Ensures the confidentiality, integrity, and availability of Boeing/Aurora's information assets and adequately protects that information consistent with information risk management policies that are compliant with the National Institute of Standards and Technology (NIST) and Defense Federal Acquisition Regulation Supplement (DFARS) requirements.
Oversees the Risk Management Framework in accordance with NIST Special Publication (SP) 800-37, including categorization, control selection, control implementation, control assessment, and authorization.
Maintains Plan of Action and Milestones (PO&AMs) and supports remediation activities, including any audit findings related to the IT organization and information security operations
Defines roles and responsibilities, manages project activities, budgets and priorities, and provides performance reviews and development for all information security team members.
Making technical and policy decisions that affect corporate security posture, especially as it relates to DFARS (NIST SP 800-171 compliance).
Identify technical solutions, conduct evaluation and implement technical solutions.
Assist with the implementation and maintenance of ISO 27001 controls across the enterprise.
Perform technical security risk assessment across enterprise infrastructure, web technology and applications platforms.
Align with business requirements and provide support to delivery organization for managing enterprise security requirements;
Understand enterprise-wide vision for information security issues, review the current architecture and implemented solutions.
The primary focus in this position is to design and validate new security solutions, participate in hardening and evolving the program's existing security architecture while providing subject matter expertise towards producing an IT security plan.
Make sure that information security policies and procedures are communicated to all personnel and that compliance is enforced.
Manage all teams, employees, contractors and vendors involved in IT security, which may include hiring.
Experience managing organizational compliance with NIST 800-171, ISO 27001/2, DFARS 252.204-7012, NISPOM, Risk Management Framework, and industry best practices for data assurance
Experience managing a team of 4-6 InfoSec professionals
Previous Applicants: Email: Password:
If you do not remember your password click here.
Aurora Flight Sciences