achievement awards, educational assistance, and child/adult backup care.

Employee Referral Award Eligibility: Only employees currently within RMD and RI&S have the potential to receive a Referral Award for submitting a referral to RMD and RI&S roles. ALL eligibility requirements must be met (see guidelines) to receive the Referral Awarding

Check us out on YouTube!

https://www.youtube.com/raytheontechnologies

#LI-Onsite

Raytheon Technologies is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.

Privacy Policy and Terms:

Click on this link to read the Policy and Terms