Pratt & Whitney
Information System Security Officer (ISSO) - Tucson, AZ
Pratt & Whitney, Tucson, Arizona, United States, 85718
Information System Security Officer (ISSO)
Location: Tucson, Arizona (100% onsite)
What You Will Do
You will be primarily responsible for system compliance, auditing, security plan development and delivering information systems security education and awareness.
You will also assist in investigating information system security violations and help prepare reports specifying corrective and preventative actions.
The position routinely collaborates with the facility security team, program personnel, and government representatives.
Security sustainment activities (hardware change management, software change management, account management, media protection, user interface, file transfers, etc.)
Important note:
Within six months of hire date, you must obtain and maintain a Security professional certification commensurate with IAM Level I certification (Security+ or other) if you do not already have this certification.
Qualifications You Must Have
Typically requires a university degree and minimum 2 years of relevant experience, or an advanced degree in a related field.
Relevant experience considered in any combination:
Cybersecurity, systems security or hardening
Information Technology
Compliance-based auditing using the Risk Management Framework (RMF), DCSA Assessment and Authorization Process Manual (DAAPM), Joint SAP Implementation Guide (JSIG), National Industrial Security Program Operating Manual (NISPOM), and/or non-defense regulations such as FAA, Payment Card Industry (PCI), ISO 9001, or HIPAA
Experience working with and/or supporting computer technologies (databases, operating systems, network hardware, software, troubleshooting or electronics)
Physical security, police work, criminal justice, investigations, or Border Patrol
Project or program management, office management, senior administration, or account management
Qualifications We Prefer
Experience working in DoD classified operating and/or laboratory environments
Familiarity with cybersecurity Risk Management Framework (RMF) and compliance as stipulated by NISPOM/DAAPM, JSIG, ICD 503, STIGs and associated NIST publications
Experience with audit reviews such as physical security, network and system event logs, password administration, file access privileges, etc.
Familiarity with the execution and management of cyber incident response; preservation, containment, and eradication
Ability to work independently and as a member of a team
Self‑motivated and possess exceptional written and verbal communication skills, particularly in documenting evaluation results
Customer focused, adaptable and willing to work varying assignments
Completion of National Industrial Security Program cybersecurity training courses available at https://cdse.usalearning.gov/login/index.php
What We Offer Our values drive our actions, behaviors, and performance with a vision for a safer, more connected world. At RTX we value: Trust, Respect, Accountability, Collaboration, and Innovation.
Salary Range: USD 68,900 – 131,100 per year. Eligible for benefits including medical, dental, vision, life insurance, short‑term disability, long‑term disability, 401(k) match, flexible spending accounts, employee assistance program, parental leave, paid time off, holidays, and potential incentive compensation. Relocation assistance not available.
RTX is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any other applicable state or federal protected class. RTX provides affirmative action in employment for qualified individuals with a disability and protected veterans in compliance with Section 503 of the Rehabilitation Act and the Vietnam Era Veterans’ Readjustment Assistance Act.
#J-18808-Ljbffr
What You Will Do
You will be primarily responsible for system compliance, auditing, security plan development and delivering information systems security education and awareness.
You will also assist in investigating information system security violations and help prepare reports specifying corrective and preventative actions.
The position routinely collaborates with the facility security team, program personnel, and government representatives.
Security sustainment activities (hardware change management, software change management, account management, media protection, user interface, file transfers, etc.)
Important note:
Within six months of hire date, you must obtain and maintain a Security professional certification commensurate with IAM Level I certification (Security+ or other) if you do not already have this certification.
Qualifications You Must Have
Typically requires a university degree and minimum 2 years of relevant experience, or an advanced degree in a related field.
Relevant experience considered in any combination:
Cybersecurity, systems security or hardening
Information Technology
Compliance-based auditing using the Risk Management Framework (RMF), DCSA Assessment and Authorization Process Manual (DAAPM), Joint SAP Implementation Guide (JSIG), National Industrial Security Program Operating Manual (NISPOM), and/or non-defense regulations such as FAA, Payment Card Industry (PCI), ISO 9001, or HIPAA
Experience working with and/or supporting computer technologies (databases, operating systems, network hardware, software, troubleshooting or electronics)
Physical security, police work, criminal justice, investigations, or Border Patrol
Project or program management, office management, senior administration, or account management
Qualifications We Prefer
Experience working in DoD classified operating and/or laboratory environments
Familiarity with cybersecurity Risk Management Framework (RMF) and compliance as stipulated by NISPOM/DAAPM, JSIG, ICD 503, STIGs and associated NIST publications
Experience with audit reviews such as physical security, network and system event logs, password administration, file access privileges, etc.
Familiarity with the execution and management of cyber incident response; preservation, containment, and eradication
Ability to work independently and as a member of a team
Self‑motivated and possess exceptional written and verbal communication skills, particularly in documenting evaluation results
Customer focused, adaptable and willing to work varying assignments
Completion of National Industrial Security Program cybersecurity training courses available at https://cdse.usalearning.gov/login/index.php
What We Offer Our values drive our actions, behaviors, and performance with a vision for a safer, more connected world. At RTX we value: Trust, Respect, Accountability, Collaboration, and Innovation.
Salary Range: USD 68,900 – 131,100 per year. Eligible for benefits including medical, dental, vision, life insurance, short‑term disability, long‑term disability, 401(k) match, flexible spending accounts, employee assistance program, parental leave, paid time off, holidays, and potential incentive compensation. Relocation assistance not available.
RTX is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any other applicable state or federal protected class. RTX provides affirmative action in employment for qualified individuals with a disability and protected veterans in compliance with Section 503 of the Rehabilitation Act and the Vietnam Era Veterans’ Readjustment Assistance Act.
#J-18808-Ljbffr