Cybersecurity Site Lead, ISSM (Onsite)

Date Posted:

2024-11-07

Country:

United States of America

Location:

PW109: West Palm Beach 17900 Beeline Highway, West Palm Beach, FL, 33410 USA

Position Role Type:

Onsite

Pratt & Whitney is working to once again transform the future of flight—designing, building and servicing engines unlike any the world has ever seen. And because transformation begins from within, we’re seeking the people to drive it. So, calling all curious.

Come ready to explore and you’ll find a place where your talent takes flight—beyond the borders of title, a country or your comfort zone. Bring your passion and commitment and we’ll welcome you into a tight-knit team that takes our mission personally. Channel your drive to make a difference into shaping an organization and an industry that’s evolving fast to the future.

Innovation through diversity of thought. At Pratt & Whitney, we believe diversity of thought enables creativity, innovation, and a foundation for inclusion. By fostering an inclusive culture, we accept a shared accountability and responsibility to recognize, sponsor, coach, hire and promote talent equally. We welcome our employees to be their whole - best - selves at work because trust, respect and integrity, are a part of our DNA.

At Pratt & Whitney, the difference you make is on display every day. Just look up. Are you ready to go beyond?

What You Will Do:

The Information Systems Security Manager (ISSM) will lead and oversee a dedicated team responsible for delivering cybersecurity support at Pratt & Whitney's West Palm Beach (WPB) location. The person in this role is integral to a segment of the Military Engines (ME) program portfolio and will ensure adherence to the relevant U.S. Department of Defense (DoD) security regulations, laws, and policies. As the ISSM for the site, the candidate will collaborate closely with the WPB Facility Security Officer (FSO), Contractor Program Security Officers (CPSO), Program Security Officers (PSO), and Security Control Assessors (SCA) to secure approval for site-specific processes and procedures. Additionally, the candidate will coordinate with ISSMs from other Pratt & Whitney sites to manage local team assignments and to align site-specific operating conditions with company policies and procedures.

Primary Responsibilities:

• Manage and supervise a compact team of 2-4 cybersecurity experts tasked with supporting information systems, coordinating with Information System Security Managers (ISSMs) and Enclave Managers to ensure alignment.

• Coordinate with the host facility managing the Authorization to Operate (ATO) to guarantee compliance with their Wide Area Network (WAN) extension to this site, ensuring adherence to both organizational and regulatory standards.  Oversee the implementation of continuous monitoring activities as mandated by the Risk Management Framework (RMF) package. Confirm that all local cybersecurity processes and procedures are well-documented, authorized, and comply with the requirements of each Information System's (IS) RMF documentation. Maintain accurate and up-to-date hardware baselines for local Information Systems, ensuring meticulous inventory management and documentation.

• Engage in collaboration and strategic planning by liaising with program management to remain abreast of current and anticipated business needs, which facilitates strategic planning for future cybersecurity needs and initiatives. Monitor and potentially lead projects related to on-site classified information technology implementations or upgrades from a cybersecurity compliance standpoint, as directed by the Enclave Manager. Maintain close cooperation with the WPB Facility Security Officer (FSO) to ensure uniformity across all security disciplines.

• Work in conjunction with the ISSM and/or Senior Information Systems Security Officers (ISSOs) on the technical aspects of security architecture for projects that interface with Connecticut-based information systems.

• Actively seek opportunities to enhance processes and proactively assess them for improvement. Lead and/or participate in working groups tasked with establishing, reviewing, or revising standard procedures and work instructions.

• Provide coaching, mentoring, and training to Information Systems Security Officers (ISSO) on standard work, procedures, plans, and policies relevant to their respective information systems, following approved instructions, guidance, and requirements. Develop and/or refresh site-specific training materials and curricula in line with Enclave Managers' directives.

• Take charge of and execute tasks related to self-inspections and preparations for government compliance inspections that include remote site information systems.

Qualifications You Must Have:

• Advanced degree and 5+ years of Technology, Information Systems or Cybersecurity experience; OR Bachelor’s degree an 8+ years of relevant experience.

• U.S. citizenship is required, as only U.S. citizens are authorized to access information under this program/contract.

• A current Secret-level U.S. government security clearance with ability to obtain a Top Secret-level clearance.

Qualifications We Prefer:

• Advanced degree, preferably in cybersecurity, computer science, or IT-related field of study.

• 3+ years of direct experience in an Information Systems Security Officer (ISSO), Information Systems Security Manager (ISSM), or Information Systems Security Engineer (ISSE) role.

• 5+ years of combined experience in systems administration/engineering and cybersecurity support, including work with servers, desktop computers, operating systems, and virtual computing environments.

• 2+ years’ experience managing people, resources and/or projects tied to IT infrastructure.

• Certifications equivalent to or exceeding DoD 8570.01-M IAT Level II functional and baseline certification requirements.

• Experience with information systems that support classified programs or activities is preferred.

• Current Top Secret-level U.S. government security clearance.

• Special Access Programs experience.

• (ISC)2 CISSP or ISACA CISM professional certification or equivalent/higher.

• Strong experience implementing the NIST cybersecurity management framework.

• Familiarity with U.S. DoD cybersecurity guidance promulgated through the DAAPM and/or JSIG.

• Requires practical knowledge in leading and managing the execution of processes, projects and tactics within one work area.

The salary range for this role is 96,000 USD - 200,000 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an offer, including but not limited to, the role, function and associated responsibilities, a candidate’s work experience, location, education/training, and key skills.

Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement.

Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company’s performance.

This role is a U.S.-based role. If the successful candidate resides in a U.S. territory, the appropriate pay structure and benefits will apply.

RTX anticipates the application window closing approximately 40 days from the date the notice was posted. However, factors such as candidate flow and business necessity may require RTX to shorten or extend the application window.

RTX is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.

Privacy Policy and Terms:

Click on this link to read the Policy and Terms