EWAN Information System Security Officer; ISSO; Onsite

Overview

At RTX, the world’s largest aerospace and defense company, the ISSO assists the Information System Security Manager (ISSM) to provide oversight for the information systems security control methods, mitigations, and tools throughout a system’s lifecycle in compliance with U.S. Department of Defense (DoD) security laws, regulations and guidelines.

• Assessing and monitoring system compliance, auditing, and developing security plans, while delivering information systems security education and awareness.
• Investigating information system security violations and preparing reports specifying corrective and preventative actions.
• Reviewing and approving configuration management requests within delegated authority, conducting technical and administrative security assessments, and performing security sustainment activities including hardware and software change management, account management, media protection, and file transfer reviews.
• Supporting the integration of new cybersecurity processes, procedures, and tools; assisting with creation and maintenance of cybersecurity documentation; ensuring audit records are collected and analyzed in accordance with approved security plans.
• Developing, updating, and/or reviewing Risk Management Framework (RMF) documentation such as the System Security Plan (SSP), Security Control Traceability Matrix (SCTM), Plan of Action and Milestone (POA&M), Risk Assessment Report (RAR) as assigned by the ISSM.
• Collaborating with CDS and peer BU ISSMs/ISSOs for alignment and sharing of best practices.

• University Degree or equivalent experience with a minimum of 5 years of relevant experience, or an Advanced Degree in a related field with a minimum of 3 years of experience.
• Experience managing and implementing security program requirements in a classified environment.
• Proficiency in compliance-based auditing using the RMF, Defense Counterintelligence and Security Agency (DCSA) Assessment and Authorization Process Manual (DAAPM), and National Industrial Security Program Operating Manual (NISPOM).
• Certifications exceeding DoD 8570.01-M IAM Level I (e.g., Security+ or equivalent).
• Knowledge and/or experience with STIGs, SCAP, Splunk, Tenable or other system hardening and compliance, vulnerability assessment, network security, and SIEM tools.
• Active and transferable secret U.S. government‑issued security clearance required prior to start date.

• Experience working in DoD classified operating environments and/or executing the Assessment & Authorization processes as defined within the RMF and NIST 800-53‑Rev 4.
• Experience with Scaled Agile Framework (SAFe) work practices.
• Experience with large multi‑facility networks of complex components, including Windows and Linux environments.
• Excellent oral and written communication skills with attention to detail and ability to multitask.
• Ability to adapt to a rapidly changing environment and work under pressure to meet project deadlines.

Robust total rewards package including compensation, healthcare, wellness, retirement, work/life benefits; career development and recognition programs; parental (including paternal) leave; flexible work schedules; achievement awards; educational assistance; and child/adult backup care.

Salary Range: 86,800

USD – 165,200

USD.

RTX is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any other applicable state or federal protected class. RTX provides affirmative action in employment for qualified individuals with a disability and protected veterans in compliance with Section
503 of the Rehabilitation Act and the Vietnam Era Veterans’ Readjustment Assistance Act.