Principal Information Systems Security Officer (ISSO) -...

Principal Information Systems Security Officer (ISSO) - Tewksbury, MA At RTX, we're accelerating ideas to solve some of the world's biggest challenges by bringing together the brightest, most innovative minds across aviation, space, and defense. Date Posted: 2025-02-13 Country: United States of America Location: Tewksbury, MA Position Role Type: Onsite Our cybersecurity team is seeking a Principal Information Systems Security Officer (ISSO) to support our team 100% onsite at our facility in Tewksbury, Massachusetts. The Principal ISSO is responsible for compliance oversight, assessment, and operations of systems under their purview. They may be assigned to a single large-scale program or oversee multiple programs. Although you will not have direct reports, you will mentor a team of ISSOs to provide support and advice pertaining to day-to-day occurrences or issues. You will conduct recurring Cybersecurity reviews on information systems in accordance with DoD Manuals, NIST Special Publications, customer directives, and company policies as applicable. You'll serve as subject matter experts (SME) on a broad range of Cybersecurity topics. You may represent the Cybersecurity organization and business unit to external Cybersecurity counterparts. You are responsible for providing guidance and technical training to ISSOs across the organization. What You Will Do Reviewing and approving (within authority) configuration management requests Conducting technical and administrative assessments Integrating new Cybersecurity processes, procedures and tools Support ISSOs and Cybersecurity Managers in the creation, review and update of Cybersecurity documentation and other technical writing Oversee ISSOs to ensure implementation of policies and procedures as outlined within the Cybersecurity artifacts and governing documentation Intermittent travel to other Raytheon locations (10-20%) Qualifications You Must Have Typically requires a Bachelor's degree and a minimum 8 years prior relevant experience, or an Advanced Degree in a related field and minimum 5 years experience. IAM Level I certification (Security+ or other) Relevant Experience Considered in any combination: Cybersecurity, systems security or hardening Information Technology Compliance-based auditing using the Risk Management Framework (RMF), DCSA Assessment and Authorization Process Manual (DAAPM), Joint SAP Implementation Guide (JSIG), National Industrial Security Program Operating Manual (NISPOM), and/or non-defense regulations such as FAA, Payment Card Industry (PCI), ISO 9001 Quality Management standards, or HIPAA Experience working with and/or supporting computer technologies (such as: databases, operating systems, computer network hardware, software programs, hardware troubleshooting or electronics) Physical security/security, policework/criminal justice, investigations, or Border Patrol Project or program management, office management, senior administration, or account management Active and transferable U.S. government issued Secret security clearance is required prior to start date. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance. Qualifications We Prefer Experience working in DoD classified operating and/or laboratory environments Experience with various information system security tools that address vulnerability analysis and mitigation. These may include Splunk, Forcepoint, Ivanti, Tenable, ACAS, HBSS, etc. Familiarity with implementation of Government directives and policies derived from NIST, CNSSI, DoD, or other Government Regulatory compliance standards within a professional industry Experience in the execution of the Assessment & Authorization processes, as defined within the Risk Managed Framework (RMF) Experience providing technical security consultation for complex, cross-domain, heterogeneous classified networked environments in collaboration with internal/external Customers, Information Technology (IT) Familiarity with large multi-facility networks including diverse and complex components, including Windows and Linux environments Experience interpreting, implementing, and assessing DISA STIGs. Familiarity with the execution and management of cyber incident response; preservation, containment, and eradication What We Offer Our values drive our actions, behaviors, and performance with a vision for a safer, more connected world. At RTX we value: Trust, Respect, Accountability, Collaboration, and Innovation. Relocation Non-Eligible - Relocation assistance not available RTX is an Equal Opportunity Employer All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any other applicable state or federal protected class. Privacy Policy and Terms: Click on this link to read the Policy and Terms #J-18808-Ljbffr

Created: 2025-02-17