Sr. Information Systems Security Officer (ISSO)
CO102: 16800 E Centretech Pkwy,Aurora 16800 East Centretech Pkwy Building S75, Aurora, CO, 80011 USA
Booz Allen HamiltonUsing tomorrow’s technologies, Booz Allen advances the nation’s most critical civil, defense, and national security missions.
Country:United States of America
Location:CO102: 16800 E Centretech Pkwy,Aurora 16800 East Centretech Pkwy Building S75, Aurora, CO, 80011 USA
Position Role Type:Onsite
At Raytheon, the foundation of everything we do is rooted in our values and a higher calling – to help our nation and allies defend freedoms and deter aggression. We bring the strength of more than 100 years of experience and renowned engineering expertise to meet the needs of today’s mission and stay ahead of tomorrow’s threat. Our team solves tough, meaningful problems that create a safer, more secure world.
Our cybersecurity team in Aurora Colorado, is seeking a Sr. Information Systems Security Officer (ISSO), Cyber Security & Risk Management Professional. The Sr. ISSO will support classified computing environments 100% onsite at our facility in Aurora, Colorado.
The Sr. ISSO is responsible for compliance oversight, assessment, and operations of systems under their purview. They may be assigned to a single large-scale program or oversee multiple programs. Although you will not have direct reports, you will mentor a team of ISSO’s to provide support and advice pertaining to day-to-day occurrences or issues.
You will conduct recurring Cybersecurity reviews on information systems in accordance with DoD Manuals, NIST Special Publications, customer directives, and company policies as applicable (see list below for further details**).
You’ll serve as subject matter expert (SME) on a broad range of Cybersecurity topics. You may represent the Cybersecurity organization and business unit to external Cybersecurity counterparts. You are responsible for providing guidance and technical training to ISSOs across the organization.
Responsibilities to Anticipate:
Reviewing and approving (within authority) configuration management requests
Conducting technical and administrative assessments
Integrating new Cybersecurity processes, procedures and tools
Support ISSOs and Cybersecurity Managers in the creation, review and update of Cybersecurity documentation and other technical writing
Oversee ISSO’s to ensure implementation of policies and procedures as outlined within the Cybersecurity artifacts and governing documentation
Intermittent travel to other locations (5-20%)
Typically requires a Bachelor’s degree with 8 years of relevant experience as described below or an advanced degree with 5 years of relevant experience described in the bullet below
Relevant experience consists of any combination:
Cybersecurity, systems security or hardening
Experience with network security and/or systems security, which includes any of the following: architecture, topology, protocols, components, and/or principles
Experience with configuring and/or auditing operating systems
Compliance-based auditing using the Risk Management Framework (RMF), DCSA Assessment and Authorization Process Manual (DAAPM), Joint SAP Implementation Guide (JSIG), National Industrial Security Program Operating Manual (NISPOM), and/or non-defense regulations such as FAA, Payment Card Industry (PCI), ISO 9001 Quality Management standards, or HIPAA
Experience working with and/or supporting computer technologies (such as: databases, operating systems, computer network hardware, software programs, hardware troubleshooting or electronics)
Physical security/security, policework/criminal justice, investigations, or Border Patrol
Project or program management, office management, senior administration, or account management
DoD 8570.01-M IAM Level II certification (CISSP or other)
Active and transferable U.S. government issued Top Secret security clearance with ICD 704 eligibility is required prior to start date. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance.
Experience working in DoD classified operating and/or laboratory environments
Experience with various information system security tools that address vulnerability analysis and mitigation. These may include Splunk, Forcepoint, Ivanti, Tenable, ACAS, HBSS, etc.
Familiarity with implementation of Government directives and policies derived from NIST, CNSSI, DoD, or other Government Regulatory compliance standards within a professional industry
Experience in the execution of the Assessment & Authorization processes, as defined within the Risk Managed Framework (RMF)
Experience providing technical security consultation for complex, cross-domain, heterogeneous classified networked environments in collaboration with internal/external Customers, Information Technology (IT)
Familiarity with large multi-facility networks including diverse and complex components, including Windows and Linux environments
Experience interpreting, implementing, and assessing DISA STIGs.
Familiarity with the execution and management of cyber incident response; preservation, containment, and eradication
Experience with emerging technologies such as DevSecOps environments, cloud-native and/or hybrid cloud environments, segmentation and isolation techniques such as containerization, virtualization and relative orchestration
** The National Industrial Security Program Operating Manual (NISPOM), DoD Special Access Program (SAP) Security Manuals, Risk Management Framework (RMF), Intelligence Community Directive (ICD-503), Joint Special Access Program (SAP) Implementation Guide (JSIG), Defense Counterintelligence Security Agency (DCSA) Assessment and Authorization Process Manual (DAAPM), associated National Institute of Standards and Technology (NIST).
What We Offer:
Whether you’re just starting out on your career journey or are an experienced professional, we offer a robust total rewards package that goes above and beyond with compensation; healthcare, wellness, retirement and work/life benefits; career development and recognition programs. Some of the superior benefits we offer include parental (including paternal) leave, flexible work schedules, achievement awards, educational assistance and child/adult backup care.
Check us out on YouTube!
#LI-OnsiteThe salary range for this role is 96,000 USD - 200,000 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an offer, including but not limited to, the role, function and associated responsibilities, a candidate’s work experience, location, education/training, and key skills.Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement.Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company’s performance.This role is a U.S.-based role. If the successful candidate resides in a U.S. territory, the appropriate pay structure and benefits will apply.RTX anticipates the application window closing approximately 40 days from the date the notice was posted. However, factors such as candidate flow and business necessity may require RTX to shorten or extend the application window.
RTX is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.
Click on this link to read the Policy and Terms
Tags: ACAS Audits CISSP Clearance Cloud Compliance DAAPM DevSecOps DISA DoD DoDD 8570 HIPAA IAM Incident response Industrial Linux Network security NISPOM NIST Privacy Risk management RMF SAP Security Clearance Splunk STIGs Top Secret Windows
More jobs like this
Santa Clara, CA, United … Santa Clara, CA, United States Full TimeSenior Senior-levelUSD 145K - 235K USD 145K+
Palo Alto Networks
Sr Staff Security EngineerAutomation Endpoint security Firewalls Incident response SaaS SIEM +2
Career development Flex vacation Medical leave Salary bonus Startup environment +1
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Penetration Tester jobs
- Open Senior Security Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Cybersecurity Analyst jobs
- Open Security Operations Engineer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Product Security Engineer jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Consultant jobs
- Open Senior Information Security Engineer jobs
- Open IT Security Analyst jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Cybersecurity Specialist jobs
- Open Chief Information Security Officer jobs
- Open Senior Security Architect jobs
- Open Senior Cyber Security Engineer jobs
- Open Security Specialist jobs
- Open Ingénieur DevSecops H/F jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Information System Security Officer (ISSO) jobs
- Open C-related jobs
- Open Agile-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open CISM-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Analytics-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open CISA-related jobs
- Open DevOps-related jobs
- Open SaaS-related jobs
- Open Threat intelligence-related jobs
- Open Security Clearance-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open Kubernetes-related jobs
- Open CI/CD-related jobs
- Open Splunk-related jobs
- Open EDR-related jobs
- Open APIs-related jobs
- Open DevSecOps-related jobs