Cyber Security Assessment Specialist

Full Time
Huntington Beach, CA
report a problem
Overview


 
Company The Boeing
Company Job ID 1700010567
​Date posted 07/24/2017
Location Huntington Beach California United States

Job Description

The Tactical Systems Program is seeking a highly talented and motivated person to perform Certification and Accreditation (C&A) tasks for several classified systems. This includes maintaining systems that have already been approved through the Director of Central Intelligence Directive 6/3 (DCID 6/3) process and working to get those systems approved through the Intelligence Community Directive 503 (ICD 503) Risk Management Framework (RMF) process.

Primary Responsibilities:

  • Maintain systems already approved through the DCID 6/3 C&A process. 
    Perform monthly Assured Compliance Assessment Solution (ACAS) security scans.
  • Apply software patches and system configuration changes to mitigate discovered system vulnerabilities. 
  • Update Plan of Action and Milestones (POA&Ms) spreadsheets and Waiver and Exceptions memorandums, as needed, to be in line with current ACAS scan results.
  • Perform quarterly Security Technical Implementation Guideline (STIG) checks:
    • Update checklists using the latest DISA STIGs.
    • Perform SCAP scans of systems to verify STIG compliance.
    • Make configuration changes to system baselines to address STIG related findings.
  • Transition DCID 6/3 approved systems to the ICD 503 RMF C&A process.
  • Investigate, analyze, and resolve security questions and issues raised by government Information Assurance (IA) personnel. 
  • Develop and maintain Assessment & Authorization (A&A) related artifacts including but not limited to System Security Authorization Agreements (SSAAs), POA&Ms, and STIG checklists. 
  • Maintain configuration management of applied security configuration changes.

Boeing is the world's largest aerospace company and leading manufacturer of commercial airplanes and defense, space and security systems. We are engineers and technicians. Skilled scientists and thinkers. Bold innovators and dreamers. Join us, and you can build something better for yourself, for our customers and for the world.


Division:  Autonomous Systems
Relocation Assistance Available:  Yes. Available for eligible candidates, if authorized.


Qualifications 

This position requires an active (or ability to obtain) U.S. Security Clearance, for which the US Government requires US Citizenship. 

This position requires an active Top Secret/SCI U.S. Security Clearance. (A U.S. Security Clearance that has been active in the past 24 months is considered active.)

Typical Education & Experience:

Technical bachelor's degree and typically 5 or more years' related work experience or a Master's degree with typically 3 or more years' or a PhD degree or an equivalent combination of education and experience. A technical degree is defined as any four year degree, or greater, in a mathematic, scientific or information technology field of study.

Basic Skills:

  • Experience with Information Assurance policies and procedures and the ability to apply IA requirements to an existing system.
  • A strong understanding of STIGS, HBSS, ACAS, Software Assurance techniques & tools. Additionally, experience with security products such as vulnerability scanning and network assessment tools. 
  • Experience installing, and testing patches on VMWare, Windows, and Linux platforms. 
  •   Recent hands on A&A experience creating DIACAP and/or RMF accreditation packages. 
  • Strong working knowledge of IA concepts such as patch management, two-factor authentication, host-based security, intrusion detection, security event management, and defense-in-depth. 
  • Technical document preparation skills and verbal communications for presentation of technical information assurance issues and reports to government and military officials.  

Preferred Skills:

  • Security engineering skills with a working knowledge of IA technology, NIST standards, DoDI 8500.2 and SP 800-53.
  • Experience in the Cybersecurity Lifecycle to include: Generating IA requirements, creating IA architecture design, configuring IA audit tools, conducting IA verification and performing IA compliance.
  • Experience in security architecture design, Security Audit tools, security requirements generation, security testing, administration of security devices such as firewalls, and intrusion detection systems.

 

Experience Level:  Individual Contributor
Job Type:  Standard
Travel:  Yes, 10 % of the Time
Contingent Upon Program Award:  No
Union:  No
Job Code:  3AQ1P4


 



Share this job:

Boeing

DREAM BIGGER FOR THE NEXT CENTURY
As we enter our second century, Boeing is the world's largest aerospace company and leading manufacturer of commercial airplanes and defense, space and security systems. We are engineers and technicians. Skilled scientists and thinkers. Bold innovators and dreamers. Join us, and build something better for yourself, for our customers and for the world.

Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, veteran status or other characteristics protected by law.
Visit Boeing's Social Media pages:
Company Industry: Aviation & Aerospace
Company Type: Public Company
Company Size: 10,001+