Information System Security Officer (ISSO) - Andover, MA

Our cybersecurity team, is seeking an Information System Security Officer (ISSO) to support our team 100% onsite at our facility in Andover, Massachusetts. You will interface and collaborate with the Information Systems Security Manager (ISSM) to ensure adherence to all NISPOM Chapter 8, DAAPM, JSIG policies.

What You Will Do

• You will be primarily responsible for system compliance, auditing, security plan development and delivering information systems security education and awareness.

• You will also assist in investigating information system security violations and help prepare reports specifying corrective and preventative actions.

• The position routinely collaborates with the facility security team, program personnel, and government representatives.

• Security sustainment activities (hardware change management, software change management, account management, media protection, user interface, file transfers, etc.)

Important note: Within six months of hire date, you must obtain and maintain a Security professional certification commensurate with IAM Level I certification (Security+ or other), if you do not already have this certification.

Qualifications You Must Have

• Typically requires a University Degree and minimum 2 years prior relevant experience, or an Advanced Degree in a related field.

• Relevant Experience Considered in any combination:

  • Cybersecurity, systems security or hardening

  • Information Technology

  • Compliance-based auditing using the Risk Management Framework (RMF), DCSA Assessment and Authorization Process Manual (DAAPM), Joint SAP Implementation Guide (JSIG), National Industrial Security Program Operating Manual (NISPOM), and/or non-defense regulations such as FAA, Payment Card Industry (PCI), ISO 9001 Quality Management standards, or HIPPA

  • Experience working with and/or supporting computer technologies (such as: databases, operating systems, computer network hardware, software programs, hardware troubleshooting or electronics)

  • Physical security/security, policework/criminal justice, investigations, or Border Patrol

  • Project or program management, office management, senior administration, or account management

Qualifications We Prefer

• Experience working in DoD classified operating and/or laboratory environments

• Familiarity with cybersecurity Risk Management Framework (RMF) and compliance as stipulated by NISPOM/DAAPM, JSIG, ICD 503, STIGs and associated NIST publications

• Experience with audit reviews such as physical security, network and system event logs, password administration, file access privileges, etc.

• Familiarity with the execution and management of cyber incident response; preservation, containment, and eradication

• Ability to work independently and as a member of a team

• Self-motivated and possess exceptional written and verbal communication skills, particularly in documenting evaluation results

• Customer focused, adaptable and willing to work varying assignments

• Completion of National Industrial Security Program cybersecurity training courses available at https://cdse.usalearning.gov/login/index.php

What We Offer

Our values drive our actions, behaviors, and performance with a vision for a safer, more connected world. At RTX we value: Trust, Respect, Accountability, Collaboration, and Innovation.

Relocation Non-Eligible – Relocation assistance not available

Learn More & Apply Now!

Please consider the following role type definition as you apply for this role:

• Onsite: Employees who are working in Onsite roles will work primarily onsite. This includes all production and maintenance employees, as they are essential to the development of our products

We are RTX

#LI-Onsite