Cybersecurity – Information System Security Officer (ISSO)

at  Boeing

At Boeing, we innovate and collaborate to make the world a better place. From the seabed to outer space, you can contribute to work that matters with a company where diversity, equity and inclusion are shared values. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.
The Boeing Company is currently seeking a Cybersecurity - Information System Security Officer (ISSO) to join the team in Tukwila, WA.
The selected candidate will rely on Cybersecurity and Information Assurance (IA) background to be a technical leader and support Enterprise activities and Boeing customers throughout multiple classified computing domains. The ISSO is responsible for maintaining and implementing all Information System Security policies, standards, and directives to ensure assessment and authorization of information systems processing classified information.

BASIC QUALIFICATIONS (REQUIRED SKILLS/EXPERIENCE):

• IAM Level 1 DoD 8140.01 (previously 8570.01) compliant certification (i.e. CAP, GSLC, Security+ CE, CISSP, CASP, CISM, GSLC)
• 1+ years of experience in utilizing security relevant tools, systems, and applications in support of Risk Management Framework (RMF) to include: NESSUS, ACAS, DISA STIGs, SCAP, Audit Reduction, and HBSS

PREFERRED QUALIFICATIONS (DESIRED SKILLS/EXPERIENCE):

• Bachelor’s degree or equivalent work or military experience
• Experience with cyber security policies and implementation of Risk Management Framework (RMF): e.g. DAAPM, CNSSI 1253, ICD-503, JSIG, and/or NIST SP 800 series and experience in assessing and documenting test or analysis data to show cyber security compliance
• Currently hold certification in good standing to satisfy IAM Level III (CISSP, GSLC or CISM)
• Demonstrated experience leading audits conducted by external stakeholders
• Experience as an ISSO implementing or managing cyber security requirements on classified systems under JSIG, NISPOM, ICD 503, and/or CNSSI 1253
• Experience as an ISSO implementing or managing cyber security requirements on classified systems under Defense Counterintelligence and Security Agency (DCSA) Assessment and Authorization Process Manual (DAAPM)and Risk Management Framework (RMF) security processes

TYPICAL EDUCATION & EXPERIENCE:

Typically 5 or more years’ related work experience or relevant military experience. Advanced degree (e.g. Bachelor, Master, etc.) preferred, but not required.

• Perform security analysis of operational and development environments, threats, vulnerabilities and internal interfaces to define and assess compliance with accepted industry and government standards
• Lead and implement the Assessment and Authorization (A&A) processes under the Risk Managed Framework (RMF) for new and existing information systems
• Facilitate development of Memorandums of Understanding (MOU), Interconnection Security Agreements (ISA), Risk Acceptance Letters (RAL) and support Continuous Monitoring (CONMON)
• Coordinate configuration management of assigned systems; auditing systems to ensure security posture integrity
• Lead staff with assessments and test/analysis data to document state of compliance with security requirements
• Conduct risk assessments and investigations, implement appropriate risk mitigations, and lead all aspects of incident response activities
• Conduct periodic hardware/software inventory assessments
• Serve as organization spokesperson on sophisticated projects and programs
• Act as advisor to management and customers on sophisticated technical research studies
• Collaborate with the appropriate government customers, suppliers, and company personnel to implement protective mechanisms and to ensure understanding of and compliance with cybersecurity requirements
  This position is expected to be 100% onsite. The selected candidate will be required to work onsite at the listed location option. Limited telecommuting opportunity may be available.