Information Systems Security Manager (Onsite)

PW222: PW Puerto Rico Road 110 North Km28.8 San Antonio Industrial Park, Aguadilla, PR, 00603 USA

Date Posted:

2024-01-18

Country:

United States of America

Location:

PW222: PW Puerto Rico Road 110 North Km28.8 San Antonio Industrial Park, Aguadilla, PR, 00603 USA

Position Role Type:

Onsite

Pratt & Whitney is working to once again transform the future of flight—designing, building and servicing engines unlike any the world has ever seen. And because transformation begins from within, we’re seeking the people to drive it. So, calling all curious. 

Come ready to explore and you’ll find a place where your talent takes flight—beyond the borders of title, a country or your comfort zone. Bring your passion and commitment and we’ll welcome you into a tight-knit team that takes our mission personally. Channel your drive to make a difference into shaping an organization and an industry that’s evolving fast to the future.

Innovation through diversity of thought. At Pratt & Whitney, we believe diversity of thought enables creativity, innovation, and a foundation for inclusion. By fostering an inclusive culture, we accept a shared accountability and responsibility to recognize, sponsor, coach, hire and promote talent equally. We welcome our employees to be their whole - best - selves at work because trust, respect and integrity, are a part of our DNA.

At Pratt & Whitney, the difference you make is on display every day. Just look up. Are you ready to go beyond?

Job Summary:

As a hands-on Information Systems (IS) Security Manager (ISSM), you will document, monitor, and audit IS for compliance with applicable U.S. government cybersecurity requirements. The ISSM will report directly to the Florida Site Cybersecurity Manager.

Key Responsibilities:

  • Work closely with the Florida Site Cybersecurity Manager and the East Hartford (EH) ISSM to ensure the appropriate operational security posture is maintained for all of Pratt & Whitney Puerto Rico (PWPR) IS under his/her purview.

  • Ensure all users have the requisite security clearances, authorization, need-to-know, and security responsibility awareness before being granted access to the IS. Collect, review, document, and archive security relevant logs, reports and files in accordance with the System Security Plan (SSP), reporting any anomalies to the EH ISSM.

  • Monitor and analyze all available resources that track user activity, provide warnings of system vulnerabilities, and provide system performance information in accordance with cybersecurity plans and policies.

  • Conduct periodic testing and reviews of IS to ensure compliance with cybersecurity authorization requirements, reporting findings to and coordinating with the EH ISSM as necessary; Document and coordinate EH ISSM approval for any security relevant changes to the IS prior to implementation, developing and updating the SSP to reflect such changes as appropriate.

  • In close collaboration with the EH ISSM, prepare, distribute, and maintain IS cybersecurity plans, instructions, guidance, standard operating procedures, and assessment and authorization documentation, ensuring they are kept current and are accessible to authorized individuals. Monitor and oversee data backup, archival, and system recovery processes for functional testing and cybersecurity compliance; Assist in performing incident response activities (investigation, collection, reporting, containment, and eradication) as applicable in accordance with incident response policy, plans, procedures, and EH ISSM guidance.

  • Partner and coordinate with internal and external customers and security peers in the completion of internal projects, process improvement initiatives, development of cybersecurity procedures, and technical efficiencies. Possess and maintain technical competence and a working knowledge of system functions, security policies, technical security safeguards, and operational security measures.

  • English (read, write, speak) is required when communicating with customers, co-workers, or supervisors who only speak English

Basic Qualifications:

  • Bachelor’s degree in cybersecurity, computer science, or IT-related and 5 years of cyber security or information systems or an Advanced Degree in in cybersecurity, computer science, or IT-related with 3 years of experience of cyber security or information systems.

  • The ability to obtain and maintain a U.S. government issued security clearance is required.

  • U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance.

  • Travel is up to 10%.

Preferred Qualifications:

  • Current/active Secret-level or higher security clearance

  • DoD-recognized IAM-Level II or higher industry-recognized cybersecurity certifications such as CASP, CISM, and/or CISSP.

  • Hands-on experience supporting validated desktop, server, network, systems administration, troubleshooting, implementation security requirements in Microsoft Windows 10, OS imaging, installation, configuring, and support & troubleshooting.

  • Familiarity with Splunk, Tenable.sc, and/or other system monitoring tools.

  • General knowledge of networking technologies such as TCP/IP ports, protocols and services, switching, and routing.

  • Familiarity with security hardening guides & tools (DISA STIGs/SCAP).

What is my role type?

In addition to transforming the future of flight, we are also transforming how and where we work. We’ve introduced role types to help you understand how you will operate in our blended work environment. This role is:

Onsite: Employees who are working in Onsite roles will work primarily onsite. This includes all production and maintenance workers, as they are essential to the development of our engines.

Candidates will learn more about role type and current site status throughout the recruiting process. For onsite and hybrid roles, commuting to and from the assigned site is the employee’s personal responsibility.

This requisition is eligible for an employee referral award.  ALL eligibility requirements must be met to receive the referral award.

RTX is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.

Privacy Policy and Terms:

Click on this link to read the Policy and Terms

Apply now Apply later
  • Share this job via
  • or

* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰

Tags: CASP+ CISM CISSP Clearance Compliance Computer Science DISA DoD IAM Incident response Industrial Monitoring Privacy SCAP Security Clearance Splunk STIGs System Security Plan TCP/IP Vulnerabilities Windows

Perks/benefits: Team events

Region: North America
Country: United States
Job stats:  6  0  0
Category: Leadership Jobs

More jobs like this

Explore more InfoSec / Cybersecurity career opportunities

Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.