At Boeing, we innovate and collaborate to make the world a better place. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.
The Boeing Company is currently seeking a Cybersecurity – Associate Information System Security Officer (ISSO) to support Department of Defense (DoD) and Special Program activities in Heath, OH.
The selected candidate will rely on Cybersecurity and Information Assurance (IA) background to be a technical leader and support Enterprise activities and Boeing customers throughout multiple classified computing domains. The ISSO is responsible for maintaining and implementing all Information System Security policies, standards, and directives to ensure assessment and authorization of information systems processing classified information.

BASIC QUALIFICATIONS (REQUIRED SKILLS/EXPERIENCE):

• IAM Level 1 DoD 8140.01 (previously 8570.01) compliant certification (i.e. CAP, Security+ CE, CISSP, CASP, CISM, GSLC)
• Experience in cybersecurity policies and implementation of Risk Management Framework (RMF): e.g. DAAPM, CNSSI 1253, ICD-503, JSIG, or NIST SP 800 series
• Ability to obtain access to Special Access Programs (SAP)

PREFERRED QUALIFICATIONS (DESIRED SKILLS/EXPERIENCE):

• Experience as an information system security officer (ISSO) or information system security manager (ISSM) supporting classified programs
• Experience utilizing security relevant tools, systems, and applications in support of Risk Management Framework (RMF) to include NESSUS, ACAS, DISA STIGs, SCAP, Audit Reduction, and HBSS
• Experience assessing and documenting test or analysis data to show cyber security compliance

• Contribute to the development and deployment of program information security for assigned systems to meet the program and enterprise requirements, policies, standards, guidelines and procedures
• Implement Assessment and Authorization (A&A) processes under the Risk Management Framework (RMF), as well as product development and product maintenance for assigned systems
• Perform security compliance continuous monitoring (CONMON)
• Participate in security assessments and audits
• Prepare and present technical reports and briefings
• Contribute to the identification of root causes, the prioritization of threats, and recommend/implement corrective action
• Explore the enterprise and industry for the evolving state of industry knowledge and methods regarding information security best practices
• Support development of enterprise-wide information security policies, standards, guidelines and procedures that may reach across multiple stakeholder organizations