At Boeing, we innovate and collaborate to make the world a better place. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.
Boeing Classified Cybersecurity is currently seeking a Cybersecurity – Information System Security Manager (ISSM) to join the team in either Herndon, VA or Fairfax, VA.
The ISSM will rely on a Cybersecurity and Information Assurance (IA) background to be a technical leader and support Enterprise activities and Boeing customers throughout multiple classified computing domains. The ISSM is responsible for maintaining and enforcing all Information System Security policies, standards, and directives to ensure assessment and authorization of information systems processing classified information.

BASIC QUALIFICATIONS (REQUIRED SKILLS/EXPERIENCE):

• Successfully completed Tier 5 Investigation (T5), formerly known as a Single Scope Background Investigation (SSBI) by the federal government within the last 5 years, or requires candidate to have been enrolled in a Continuous Vetting program within the last 5 years
• Currently hold certification in good standing to satisfy IAM Level III (CISSP, GSLC, or CISM)
• 3+ years of experience in cybersecurity policies and implementation of Risk Management Framework (RMF): e.g. DAAPM, CNSSI 1253, ICD-503, JSIG, or NIST SP 800 series
• Ability to obtain access to Sensitive Compartmented Information (SCI) Programs
• Ability to obtain a Counter-Intelligence (CI) Polygraph

PREFERRED QUALIFICATIONS (DESIRED SKILLS/EXPERIENCE):

• Active Counter-Intelligence (CI) Polygraph
• 3+ years of experience as an information system security officer (ISSO) or information system security manager (ISSM) supporting classified programs
• 3+ years of experience utilizing security relevant tools, systems, and applications in support of Risk Management Framework (RMF) to include NESSUS, ACAS, DISA STIGs, SCAP, Audit Reduction, and HBSS
• 3+ years of experience assessing and documenting test or analysis data to show cyber security compliance

• Lead the development and deployment of program information security for assigned systems to meet the program and enterprise requirements, policies, standards, guidelines and procedures
• Manage Risk Management Framework (RMF) processes, product development and product maintenance for assigned systems
• Manage and perform security compliance continuous monitoring
• Lead and participate in security assessments and audits
• Prepare, review, and present technical reports and briefings
• Identify root causes, prioritize threats and recommend/implement corrective action
• Provide mentoring and technical leadership to the information security program team
• Explore the enterprise and industry for the evolving state of industry knowledge and methods regarding information security best practices
• Develop enterprise-wide information security policies, standards, guidelines and procedures that may reach across multiple stakeholder organizations