Raytheon is supporting a U.S. Government customer on a large mission critical development and sustainment program to design, build, deliver, and operate a network operations environment, including introducing new cyber capabilities to address emerging threats. Raytheon Cybersecurity and Special Missions (CSM) is seeking a Cyber Security and IA Manager to support the design, development, and deployment of advanced cybersecurity capabilities.
- Designs, develops, documents, analyzes, tests, integrates, debugs, conducts research and/or discovers and analyzes security flaws or vulnerabilities in software, networks, systems, applications and/or provide mitigation strategies.
- Ensures system security needs are established and maintained for various objects/matters.
- Integrates new architectural features into existing infrastructures, designs cyber security architectural artifacts, provides architectural analysis of cyber security features and relates existing system to future needs and trends.
- Employs and provides computer advanced forensic tools, techniques, and intrusion detection support and response for attack reconstruction, forensics, and high technology investigations, while reviewing threat data from various sources.
- Leads and manages three (3) Security Operation Teams and one (1) Information Assurance and Compliance Team.
The Cyber Security and IA Manager will be primarily located onsite in Pensacola on Corry Station. The Cyber Security and IA Manager will also be the primary interface with the government for the contractor’s day-to-day O&M security-related activities and interface with the IA&C Government Lead for all IA functions.
- Must be a US Citizen
- Active Top Secret (TS/SCI) clearance.
- Must be able to obtain DHS Suitability
- 10+ years of directly relevant experience
- 4+ years of experience as a Cyber Security Lead and/or IA Manager
- RedSeal knowledge
- Redmine experience
- Archer knowledge/experience
- CyberArk knowledge/experience
- SailPoint knowledge/experience
- Certification & Accreditation experience
- Extensive NIST knowledge
- Experience with intrusion detection and prevention systems (IDS/IPS), log analysis, Security Information Event Management (SIEM), malware analysis, network traffic flow and packet analysis
- Experience with standard security principles, policies, standards and industry best practices
- Experience with secure software development
- Understanding of Windows, UNIX, and Linux operating systems
- Understanding of security technologies and concepts, experience including design and implementation of secure network solutions including DMZs, web portals and large scale SIEM deployments
- Knowledge of Information Assurance and Information Operations technologies and development activities
- Understanding of the processes and guidelines for Certifying & Accrediting (DCID, ICD, NIST 800-53) information systems based upon experience on a large-scale development program
- Practical experience hardening IT systems in compliance with STE/STIG guidelines; validation of implemented STIG baseline via SCC
- Sourcefire experience
- Experience with Earned Value Management Systems (EVMS), compliant with ANSI/EIA Standard 748-B
- Perform Information Systems Security Engineering functions.
- Perform technical security assessment to identify points of vulnerability, non-compliance with Information Assurance (IA) standards and recommend mitigation strategies.
- Validate and verify system security requirements definitions and analysis and establish system security designs.
- Design, develop, implement and/or integrate IA and security systems and system components including those for networking, computing, and enclave environments to include those with multiple enclaves and with differing data protection/classification requirements.
- Assess and mitigate system security threats/risks throughout the program life cycle.
- Contribute to the security planning, assessment, risk analysis, risk management, certification and awareness activities for system and networking operations.
- Develop and review Certification and Accreditation (C&A) documentation, providing feedback on completeness and compliance of its content.
- Apply system security engineering expertise to one or more of the following: system security design process, engineering life cycle, information domain, cross domain solutions, commercial off-the-shelf and government off-the-shelf cryptography, identification; authentication; and authorization, system integration, risk management, intrusion detection, contingency planning, incident handling, configuration control, change management, auditing, certification and accreditation process, principles of IA (confidentiality, integrity, non-repudiation, availability, and access control), and security testing.
- Recommend hardware, software, and develop policies and procedures to investigate malware incidents for multiple networks.
- Develop analysis and make recommendations for hardware and software that will mitigate malware intrusions.
- Develop, implement and maintain the information system security posture across multiple networks
- Perform analysis on large data sets
- Provide security services for Certification and Accreditation (C&A) requirements, including developing and maintaining information assurance documentation for all network components.
- Support continuous monitoring and FISMA compliance.
- Conduct bi monthly vulnerability scans and reconcile results, and report all findings.
- Establish common processes across tasks, including Configuration Management (CM), risk management, Quality Assurance (QA), etc.
- Splunk experience
- Certified Information Systems Security Professional (CISSP)
- Information Systems Security Engineering Professional (ISSEP) or Information System Security Architect Professional (ISSAP)
- Information Technology Infrastructure Library (ITIL) Foundation
- Splunk (Certified User, Admin, etc.)
- Sourcefire Certified Professional (SFCP)
- ACAS Certification
- Blue Coat Certification
- Cisco Certified Network Professional (CCNP), Cisco Certified Security Professional (CCSP) or similar certification
Bachelor’s degree in Information Security, Cyber Engineering or a related discipline is required. Twelve (12) years of experience (for a total of twenty (20) or more years) may be substituted for a degree. A Master’s degree in a related discipline may substitute for two (2) years of experience. A PhD may substitute for four (4) years of experience.
Raytheon is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, creed, sex, sexual orientation, gender identity, national origin, disability, or protected Veteran status.