CrawlJobs Logo
Boeing Logo Boeing · IT - Administration

Cybersecurity - Senior Information System Security Manager

United States, Berkeley Employment contract 161500.00 - 218500.00 USD / Year · Job Posted June 30, 2026
Apply Position
Job Link Share

Job Description

At Boeing, we innovate and collaborate to make the world a better place. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us. Boeing Classified Cybersecurity is currently seeking a highly motivated Cybersecurity – Senior Information System Security Manager (ISSM) to join the team in Berkeley, MO or Hazelwood, MO. The selected candidate will leverage their cybersecurity and Information Assurance (IA) background to be a technical leader and support Enterprise activities and Boeing customers across multiple classified computing domains. The ISSM is responsible for ensuring all Information System Security policies, standards, and directives are enforced to support assessment, authorization and continued operation of information systems processing classified information.

Job Responsibility

  • Oversee the development and deployment of program information security for all program systems to meet the program and enterprise requirements, policies, standards, guidelines and procedures (multiple locations)
  • Manage assigned team to facilitate effective execution of Risk Management Framework (RMF) through organization and execution of the Responsible, Accountable, Consulted and Informed model and other methods
  • Provide assignment, guidance and coaching to support the team within Information Security
  • Communicate with security assessors and program office personnel to ensure requirements are tracked and followed
  • Manage and perform security compliance continuous monitoring
  • Oversee and participate in security assessments and audits
  • Prepare, review, and present technical reports and briefings
  • Identify root causes, prioritize threats and recommend and/or implement corrective action
  • Explore the enterprise and industry for evolving state of industry knowledge and methods regarding information security best practices and cloud methodologies
  • Lead development of enterprise-wide information security policies, standards, guidelines and procedures that may reach across multiple stakeholder organizations

Requirements

  • Successfully completed Tier 5 Investigation (T5), formerly known as a Single Scope Background Investigation (SSBI) by the federal government within the last 5 years, or requires candidate to have been enrolled in a Continuous Vetting program within the last 5 years
  • Currently hold certification in good standing to satisfy IAM Level III (CISSP, GSLC, or CISM)
  • 10+ years of combined experience and education in IT, cybersecurity, or related fields
  • 5+ years of experience utilizing security relevant tools, systems, and applications in support of Risk Management Framework (RMF) to include NESSUS, ACAS, DISA STIGs, SCAP, Audit Reduction, and HBSS
  • 5+ years of experience with cybersecurity leadership overseeing programs and teams, authorizing risk decisions, coordinating stakeholders, and improving security and compliance
  • 5+ years of experience communicating complex technical risks, translating impact, and advising senior leaders
  • Experience with Risk Management Framework (RMF) and with cybersecurity policies and RMF implementation (e.g., DAAG, CNSSI 1253, ICD-503, JSIG, or NIST SP 800 series)

Nice to have

  • 10+ years of experience as an information system security officer (ISSO) or information system security manager (ISSM) supporting classified programs
  • 10+ years of experience utilizing security relevant tools, systems, and applications in support of Risk Management Framework (RMF) to include NESSUS, ACAS, DISA STIGs, SCAP, Audit Reduction, and HBSS
  • 10+ years of experience cybersecurity leadership overseeing programs and teams, authorizing risk decisions, coordinating stakeholders, and improving security and compliance.
  • 10+ years of experience communicating complex technical risks, translating impact, and advising senior leaders.

What we offer

  • Health insurance
  • Flexible spending accounts
  • Health savings accounts
  • Retirement savings plans
  • Life and disability insurance programs
  • Paid and unpaid time away from work
  • Generous company match to your 401(k)
  • Industry-leading tuition assistance program pays your institution directly
  • Fertility, adoption, and surrogacy benefits
  • Up to $10,000 gift match when you support your favorite nonprofit organizations
Boeing - All Job Offers

Looking for more opportunities?

Search for other job offers that match your skills and interests.

Suggested Tags: Frontend Developer Secretary Talent Manager Salesforce Administrator Data Analyst
Similar Jobs for

Cybersecurity - Senior Information System Security Manager

8 matching positions

Senior Cybersecurity Analyst (Information System Security Manager - ISSM)

OTS is seeking a Senior Cybersecurity Analyst (Information System Security Manag...
Location
Location
United States , San Antonio
Salary
Salary:
Not provided
optechs-inc.com Logo
Optimized Technical Solutions
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor's degree in Cybersecurity, Information Technology (IT), or a related field OR equivalent experience
  • Information Assurance Manager (IAM) Level III Certification (CISSP, CISM, GSLC, or equivalent)
  • 15+ years of experience in DoD cybersecurity operations
  • Proficiency with SonarQube, Dependency-Track, ACAS, and STIG compliance
  • Experience with eMASS, RMF, and cybersecurity compliance in DoD or federal agencies
Job Responsibility
Job Responsibility
  • Security Documentation
  • Code Scans
  • Open-Source Library Scans
  • Cybersecurity and Authorization to Operate (ATO)
  • Assured Compliance Assessment Solution (ACAS) Scans
  • C5ISR Interrogator Reporter
  • Enterprise Mission Assurance Support Service (eMASS) and Plan of Action and Milestones (POA&M)
  • STIG Checks
  • JIRA Workflow Support
  • Continuous Monitoring
What we offer
What we offer
  • Medical
  • Dental
  • Vision
  • Life Insurance
  • PTO including 11 Federal Holidays
  • 401K
  • Fulltime
Read More
Arrow Right

Senior Manager, Information Security Office (AI) Consultant

At Capital One, the AIML Division is working to bring the transformative power o...
Location
Location
United States , McLean; Plano; Richmond; New York
Salary
Salary:
209000.00 - 286200.00 USD / Year
capitalone.com Logo
Capital One
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • High School Diploma, GED or equivalent certification
  • At least 6 years of experience working in cybersecurity or information technology
  • At least 5 years of experience providing guidance and oversight of cyber security concepts
  • At least 5 years of experience performing cyber security risk assessments or cyber security architecture reviews
  • At least 4 years in securing a public cloud environment
  • At least 3 years of experience with API security, observability, cloud access control and privacy best practices
Job Responsibility
Job Responsibility
  • Lead the development of secure, enterprise grade AI/ML and agentic AI solutions
  • Establish Ai-First SDLC practices and build scalable platforms
  • Design and implement security controls for AI/ML systems, including LLM applications
  • Conduct threat modeling, risk assessments and security reviews using frameworks such as NIST AI RMF, OWASP, and MITRE ATLAS
  • Define and enforce AI Model guardrails, safety standards, and governance policies
  • Identify and mitigate risk in open -source AI ML models
  • Build and scale processes for AI security testing, monitoring and stress validation
  • Partner with engineering, research, and security teams to deliver secure and compliant AI solutions
  • Advise senior leadership on AI cybersecurity risks, strategy, and regulatory considerations
  • Drive continuous improvement through vulnerability assessments, risk remediation, and security innovation
What we offer
What we offer
  • performance based incentive compensation, which may include cash bonus(es) and/or long term incentives (LTI)
  • comprehensive, competitive, and inclusive set of health, financial and other benefits
  • Fulltime
Read More
Arrow Right

Senior Information System Security Officer

Come join our growing team and make a difference every day! AnaVation is seeking...
Location
Location
United States , Washington
Salary
Salary:
Not provided
anavationllc.com Logo
AnaVation
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Technology, or a related field
  • Minimum of six (6) years of hands-on experience in cybersecurity and expert knowledge of Governance Risk and Compliance
  • At least three (3) years supporting and maintaining system authorizations for complex systems
  • Demonstrated expertise in the Risk Management Framework (RMF), NIST SP 800-53 Rev 5, and related federal cybersecurity policies
  • Extensive experience managing ATO/ATT processes, security control assessments, POA&M lifecycle, vulnerability management, and audit response
  • Strong leadership experience mentoring junior and mid-level ISSOs and interfacing with senior government leadership
  • Must possess at least two of the following active certifications: Certified Information Systems Security Professional (CISSP), Certified Information Security Manager (CISM), Certified Governance, Risk and Compliance (CGRC), Certified in Risk and Information Systems Control (CRISC), Information Systems Security Management Professional (ISSMP), Certified Information Systems Auditor (CISA), Certified Cloud Security Professional (CCSP), Certified Ethical Hacker (CEH), CompTIA Security+, Project Management Professional (PMP)
  • Proficiency in tools such as JCAM, Tenable Nessus, BigFix and Splunk
  • Ability to develop, review, and present high-level security documentation and briefings
  • Strong understanding of cloud platforms (IaaS, PaaS, SaaS), supply chain risk management, and incident response procedures
Job Responsibility
Job Responsibility
  • Support the maintenance of security documentation and support system ATO and ATT efforts
  • Conduct security control assessments and provide recommendations for remediation
  • Perform biweekly audit log and vulnerability scan reviews and track POA&M items
  • Collaborate with system owners and technical teams to manage risk and respond to incident
  • Support Ongoing Authorization (OA) and continuous monitoring activities
  • Prepare and brief senior leadership on system security posture and compliance metric
  • Ensure alignment with cybersecurity policies and NIST SP 800-53, 800-37, and 800-137
What we offer
What we offer
  • Generous cost sharing for medical insurance for the employee and dependents
  • 100% company paid dental insurance for employees and dependents
  • 100% company paid long-term and short term disability insurance
  • 100% company paid vision insurance for employees and dependents
  • 401k plan with generous match and 100% immediate vesting
  • Competitive Pay
  • Generous paid leave and holiday package
  • Tuition and training reimbursement
  • Life and AD&D Insurance
  • Fulltime
Read More
Arrow Right

Senior Information System Security Officer

We are seeking a highly skilled and mission-driven Senior Information Systems Se...
Location
Location
United States , Clarksburg
Salary
Salary:
Not provided
imts.us Logo
Innovative Management & Technology Services
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Bachelor’s degree in Cybersecurity, Information Systems, Computer Science, or a related field (or equivalent combination of education and experience)
  • 8+ years of progressive experience in information systems security, with at least 3 years in a senior-level or lead ISSO role supporting federal or state government agencies
  • Strong working knowledge of: NIST 800-53, RMF, FISMA, OWASP Top 10, and SANS Institute standards
  • SAFe Agile environments and integrating security in Agile workflows
  • Networking, Linux/Windows system administration, and secure software development practices
  • Cloud platforms (AWS, Azure, GCP) and related security tools (e.g., AWS Security Hub, Azure Defender)
  • Experience in managing security documentation, participating in audits, and working with compliance frameworks
  • Relevant certifications such as CISSP, CISM, Security+, CEH, or equivalent
  • Active Top Secret clearance is required
  • U.S. Citizenship is required
Job Responsibility
Job Responsibility
  • Lead the implementation and maintenance of system security controls in compliance with federal cybersecurity frameworks, including NIST SP 800-53, RMF, OWASP, DISA STIGs, and Common Criteria
  • Oversee the full lifecycle of Authorization to Operate (ATO) processes, including preparation of System Security Plans (SSPs), Security Assessment Reports (SARs), POA&Ms, and risk assessments
  • Serve as a senior security advisor and liaison to system owners, developers, DevOps engineers, and government stakeholders
  • Participate in technical reviews of system architecture and ensure secure design of virtualized and software-defined infrastructures
  • Support integration of security controls into CI/CD pipelines using DevSecOps principles and tools (e.g., Jenkins, GitLab CI, SonarQube, Snyk)
  • Provide security engineering support for modern cloud environments, including AWS, Azure, or Google Cloud Platform, and assess cloud-native security capabilities
  • Conduct vulnerability assessments, interpret scan results from tools like Tenable, Nessus, Splunk, or Qualys, and lead remediation efforts
  • Mentor junior ISSOs and analysts on security policies, best practices, and tool usage
  • Ensure continuous monitoring activities are aligned with organizational risk tolerance and compliance goals
What we offer
What we offer
  • competitive compensation
  • excellent benefits including tuition reimbursement and employer-contributed 401K
  • referral bonuses
  • Fulltime
Read More
Arrow Right
New

Information System Security Officer - Senior

INFORMATION SYSTEM SECURITY MANAGER - SENIOR LOCATION: Eglin AFB, FL JOB STATU...
Location
Location
United States , Eglin Air Force Base
Salary
Salary:
Not provided
astrion.us Logo
Astrion
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Master’s Degree in a technical field and a minimum of 10 years of relevant technical experience is required. Additional relevant experience may be substituted for education
  • US. Citizenship
  • Active Top-Secret clearance
  • Must possess the ability to perform tasks independently and oversee the efforts of junior and journeyman contractor personnel within the technical/professional discipline
  • Demonstrates advanced knowledge of their technical/professional discipline as well as possess a comprehensive understanding and ability to apply associated standards, procedures and practices in their area of expertise
  • Experience performing cybersecurity duties as outlined in DoDI 8500.01, AFI 17-130, and AFI 17-1301
  • Knowledge and experience with Risk Management Framework (RMF)
  • Familiarity with Defense Information Systems Agency (DISA) Secure Requirements Guides (SRGs) and Security Technical Implementation Guides (STIGs)
  • Proficiency in the use and integration of MS Office applications
  • Must be able to effectively communicate orally and possess technical writing skills
Job Responsibility
Job Responsibility
  • Serves as the primary cybersecurity technical advisor to the AO, PM and ISO
  • Ensures the integration of cybersecurity into, and throughout, the lifecycle of the IT, on behalf of the AO and in accordance with DoWI 8510.0
  • Completes and maintains required cybersecurity certification IAW AFMAN 17-1303
  • Ensures all AF IT cybersecurity-related documentation is current and accessible to properly authorized individuals
  • Supports the PM or ISO in maintaining current authorization to operate, approval to connect (if required), and implementing corrective actions identified in the plan of actions and milestones
  • Coordinates, with the PM and AO, development of an ISCM strategy and monitors any proposed or actual changes to the system and its environment
  • Continuously monitors the IT and environment for security-relevant events
  • Assesses proposed configuration changes for potential impact to the cybersecurity posture
  • Assesses the quality of security controls implementation against performance indicators
  • Ensures cybersecurity-related events or configuration changes that impact AF IT authorization or adversely impact the security posture are formally reported to the AO and other affected parties, such as IOs, stewards, and AOs of interconnected IT
What we offer
What we offer
  • Competitive salaries
  • Continuing education assistance
  • Professional development
  • Multiple healthcare benefits package options
  • 401K with employer matching
  • Competitive time off policy along with a federally recognized holiday schedule
  • Fulltime
Read More
Arrow Right

Information System Security Engineer - Senior

In support of a challenging, critical, and rewarding program that provides integ...
Location
Location
United States , Warrenton
Salary
Salary:
185000.00 USD / Year
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must have active Top-Secret clearance with SCI or TS with the ability to acquire SCI
  • Knowledge and experience with NESSUS/ACAS and Trellix administration
  • Experience in Splunk role while working in a Splunk Clustered Environment
  • Must be able to work a 40-hour work week, normally Monday through Friday
  • Ability to work overtime during critical peaks and be available to meet last-minute requests for overtime if needed
  • Ability to travel (5-10%) primarily within 75 miles
  • Familiarity with MS Office applications such as Excel, Word, Outlook, SharePoint, Project, and Visio
  • Exceptional attention to detail
  • excellent verbal and written communication skills
  • strong critical thinking, organizational, time-management, and problem-solving skills
Job Responsibility
Job Responsibility
  • Endpoint Security Engineering (Trellix/ePO): Expertly design, configure, and maintain Trellix components (ePO, Trellix Agent, DLP, HIPS, Policy Auditor, ABM, and VSE) across Windows and Linux environments
  • Author and deploy endpoint security policies for ENS modules (Threat Prevention, Firewall, Web Control) based on DISA STIGs and organizational needs
  • Develop custom signatures, rules, and exceptions to address zero-day threats and specific operational requirements
  • Validate custom exceptions to ensure uninterrupted operation of mission-critical processes without compromising compliance
  • Vulnerability Management (ACAS/Nessus): Design enterprise-wide vulnerability scanning strategies and manage the deployment of Security Centers and Nessus scanners
  • Serve as the final escalation point for complex scan issues, credentialing problems, and system communication failures
  • Configure automated reporting of compliance data to continuous monitoring systems and risk-scoring repositories
  • Security Integration & Engineering: Integrate Trellix and ACAS with tools such as Splunk, XSOAR, and ServiceNow to automate workflows and enhance incident response
  • Provide authoritative recommendations and ACAS-generated artifacts to support the Assessment and Authorization (A&A) process and RMF packages for Authority to Operate (ATO)
  • Lead the maintenance and scalability of test, development, and operational environments, collaborating with Network and DevSecOps teams to enhance resilience
What we offer
What we offer
  • Health, dental, and vision insurance
  • Paid time off and holidays
  • Retirement benefits (including 401(k) matching)
  • Educational reimbursement
  • Parental leave
  • Employee stock purchase plan
  • Tax-saving options
  • Disability and life insurance
  • Pet insurance
  • Fulltime
Read More
Arrow Right

Information System Security Engineer - Senior

In support of a challenging, critical, and rewarding program that provides integ...
Location
Location
United States , San Antonio
Salary
Salary:
160000.00 - 175000.00 USD / Year
amentum.com Logo
Amentum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Must have active Top-Secret clearance with SCI or TS with the ability to acquire SCI
  • Experience in Splunk role while working in a Splunk Clustered Environment
  • Knowledge and experience with NESSUS/ACAS and Trellix administration
  • Must be able to work a 40-hour work week, normally Monday through Friday
  • Ability to work overtime during critical peaks and be available to meet last-minute requests for overtime if needed
  • Ability to travel (5-10%) primarily within 75 miles
  • Familiarity with MS Office applications such as Excel, Word, Outlook, SharePoint, Project, and Visio
  • Exceptional attention to detail
  • excellent verbal and written communication skills
  • strong critical thinking, organizational, time-management, and problem-solving skills
Job Responsibility
Job Responsibility
  • Experience creating custom dashboards, writing queries, building, and generating reports, and setting up alerts and notifications using all the Cyber tools (Splunk, Tenable, Trellix)
  • Demonstrated proficiency with recognizing and onboarding new data sources into the cyber tools and analyzing the data for anomalies and trends
  • Primarily responsible for maintaining the test and operational environments to include all cybersecurity tool sets and collaborating with systems and network engineers
  • Use knowledge, skills, and ability to conduct research for designing, integrating, and implementing security controls into current and future products/systems thus ensuring these systems can be accredited based on compliance with the Joint Special Access Program Implementation Guide (JSIG)
  • Recommend the components to implement system security requirements using intimate knowledge of security design best practices for information systems throughout the system development life cycle to support the generation of security engineering products
  • Assist with the design, deployment, and administration of a multi-site, distributed Splunk environment including Multi-site Clustering, Search Head Clustering, Universal Forwarders, Deployer, and Deployment Server
  • Configure, operate, and maintain Trellix and its components (ePolicy Orchestrator, Trellix Agent, Data Loss Prevention, Host Intrusion Prevention System, Policy Auditor, Asset Baseline Monitor, and Virus Scan Enterprise) on Windows and Linux creating exceptions to allow essential processes to continue uninterrupted
  • Administration/operation of information security compliance tools/platforms with a special concentration in managing Tenable Security Center and NESSUS
  • Provide Tier 1, 2, and 3 maintenance support for deployed cyber security technologies
  • Assist with periodic and regular security assessments
What we offer
What we offer
  • Health, dental, and vision insurance
  • Paid time off and holidays
  • Retirement benefits (including 401(k) matching)
  • Educational reimbursement
  • Parental leave
  • Employee stock purchase plan
  • Tax-saving options
  • Disability and life insurance
  • Pet insurance
  • Fulltime
Read More
Arrow Right

Senior System Security and Information Assurance Engineer

The Senior PAM Engineer will play a critical role within Line of Effort 2, respo...
Location
Location
United States , Tampa
Salary
Salary:
Not provided
barbaricum.com Logo
Barbaricum
Expiration Date
Until further notice
Flip Icon
Requirements
Requirements
  • Active DoD Top Secret clearance with SCI eligibility
  • Master’s degree (MA/MS) in Cybersecurity, Information Technology, Computer Science, Engineering, or related field
  • 10+ years of professional experience in cybersecurity, systems engineering, or information assurance
  • Meets Cyber Engineer – Senior labor category requirements, including independent execution of all functional duties and support to mission-critical program elements
  • DoD 8570 IAT Level II certification or higher (e.g., Security+ CE, CCNA Security)
  • Deep expertise in Privileged Access Management (PAM) architectures and Zero Standing Privilege concepts
  • Hands-on experience implementing Just-In-Time (JIT) access workflows
  • Experience integrating PAM solutions with Active Directory, SIEM platforms (Splunk), and Identity Governance (IGA) tools
  • Experience producing technical documentation to support RMF and ATO processes (LLDs, SSPs, SOPs)
  • Ability to lead or oversee the efforts of less senior staff as required by program needs
Job Responsibility
Job Responsibility
  • Lead the installation, configuration, and technical implementation of an enterprise Privileged Access Management (PAM) solution (Delinea-focused) across multiple network enclaves
  • Discover, inventory, and onboard privileged user, administrator, and service accounts into a secure credential vault
  • Design and enforce policies for Just-In-Time (JIT) access, session monitoring, and session recording to achieve zero standing privileges
  • Develop scripts and API-based integrations between the PAM solution, Splunk SIEM, and Identity Governance (IGA) platforms
  • Support RMF accreditation activities by developing Low-Level Design (LLD) documents, System Security Plans (SSPs), and Standard Operating Procedures (SOPs)
  • Support Authority to Operate (ATO) efforts through security control implementation and technical validation
  • Lead enterprise rollout of PAM policies from pilot groups to full operational enforcement
  • Collaborate with Zero Trust architects, identity teams, and cyber engineers to ensure alignment with enterprise security architecture
Read More
Arrow Right