Information Security Manager

Aurora Flight Sciences Manassas , VA 20108

Posted 3 weeks ago

Position Overview:

  • Ensures the confidentiality, integrity, and availability of Boeing/Aurora's information assets and adequately protects that information consistent with information risk management policies that are compliant with the National Institute of Standards and Technology (NIST) and Defense Federal Acquisition Regulation Supplement (DFARS) requirements.

  • Oversees the Risk Management Framework in accordance with NIST Special Publication (SP) 800-37, including categorization, control selection, control implementation, control assessment, and authorization.

  • Maintains Plan of Action and Milestones (PO&AMs) and supports remediation activities, including any audit findings related to the IT organization and information security operations

  • Defines roles and responsibilities, manages project activities, budgets and priorities, and provides performance reviews and development for all information security team members.

  • Making technical and policy decisions that affect corporate security posture, especially as it relates to DFARS (NIST SP 800-171 compliance).

  • Identify technical solutions, conduct evaluation and implement technical solutions.

  • Assist with the implementation and maintenance of ISO 27001 controls across the enterprise.

  • Perform technical security risk assessment across enterprise infrastructure, web technology and applications platforms.

  • Align with business requirements and provide support to delivery organization for managing enterprise security requirements;

  • Understand enterprise-wide vision for information security issues, review the current architecture and implemented solutions.

  • The primary focus in this position is to design and validate new security solutions, participate in hardening and evolving the program's existing security architecture while providing subject matter expertise towards producing an IT security plan.

  • Make sure that information security policies and procedures are communicated to all personnel and that compliance is enforced.

  • Manage all teams, employees, contractors and vendors involved in IT security, which may include hiring.

Minimum Requirements:

  • Experience managing organizational compliance with NIST 800-171, ISO 27001/2, DFARS 252.204-7012, NISPOM, Risk Management Framework, and industry best practices for data assurance

  • Experience managing a team of 4-6 InfoSec professionals

Desired Requirements:

  • Education / Certification requirements: CCISP Certification or equivalent; Cyber Security degree or equivalent experience

Previous Applicants: Email: Password:

If you do not remember your password click here.


icon no score

See how you match
to the job

Find your dream job anywhere
with the LiveCareer app.
Mobile App Icon
Download the
LiveCareer app and find
your dream job anywhere
App Store Icon Google Play Icon
lc_ad

Boost your job search productivity with our
free Chrome Extension!

lc_apply_tool GET EXTENSION

Similar Jobs

Want to see jobs matched to your resume? Upload One Now! Remove
Information Security Manager

Boeing

Posted 3 weeks ago

VIEW JOBS 3/26/2019 12:00:00 AM 2019-06-24T00:00 Job Description Position Overview: * Ensures the confidentiality, integrity, and availability of Boeing/Aurora's information assets and adequately protects that information consistent with information risk management policies that are compliant with the National Institute of Standards and Technology (NIST) and Defense Federal Acquisition Regulation Supplement (DFARS) requirements. * Oversees the Risk Management Framework in accordance with NIST Special Publication (SP) 800-37, including categorization, control selection, control implementation, control assessment, and authorization. * Maintains Plan of Action and Milestones (PO&AMs) and supports remediation activities, including any audit findings related to the IT organization and information security operations * Defines roles and responsibilities, manages project activities, budgets and priorities, and provides performance reviews and development for all information security team members. * Making technical and policy decisions that affect corporate security posture, especially as it relates to DFARS (NIST SP 800-171 compliance). * Identify technical solutions, conduct evaluation and implement technical solutions. * Assist with the implementation and maintenance of ISO 27001 controls across the enterprise. * Perform technical security risk assessment – across enterprise infrastructure, web technology and applications platforms. * Align with business requirements and provide support to delivery organization for managing enterprise security requirements; * Understand enterprise-wide vision for information security issues, review the current architecture and implemented solutions. * The primary focus in this position is to design and validate new security solutions, participate in hardening and evolving the program's existing security architecture while providing subject matter expertise towards producing an IT security plan. * Make sure that information security policies and procedures are communicated to all personnel and that compliance is enforced. * Manage all teams, employees, contractors and vendors involved in IT security, which may include hiring. Minimum Requirements: * Experience managing organizational compliance with NIST 800-171, ISO 27001/2, DFARS 252.204-7012, NISPOM, Risk Management Framework, and industry best practices for data assurance * Experience managing a team of 4-6 InfoSec professionals Desired Requirements: * Education / Certification requirements: CCISP Certification or equivalent; Cyber Security degree or equivalent experience Division Aurora Flight Boeing Manassas VA

Information Security Manager

Aurora Flight Sciences