At Boeing, we innovate and collaborate to make the world a better place. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.
The Boeing Company is currently seeking a Cybersecurity – Information System Security Officer (ISSO) to support Department of Defense (DoD) and Special Access Program (SAP) activities in Herndon, VA.
The selected candidate will rely on Cybersecurity and Information Assurance (IA) background to be a technical leader and support Enterprise activities and Boeing customers throughout multiple classified computing domains. The ISSO is responsible for maintaining and implementing all Information System Security policies, standards, and directives to ensure assessment and authorization of information systems processing classified information.

BASIC QUALIFICATIONS (REQUIRED SKILLS/EXPERIENCE):

• Successfully completed Tier 5 Investigation (T5), formerly known as a Single Scope Background Investigation (SSBI) by the federal government within the last 5 years, or requires candidate to have been enrolled in a Continuous Vetting program within the last 5 years
• IAM Level 1 DoD 8140.01 (previously 8570.01) compliant certification (i.e. CAP, GSLC, Security+ CE, CISSP, CASP, CISM)
• 1+ years of experience with cyber security policies and implementation of Risk Management Framework (RMF): e.g. DAAPM, CNSSI 1253, ICD-503, JSIG, and/or NIST SP 800 series
• Ability to obtain a Counter-Intelligence (CI) Polygraph

PREFERRED QUALIFICATIONS (DESIRED SKILLS/EXPERIENCE):

• 1+ years of experience as an information system security officer (ISSO) or information system security manager (ISSM) supporting classified programs
• 1+ years of experience utilizing security relevant tools, systems, and applications in support of Risk Management Framework (RMF) to include NESSUS, ACAS, DISA STIGs, SCAP, Audit Reduction, and HBSS
• 1+ years of experience in assessing and documenting test or analysis data to show cyber security compliance

• Contribute to the development and deployment of program information security for assigned systems to meet the program and enterprise requirements, policies, standards, guidelines and procedures
• Implement Assessment and Authorization (A&A) processes under the Risk Management Framework (RMF), as well as product development and product maintenance for assigned systems
• Perform security compliance continuous monitoring (CONMON)
• Participate in security assessments and audits
• Prepare and present technical reports and briefings
• Contribute to the identification of root causes, the prioritization of threats, and recommend/implement corrective action
• Provide mentoring and technical leadership within the information security program team
• Explore the enterprise and industry for the evolving state of industry knowledge and methods regarding information security best practices
• Support development of enterprise-wide information security policies, standards, guidelines and procedures that may reach across multiple stakeholder organizations