General Atomics
Cybersecurity Compliance Program Manager
General Atomics, San Diego, California, United States, 92189
Overview
General Atomics (GA), and its affiliated companies, is one of the world’s leading resources for high-technology systems development ranging from the nuclear fuel cycle to remotely piloted aircraft, airborne sensors, and advanced electric, electronic, wireless and laser technologies. We have an exciting opportunity for a Cybersecurity Compliance Program Manager to join our Information Technology Services (ITS) Information Assurance team. Reporting directly to the Senior Manager of IT Governance, Risk and Compliance, this role will support the IT compliance activities of the organization. With general supervision, this position is responsible for supporting the development and implementation of cybersecurity compliance programs, and related procedures.
Responsibilities
Develop, implement, and maintain IT compliance programs, policies, and procedures in accordance with relevant regulations, including NIST SP 800-171 (Revisions 2, 3), DFARS, FAR, CMMC (Levels 1–3), ISO 27000 series.
Conduct regular internal assessments to evaluate the effectiveness of IT controls and identify areas for improvement.
Manage external audits by government agencies (e.g., DCAA, DCMA) or third-party assessors.
Collaborate with IT, security, and other departments to ensure systems and processes meet compliance requirements.
Maintain knowledge of applicable policies, regulations, and privacy/compliance documents related to cybersecurity and information assurance.
Participate in assessments of information technology systems and ensure periodic system security reviews are conducted and documented.
Provide input to cybersecurity awareness training programs that engage employees and influence behavior.
Develop electronic and hard copy reports and records, including new or revised documentation.
Create compliance-related presentations for internal stakeholders as needed.
Monitor changes in regulations and update policies and procedures accordingly.
Serve as a point of contact for IT compliance-related inquiries, investigate and address compliance violations or incidents.
Maintain the strict confidentiality of sensitive information.
Continually learn to keep abreast of changes in regulatory and technology environments.
Observe all laws, regulations, and obligations wherever business is conducted on behalf of the Company and perform work safely per operating procedures.
We recognize and appreciate the value and contributions of individuals with diverse backgrounds and experiences and welcome all qualified individuals to apply.
Job Qualifications
Bachelor’s degree in a related discipline and ten or more years of progressive professional experience in information assurance or a related field (equivalent professional experience may be substituted for education).
6+ years of experience with cybersecurity and IT compliance programs affecting highly regulated industries preferred.
CompTIA Security+, CISSP or higher certification strongly desired.
Familiar with DFARS, CMMC, and other aerospace/defense regulatory requirements.
Familiar with international regulatory requirements affecting aerospace and defense (e.g., UK Cyber Essentials, CPCSC).
Familiar with AI regulations at local, state, federal, and international levels.
Familiar with ISO 27000 series and privacy regulations (e.g., CCPA, GDPR).
Experience with using GRC tools to support compliance programs.
Strong planning, scheduling, and project management skills; able to work independently or in a team; willing to work extended hours as required.
Customer-focused with the ability to identify issues, analyze data, and develop solutions; excellent verbal and written communication; strong interpersonal skills.
U.S. citizenship and the ability to obtain and maintain a security clearance at or above the Secret level.
Salary:
$105,890 - $189,545 •
Travel
0–25% •
Relocation
Not Provided •
US Citizenship Required?
Yes •
Clearance Desired?
Yes •
Clearance Level
Senior (8+ years) •
Workstyle
Hybrid
General Atomics is committed to hiring and retaining a diverse workforce. We are an Equal Opportunity/Affirmative Action Employer and will consider all qualified applicants for employment without regard to race, color, religion, creed, ancestry, gender, pregnancy, sex, sexual orientation, gender identity or expression, national origin, age, genetic information, military or veteran status, marital status, medical condition, or disability, or any other basis protected by local, state, or federal law. EEO is the law. U.S. Citizenship is required for certain positions.
#J-18808-Ljbffr
General Atomics (GA), and its affiliated companies, is one of the world’s leading resources for high-technology systems development ranging from the nuclear fuel cycle to remotely piloted aircraft, airborne sensors, and advanced electric, electronic, wireless and laser technologies. We have an exciting opportunity for a Cybersecurity Compliance Program Manager to join our Information Technology Services (ITS) Information Assurance team. Reporting directly to the Senior Manager of IT Governance, Risk and Compliance, this role will support the IT compliance activities of the organization. With general supervision, this position is responsible for supporting the development and implementation of cybersecurity compliance programs, and related procedures.
Responsibilities
Develop, implement, and maintain IT compliance programs, policies, and procedures in accordance with relevant regulations, including NIST SP 800-171 (Revisions 2, 3), DFARS, FAR, CMMC (Levels 1–3), ISO 27000 series.
Conduct regular internal assessments to evaluate the effectiveness of IT controls and identify areas for improvement.
Manage external audits by government agencies (e.g., DCAA, DCMA) or third-party assessors.
Collaborate with IT, security, and other departments to ensure systems and processes meet compliance requirements.
Maintain knowledge of applicable policies, regulations, and privacy/compliance documents related to cybersecurity and information assurance.
Participate in assessments of information technology systems and ensure periodic system security reviews are conducted and documented.
Provide input to cybersecurity awareness training programs that engage employees and influence behavior.
Develop electronic and hard copy reports and records, including new or revised documentation.
Create compliance-related presentations for internal stakeholders as needed.
Monitor changes in regulations and update policies and procedures accordingly.
Serve as a point of contact for IT compliance-related inquiries, investigate and address compliance violations or incidents.
Maintain the strict confidentiality of sensitive information.
Continually learn to keep abreast of changes in regulatory and technology environments.
Observe all laws, regulations, and obligations wherever business is conducted on behalf of the Company and perform work safely per operating procedures.
We recognize and appreciate the value and contributions of individuals with diverse backgrounds and experiences and welcome all qualified individuals to apply.
Job Qualifications
Bachelor’s degree in a related discipline and ten or more years of progressive professional experience in information assurance or a related field (equivalent professional experience may be substituted for education).
6+ years of experience with cybersecurity and IT compliance programs affecting highly regulated industries preferred.
CompTIA Security+, CISSP or higher certification strongly desired.
Familiar with DFARS, CMMC, and other aerospace/defense regulatory requirements.
Familiar with international regulatory requirements affecting aerospace and defense (e.g., UK Cyber Essentials, CPCSC).
Familiar with AI regulations at local, state, federal, and international levels.
Familiar with ISO 27000 series and privacy regulations (e.g., CCPA, GDPR).
Experience with using GRC tools to support compliance programs.
Strong planning, scheduling, and project management skills; able to work independently or in a team; willing to work extended hours as required.
Customer-focused with the ability to identify issues, analyze data, and develop solutions; excellent verbal and written communication; strong interpersonal skills.
U.S. citizenship and the ability to obtain and maintain a security clearance at or above the Secret level.
Salary:
$105,890 - $189,545 •
Travel
0–25% •
Relocation
Not Provided •
US Citizenship Required?
Yes •
Clearance Desired?
Yes •
Clearance Level
Senior (8+ years) •
Workstyle
Hybrid
General Atomics is committed to hiring and retaining a diverse workforce. We are an Equal Opportunity/Affirmative Action Employer and will consider all qualified applicants for employment without regard to race, color, religion, creed, ancestry, gender, pregnancy, sex, sexual orientation, gender identity or expression, national origin, age, genetic information, military or veteran status, marital status, medical condition, or disability, or any other basis protected by local, state, or federal law. EEO is the law. U.S. Citizenship is required for certain positions.
#J-18808-Ljbffr