Job Closed
This listing is no longer active.
Sr. Manager, Cybersecurity Compliance Analyst
Location
United States
Posted
96 days ago
Salary
0
No structured requirement data.
Job Description
Sr. Manager, Cybersecurity Compliance Analyst
RTX
This description is a summary of our understanding of the job description. Click on 'Apply' button to find out more. Role Description We're looking for a highly motivated individual with a strong work ethic and the ability to work in a collaborative, fast-paced, changing environment. As the RTX Cybersecurity Compliance Analyst you will play a critical role in providing cybersecurity compliance services that facilitate contract awards and program execution. - Perform cybersecurity impact analysis for proposal and contract/subcontract requirements to include Statements of Work (SOW), Contract/Subcontract Data Requirements Lists (CDRLs/SDRLs), etc. - Provide discrete guidance/direction and textual language for program capture and execution teams that mitigate risk, address residual risk, and/or outline bid/acceptance constraints. - Support the development and delivery of cybersecurity CDRL/SDRL artifacts to enable programs to respond to cybersecurity requirements. - Enable programs to respond to external cybersecurity requests to include, but not limited to, regulatory compliance, cybersecurity posture of the program, etc. - Enable program capture and execution teams to collaborate with external parties (e.g. customers, partners, vendors) by evaluating requirements, assessing solution landscape, and providing direction thereof. - Support programs with prime contractor and supplier/subcontractor cybersecurity challenges. - Travel 10%. Qualifications - Typically requires a University Degree or equivalent experience and a minimum 10 years of experience, or an Advanced Degree and a minimum 7 years experience. - Certified security expert – ISC2 Certified Information Systems Security Professional (CISSP) or equivalent. - 6+ years of cybersecurity experience across the following domains: security and risk management, asset security, security architecture and engineering, communication and network security, identity and access management (IAM), security assessment and testing, security operations and software development security. - 3+ years of experience analyzing U.S. Government cyber regulations, requirements, industry standards and frameworks (e.g. DFARS 252.204-7012, FARS 52.204-21, NIST 800-171, NIST 800-53, RMF, CMMC). - 3+ years of experience as a contributing member of a cross-functional program capture team responding to DoD and Federal business opportunities (e.g. RFPs, RFIs, etc.). - Active and transferable U.S. government issued security clearance is required prior to start date. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance. Requirements - Advanced degree preferred (e.g., MS, MBA). - Familiarity with project management concepts. - Demonstrated ability to lead, manage and be fully accountable in a geographically dispersed virtual and fast paced work environment. - Strong team player, able to meet deadlines and adjust to changing and competing priorities. Benefits - Robust total rewards package with compensation; healthcare, wellness, retirement and work/life benefits; career development and recognition programs. - Parental (including paternal) leave. - Flexible work schedules. - Achievement awards. - Educational assistance. - Child/adult backup care.
Job Requirements
- Typically requires a University Degree or equivalent experience and a minimum 10 years of experience, or an Advanced Degree and a minimum 7 years experience.
- Certified security expert – ISC2 Certified Information Systems Security Professional (CISSP) or equivalent.
- 6+ years of cybersecurity experience across the following domains: security and risk management, asset security, security architecture and engineering, communication and network security, identity and access management (IAM), security assessment and testing, security operations and software development security.
- 3+ years of experience analyzing U.S. Government cyber regulations, requirements, industry standards and frameworks (e.g. DFARS 252.204-7012, FARS 52.204-21, NIST 800-171, NIST 800-53, RMF, CMMC).
- 3+ years of experience as a contributing member of a cross-functional program capture team responding to DoD and Federal business opportunities (e.g. RFPs, RFIs, etc.).
- Active and transferable U.S. government issued security clearance is required prior to start date. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance.
- Advanced degree preferred (e.g., MS, MBA).
- Familiarity with project management concepts.
- Demonstrated ability to lead, manage and be fully accountable in a geographically dispersed virtual and fast paced work environment.
- Strong team player, able to meet deadlines and adjust to changing and competing priorities.
Benefits
- Robust total rewards package with compensation; healthcare, wellness, retirement and work/life benefits; career development and recognition programs.
- Parental (including paternal) leave.
- Flexible work schedules.
- Achievement awards.
- Educational assistance.
- Child/adult backup care.
Related Guides
Related Categories
Related Job Pages
More Security Analyst Jobs
• Help in alerts investigation generated by security controls. • Implement provided recommendations to improve detection capability accuracy. • Participate in the optimization of incident response standards. • Analyze the enterprise information security environment and identify potential gaps. • Help identify, evaluate, and report on information security risks. • Collaborate with vendors and internal departments to optimize performance. • Collaborate with security teams to enhance security processes and documentation. • Participate in the evaluation and assessment of information security vulnerabilities. • Investigate any fraud and other computer issues. • Perform daily operational tasks to protect NM’s assets.
IT Infrastructure, Security Analyst
Quorum Federal Credit UnionQuorum Federal Credit Union is a member-owned financial institution offering a comprehensive range of financial products and services designed to meet the diver
• The IT Infrastructure & Security Analyst is a member of the Information Technology team and is responsible to support and maintain the organization's IT infrastructure environment, ensuring the reliability, performance and security of systems and networks. • The position will hold a hybrid role, providing technical support for our IT Infrastructure alongside our Managed Service Provider (MSP) while also owning several key Information Security activities. • The IT Infrastructure & Security Analyst works closely with both internal teams and the MSP to ensure that servers, network devices, endpoints and related infrastructure and software effectively support Quorum’s business needs. • The IT Infrastructure & Security Analyst operates independently, managing and/or supporting projects and deliverables across infrastructure, Azure Cloud and M365 platforms and tools. • In addition, the IT Infrastructure & Security Analyst provides first-line end-user client services support (help desk) as needed. • Responsibilities include monitoring outsourced security services, producing reports on the organization’s security posture (including patching status and vulnerability scans), and reviewing threat intelligence. • The role is also responsible for developing and delivering regular security education and awareness content, including bimonthly Information Security communications published in Microsoft Teams and SharePoint.
• Drive the structuring and alignment of intelligence outputs to ensure they deliver intelligence driven operational outcomes, support threat-informed security operations, investigations, and remediation decision-making without requiring direct analyst rework. • Direct the development and implementation of operational intelligence strategies to proactively address emerging threats and support enterprise objectives. • Enable consistent production of timely intelligence products focused on relevant and active threats to support enterprise threat management operations. • Drive cross-functional collaboration, facilitating integration of threat intelligence with risk management, incident response, and security operations. • Establish and maintain stakeholder engagement models, including onboarding, stakeholder profiling, intelligence requirement intake, and feedback mechanisms, to ensure intelligence outputs are aligned to evolving enterprise and business needs. • Direct intelligence collection planning and prioritization to ensure effective coverage of priority and emerging threats while minimizing duplicative or ad hoc collection efforts. • Evaluate and recommend enhancements to intelligence tools, processes, and frameworks to optimize operational efficiency and effectiveness. • Perform threat actor and infrastructure analysis, including research and data pivoting, to identify malicious campaigns and emerging threat activity. • Lead the analysis of threats to the enterprise and the production of finished intelligence that integrates tactical and operational insights and provides direction on threat-driven prioritization. • Set clear goals and measure performance against established KPIs, using data-driven insights to inform decisions and program improvements. • Effectively communicate and report CTI program metrics and KPIs to technical leaders, senior leaders, and executives to demonstrate program effectiveness and value.
• Perform SOC operations to include monitoring, reporting and response to malicious activity. • Manage and prioritize multiple clients and projects. • Prepare daily, weekly, and monthly reports detailing task and responsibility status. • Conduct CMMC assessments of cybersecurity control compliance in accordance with Cyber AB Cybersecurity Strategy. • Draft and review CMMC artifacts (e.g., SSP, POA&M, MOU/MOA, topology, network architecture, PPSM, policies and procedures, HW/SW lists) for RMF compliance. • Support ISO requirements and documentation. • Support Cybersecurity Test & Evaluation (CT&E) or Developmental Test & Evaluation (DT&E) activities for system security engineering and program protection activities. • Draft authorizations for artifacts in accordance with customer requirements. • Continue education and learning new and evolving technologies. • Provide training on cybersecurity best practices, protocol, processes and procedures. • Perform other tasks as appropriate and as assigned.
