Cybersecurity – Information System Security Officer (ISSO)

at  Boeing

At Boeing, we innovate and collaborate to make the world a better place. From the seabed to outer space, you can contribute to work that matters with a company where diversity, equity and inclusion are shared values. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.
The Boeing Company is currently seeking a Cybersecurity – Information System Security Officer (ISSO) to support Department of Defense (DoD) and Special Access Program (SAP) activities in Fairfax, VA.
The selected candidate will rely on Cybersecurity and Information Assurance (IA) background to be a technical leader and support Enterprise activities and Boeing customers throughout multiple classified computing domains. The ISSO is responsible for maintaining and implementing all Information System Security policies, standards, and directives to ensure assessment and authorization of information systems processing classified information.

BASIC QUALIFICATIONS (REQUIRED SKILLS/EXPERIENCE):

• IAM Level 1 DoD 8140.01 (previously 8570.01) compliant certification (i.e. CAP, GSLC, Security+ CE, CISSP, CASP, CISM)
• 1+ years of experience in utilizing security relevant tools, systems, and applications in support of Risk Management Framework (RMF) to include: NESSUS, ACAS, DISA STIGs, SCAP, Audit Reduction, and HBSS
• Active Counter-Intelligence Polygraph

PREFERRED QUALIFICATIONS (DESIRED SKILLS/EXPERIENCE):

• Currently hold certification in good standing to satisfy IAM Level III (CISSP, GSLC or CISM)
• Experience with cyber security policies and implementation of Risk Management Framework (RMF): e.g. DAAPM, CNSSI 1253, ICD-503, JSIG, and/or NIST SP 800 series
• Experience in assessing and documenting test or analysis data to show cyber security compliance

TYPICAL EDUCATION & EXPERIENCE:

Typically, 5 or more years’ related work experience or relevant military experience. Advanced degree (e.g. Bachelor, Master, etc.) preferred, but not required.

• Contributes to the development and deployment of program information security for assigned systems to meet the program and enterprise requirements, policies, standards, guidelines and procedures
• Implements Assessment and Authorization (A&A) processes under the Risk Management Framework (RMF), as well as product development and product maintenance for assigned systems
• Performs security compliance continuous monitoring (CONMON)
• Participates in security assessments and audits
• Prepares and presents technical reports and briefings
• Contributes to the identification of root causes, the prioritization of threats, and recommends/implements corrective action
• Provides mentoring and technical leadership within the information security program team
• Explores the enterprise and industry for the evolving state of industry knowledge and methods regarding information security best practices
• Supports development of enterprise-wide information security policies, standards, guidelines and procedures that may reach across multiple stakeholder organizations
  This position is expected to be 100% onsite. The selected candidate will be required to work onsite at one of the listed location options. Limited telecommuting opportunity may be available.
  This position requires an active U.S. Top Secret/SCI Security Clearance (U.S. Citizenship Required). (A U.S. Security Clearance that has been active in the past 24 months is considered active.)
  This position requires a successfully completed Tier 5 Investigation (T5), formerly known as a Single Scope Background Investigation (SSBI) or requires candidate to have been enrolled in a Continuous Vetting program such that periodic updates are no longer required.