5 months ago
The Boeing Company is looking for a highly motivated Cybersecurity Specialist to join our Enterprise Government Cybersecurity team in Oklahoma City, OK. The candidate will rely on their cybersecurity and Information Assurance (IA) background to support Boeing customers in meeting Joint Special Access Program (SAP) Implementation Guide (JSIG), Intelligence Community Directive (ICD) and National Industrial Security Program Operating Manual (NISPOM) requirements.
Rely on your cybersecurity and technical background to perform security analysis of operational and development environments, threats, vulnerabilities and internal interfaces to define and assess compliance with accepted industry and government standards.
Contribute to the Authorization and Assessment (A&A) process under the Risk Managed Framework (RMF) for new and existing information systems, to include facilitating Memorandums of Understanding (MOU), Interconnection Security Agreements (ISA), Risk Acceptance Letters (RAL) and Continuous Monitoring (CONMON).
Conduct compliance review of operating systems (i.e., Windows, Linux, and Solaris) to governing requirements.
Assess test/analysis data to document state of compliance with security requirements.
Conduct risk assessments and investigations, execute appropriate risk mitigations, and oversee incident response activities.
Interface with the appropriate government customers, suppliers, and company personnel to implement protective mechanisms and to ensure understanding of and compliance with cybersecurity requirements.
Boeing is the world's largest aerospace company and leading manufacturer of commercial airplanes and defense, space and security systems. We are engineers and technicians. Skilled scientists and thinkers. Bold innovators and dreamers. Join us, and you can build something better for yourself, for our customers and for the world.
OFFICE OF INT GOVERNCE
Relocation Assistance Available
No. Relocation assistance is not a negotiable benefit.
* This position requires an active Secret U.S. Security Clearance. (A U.S. Security Clearance that has been active in the past 24 months is considered active.)
* IAM Level 1 DoD 8140.01 (previously 8570.01) compliant certification (i.e. CAP, GSLC, Security+ CE, CISSP, CASP, CISM, GSLC).
Experience with policies and implementation of Risk Management Framework (RMF): e.g. DAAPM, ICD-503, JSIG, and NIST 800 series special publications.
Experience in assessing and documenting test or analysis data to show cybersecurity compliance.
Demonstrated knowledge of processes and tools to maintain, archive, sanitize, and retrieve digital files.
Demonstrated knowledge with security relevant tools, systems, and applications in support of RMF to include: NESSUS, ACAS, DISA STIGs, SCAP, Audit Reduction, and HBSS.
Demonstrated experience with performing security compliance monitoring and security policy assessments/audits.
Strong verbal/written communication skills, able to communicate clearly both one-on-one and group levels, and with team leaders, managers and internal employees in the decision-making process to obtain needed information, make the most appropriate decisions, and ensure buy-in and understanding of resulting decisions.
Excellent task management skills, able to determine project or assignment requirements by breaking them down into tasks and identifying types of equipment, materials, and people needed; must be able to consistently and proactively identify more critical and less critical activities and assignments and effectively adjust priorities when appropriate.
Knowledge of verification, validation, certification and qualification processes and procedures, including current governing regulations and compliance requirements.
Advanced level of understanding and proficiency in the use of networking computing hardware and software applications.
Extensive knowledge of processes and tools needed to maintain, archive, and retrieve digital files; as it relates to cybersecurity, ability to read and understand contracts, Statements of Work (SoW), and DD-254s.
Technical bachelor's degree and typically 5 or more years' related work experience or a Master's degree with typically 3 or more years' or a PhD degree or an equivalent combination of education and experience. A technical degree is defined as any four year degree, or greater, in a mathematic, scientific or information technology field of study.
Yes, 10 % of the Time
Contingent Upon Program Award