Pratt & Whitney
Special Access Programs (SAP) - Information System Security Manager (ISSM) - Wob
Pratt & Whitney, Woburn, Massachusetts, us, 01813
Overview
Date Posted:
2025-10-16
Country:
United States of America
Location:
MA312: Woburn MA 235 Presidential 235 Presidential Way Spencer Building 26, Woburn, MA, 01801 USA
Position Role Type:
Onsite
U.S. Citizen, U.S. Person, or Immigration Status Requirements:
Active and transferable U.S. government issued security clearance is required prior to start date. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance
Security Clearance:
Secret - Current
At Raytheon, the foundation of everything we do is rooted in our values and a higher calling – to help our nation and allies defend freedoms and deter aggression. We bring the strength of more than 100 years of experience and renowned engineering expertise to meet the needs of today’s mission and stay ahead of tomorrow’s threat. Our team solves tough, meaningful problems that create a safer, more secure world.
Our Cybersecurity team is seeking a
Special Access Programs (SAP) Information System Security Manager (ISSM)
to support our classified computing environments
100% onsite
at our facility in
Woburn, Massachusetts . The Cybersecurity SAP Information Systems Security Manager is responsible for compliance oversight, assessment, and operations of systems under their purview. They may be assigned to a single large-scale program or oversee multiple programs.
The Program ISSM has cognizance over all SAPs at the Woburn site per Commercial and Government Entity (CAGE) code as stipulated by various US Government requirements including (but not limited to): National Industrial Security Operating Manual (NISPOM) and related documentation such as:
Risk Management Framework (RMF),
Joint SAP Implementation Guide (JSIG)
Intelligence Community Directive 503 (ICD 503)
Baseline Technical Security Configuration Standards
Customer/contract specific Cybersecurity regulations.
What You Will Do
Complete Special Access Programs, and Raytheon GSS required training within 6 months of appointment (annual requirements thereafter).
Accountability for all systems under site CAGE and SBU: metrics, Raytheon business process (RCAST), Continuous Monitoring (ConMon) as described by Sr. ISSM
Maintaining a working knowledge of all SAP functions, security policies, technical security safeguards, and operational security measures.
Interactions with Special Access Programs SCA/ISSP to track items including, but not limited to, upcoming authorizations (ATO), new technologies solutions (i.e., new SIEM, OS, etc.), policy interpretations (in conjunction with Sr. ISSM), and onsite A&A.
Developing, maintaining, and updating, in coordination with all system stakeholders (CS Manager, ISO, DT, etc.), applicable site POAM(s) to identify system weaknesses, mitigating actions, resources, and timelines for corrective actions.
Coordinating SAP Inspection preparation activities for assigned sites in conjunction with site CPSO/Program Security Manager.
Important note:
Within six months of hire date, you must obtain and maintain a Security professional certification commensurate with IAM Level III certification commensurate with your role as a Site ISSM as required by DoDD 8140 (8570) if you do not already have this certification.
Qualifications You Must Have
Typically require a Bachelor’s degree with eight years of relevant experience or an advanced degree with five years of relevant experience as described below.
Experience supporting cybersecurity compliance as stipulated by DAAPM, JSIG, and/or NISPOM regulations
Past direct leadership or project/program management experience
IAM Level I certification (Security+ or other)
Relevant Experience Considered:
Information Technology, Cybersecurity, Physical security/security, policework/criminal justice, investigations, or Border Patrol
Compliance-based auditing using RMF and/or non-defense regulations such as FAA, PCI, ISO 9001, or HIPAA
Experience with computer technologies (databases, OS, networks, software, hardware troubleshooting, electronics)
Physical security/security, policework/criminal justice, investigations, or Border Patrol
Project or program management, office management, senior administration, or account management
Qualifications We Prefer
Master’s Degree in Computer Science, Information Systems, Information Technology, Cyber Security, Criminal Justice, Business or other relevant degree
Experience with information system security tools for vulnerability analysis and mitigation (e.g., Splunk, Forcepoint, Ivanti, Tenable, ACAS, HBSS)
Experience in oversight and execution of Assessment & Authorization processes (Certification & Accreditation) as defined in JSIG/RMF
Experience in incident response and investigations in collaboration with the Investigations department
Experience in a continuous monitoring/improvement program (self-inspections, security control assessments, training, log management, automation)
Experience providing security expertise for complex, cross-domain, classified networked environments with internal/external Customers
Experience developing Basis of Estimates (BOEs) and contract negotiations with customers
Experience with NISPOM, JAFAN 6/3, DCID 6/3, JSIG/RMF, ICD-503 or equivalent
Experience with engagements with internal and external customers (AOs, DAOs, SCAs, PMs) negotiating controls/requirements with government activities
What We Offer Our values drive our actions, behaviors, and performance with a vision for a safer, more connected world. At RTX we value: Trust, Respect, Accountability, Collaboration, and Innovation.
Relocation Non-Eligible – Relocation assistance not available
Please consider the following role type definition as you apply for this role:
Onsite: Employees who are working in Onsite roles will work primarily onsite. This includes all production and maintenance employees, as they are essential to the development of our products.
We are RTX
#LI-Onsite
As part of our commitment to maintaining a secure hiring process, candidates may be asked to attend select steps of the interview process in-person at one of our office locations, regardless of whether the role is designated as on-site, hybrid or remote.
The salary range for this role is 101,000 USD - 203,000 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an offer, including but not limited to, the role, function and associated responsibilities, a candidate’s work experience, location, education/training, and key skills. Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement. Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company’s performance. This role is a U.S.-based role. If the successful candidate resides in a U.S. territory, the appropriate pay structure and benefits will apply. RTX anticipates the application window closing approximately 40 days from the date the notice was posted. However, factors such as candidate flow and business necessity may require RTX to shorten or extend the application window.
RTX is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any other applicable state or federal protected class. RTX provides affirmative action in employment for qualified Individuals with a Disability and Protected Veterans in compliance with Section 503 of the Rehabilitation Act and the Vietnam Era Veterans’ Readjustment Assistance Act.
Privacy Policy and Terms:
Click on this link to read the Policy and Terms
#J-18808-Ljbffr
2025-10-16
Country:
United States of America
Location:
MA312: Woburn MA 235 Presidential 235 Presidential Way Spencer Building 26, Woburn, MA, 01801 USA
Position Role Type:
Onsite
U.S. Citizen, U.S. Person, or Immigration Status Requirements:
Active and transferable U.S. government issued security clearance is required prior to start date. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance
Security Clearance:
Secret - Current
At Raytheon, the foundation of everything we do is rooted in our values and a higher calling – to help our nation and allies defend freedoms and deter aggression. We bring the strength of more than 100 years of experience and renowned engineering expertise to meet the needs of today’s mission and stay ahead of tomorrow’s threat. Our team solves tough, meaningful problems that create a safer, more secure world.
Our Cybersecurity team is seeking a
Special Access Programs (SAP) Information System Security Manager (ISSM)
to support our classified computing environments
100% onsite
at our facility in
Woburn, Massachusetts . The Cybersecurity SAP Information Systems Security Manager is responsible for compliance oversight, assessment, and operations of systems under their purview. They may be assigned to a single large-scale program or oversee multiple programs.
The Program ISSM has cognizance over all SAPs at the Woburn site per Commercial and Government Entity (CAGE) code as stipulated by various US Government requirements including (but not limited to): National Industrial Security Operating Manual (NISPOM) and related documentation such as:
Risk Management Framework (RMF),
Joint SAP Implementation Guide (JSIG)
Intelligence Community Directive 503 (ICD 503)
Baseline Technical Security Configuration Standards
Customer/contract specific Cybersecurity regulations.
What You Will Do
Complete Special Access Programs, and Raytheon GSS required training within 6 months of appointment (annual requirements thereafter).
Accountability for all systems under site CAGE and SBU: metrics, Raytheon business process (RCAST), Continuous Monitoring (ConMon) as described by Sr. ISSM
Maintaining a working knowledge of all SAP functions, security policies, technical security safeguards, and operational security measures.
Interactions with Special Access Programs SCA/ISSP to track items including, but not limited to, upcoming authorizations (ATO), new technologies solutions (i.e., new SIEM, OS, etc.), policy interpretations (in conjunction with Sr. ISSM), and onsite A&A.
Developing, maintaining, and updating, in coordination with all system stakeholders (CS Manager, ISO, DT, etc.), applicable site POAM(s) to identify system weaknesses, mitigating actions, resources, and timelines for corrective actions.
Coordinating SAP Inspection preparation activities for assigned sites in conjunction with site CPSO/Program Security Manager.
Important note:
Within six months of hire date, you must obtain and maintain a Security professional certification commensurate with IAM Level III certification commensurate with your role as a Site ISSM as required by DoDD 8140 (8570) if you do not already have this certification.
Qualifications You Must Have
Typically require a Bachelor’s degree with eight years of relevant experience or an advanced degree with five years of relevant experience as described below.
Experience supporting cybersecurity compliance as stipulated by DAAPM, JSIG, and/or NISPOM regulations
Past direct leadership or project/program management experience
IAM Level I certification (Security+ or other)
Relevant Experience Considered:
Information Technology, Cybersecurity, Physical security/security, policework/criminal justice, investigations, or Border Patrol
Compliance-based auditing using RMF and/or non-defense regulations such as FAA, PCI, ISO 9001, or HIPAA
Experience with computer technologies (databases, OS, networks, software, hardware troubleshooting, electronics)
Physical security/security, policework/criminal justice, investigations, or Border Patrol
Project or program management, office management, senior administration, or account management
Qualifications We Prefer
Master’s Degree in Computer Science, Information Systems, Information Technology, Cyber Security, Criminal Justice, Business or other relevant degree
Experience with information system security tools for vulnerability analysis and mitigation (e.g., Splunk, Forcepoint, Ivanti, Tenable, ACAS, HBSS)
Experience in oversight and execution of Assessment & Authorization processes (Certification & Accreditation) as defined in JSIG/RMF
Experience in incident response and investigations in collaboration with the Investigations department
Experience in a continuous monitoring/improvement program (self-inspections, security control assessments, training, log management, automation)
Experience providing security expertise for complex, cross-domain, classified networked environments with internal/external Customers
Experience developing Basis of Estimates (BOEs) and contract negotiations with customers
Experience with NISPOM, JAFAN 6/3, DCID 6/3, JSIG/RMF, ICD-503 or equivalent
Experience with engagements with internal and external customers (AOs, DAOs, SCAs, PMs) negotiating controls/requirements with government activities
What We Offer Our values drive our actions, behaviors, and performance with a vision for a safer, more connected world. At RTX we value: Trust, Respect, Accountability, Collaboration, and Innovation.
Relocation Non-Eligible – Relocation assistance not available
Please consider the following role type definition as you apply for this role:
Onsite: Employees who are working in Onsite roles will work primarily onsite. This includes all production and maintenance employees, as they are essential to the development of our products.
We are RTX
#LI-Onsite
As part of our commitment to maintaining a secure hiring process, candidates may be asked to attend select steps of the interview process in-person at one of our office locations, regardless of whether the role is designated as on-site, hybrid or remote.
The salary range for this role is 101,000 USD - 203,000 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an offer, including but not limited to, the role, function and associated responsibilities, a candidate’s work experience, location, education/training, and key skills. Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement. Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company’s performance. This role is a U.S.-based role. If the successful candidate resides in a U.S. territory, the appropriate pay structure and benefits will apply. RTX anticipates the application window closing approximately 40 days from the date the notice was posted. However, factors such as candidate flow and business necessity may require RTX to shorten or extend the application window.
RTX is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any other applicable state or federal protected class. RTX provides affirmative action in employment for qualified Individuals with a Disability and Protected Veterans in compliance with Section 503 of the Rehabilitation Act and the Vietnam Era Veterans’ Readjustment Assistance Act.
Privacy Policy and Terms:
Click on this link to read the Policy and Terms
#J-18808-Ljbffr