• Job Description

  Req#: 01666068

  Date Posted:

  2023-12-05

  Country:

  United States of America

  Location:

  MA133: Tewksbury, Ma Bldg 3 Concord 50 Apple Hill Drive Concord - Building 3, Tewksbury, MA, 01876 USA

  Position Role Type:

  Onsite

  At Raytheon, the foundation of everything we do is rooted in our values and a higher calling – to help our nation and allies defend freedoms and deter aggression. We bring the strength of more than 100 years of experience and renowned engineering expertise to meet the needs of today’s mission and stay ahead of tomorrow’s threat. Our team solves tough, meaningful problems that create a safer, more secure world.

  Job Summary:

  Our cybersecurity team is seeking a Continuous Monitoring Assessor (ConMon Assessor or CMA) that will support one of the following facilities: Tewksbury, Andover, Woburn, OR Marlborough with intermittent travel to other sites.

  The CMA, under the supervision of the ConMon Lead, is responsible for executing the information systems continuous monitoring program and actively supports self-inspections to validate the compliance with regulatory and internal requirements. Serving as an independent assessor, the CMA will observe and help improve the cybersecurity hygiene and compliance by reviewing security controls as recommended by our customers and reporting anomalies. CMA will periodically brief leadership on the status of the ConMon program and significant/trending discoveries. Although you will not have direct reports, you may mentor others and provide support and advice pertaining to day-to-day occurrences or issues, while further protecting our warfighter.

  Responsibilities to Anticipate:

  • Reviewing system security plan packages prepared by ISSOs and ISSMs
  • Perform continuous monitoring of security controls, changes & environments to ensure that they are implemented correctly, operating as intended, and producing the desired outcome with respect to meeting the cybersecurity requirements for assigned IT systems.
  • Communicate the security posture of systems through designated reporting mechanisms to include preparing and briefing leadership or government customers.
  • Conducts and supports vulnerability scans, penetration testing & assessments while recognizing vulnerabilities in information systems and networks through various tools such as Nessus/Tenable, SCAP, Splunk, Scripting, etc.
  • Partnering with ISSM/ISSO to increase Information Systems overall compliance.
  • Conduct self-inspections.
  • Validate implementation of new Cybersecurity processes, procedures, and tools
  • Intermittent travel to other Raytheon locations (up to 50%)

  Basic Qualifications:

  • Typically requires a bachelor’s degree with five (5) years of experience as described in the bullet below or an advanced degree with three (3) years of relevant experience described in the bullet below
  • Relevant experience in any combination:
    • Cybersecurity, systems security or system hardening
    • Security Control Accessor (SCA) with the government or military
    • Information Technology
    • Experience with network security and/or systems security, which includes any of the following: architecture, topology, protocols, components, and/or principles
    • Experience with configuring and/or auditing operating systems
    • Compliance-based auditing using the Risk Management Framework (RMF), DCSA Assessment and Authorization Process Manual (DAAPM), Joint SAP Implementation Guide (JSIG), National Industrial Security Program Operating Manual (NISPOM), and/or non-defense regulations such as FAA, Payment Card Industry (PCI), ISO 9001 Quality Management standards, or HIPPA
    • Experience working with and/or supporting computer technologies (such as: databases, operating systems, computer network hardware, protocols, security methodologies, software programs, hardware troubleshooting or electronics)
  • IAM Level I certification (Security+ or other)
  • Active and transferable SECRET U.S. government issued security clearance is required prior to start date. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance.

  Preferred Qualifications:

  • Experience working in DoD classified operating and/or laboratory environments.
  • Experience with various information system security tools that address vulnerability analysis and mitigation. These may include Splunk, Forcepoint, Ivanti, Tenable, ACAS, HBSS, etc.
  • Familiarity with implementation of Government directives and policies derived from NIST, CNSSI, DoD, or other Government Regulatory compliance standards within a professional industry
  • Experience in the execution of the Assessment & Authorization processes, as defined within the Risk Managed Framework (RMF)
  • Experience providing technical security consultation for complex, cross-domain, heterogeneous classified networked environments in collaboration with internal/external Customers, Information Technology (IT)
  • Familiarity with large multi-facility networks including diverse and complex components, including Windows and Linux environments
  • Experience interpreting, implementing, and assessing DISA STIGs.
  • Experience with continuous monitoring and Plans of Actions and Milestones (POA&Ms)
  • Strong verbal and written skills required providing management status reports and document system changes.

  What We Offer:

  Whether you’re just starting out on your career journey or are an experienced professional, we offer a robust total rewards package that goes above and beyond with compensation; healthcare, wellness, retirement and work/life benefits; career development and recognition programs. Some of the superior benefits we offer include parental (including paternal) leave, flexible work schedules, achievement awards, educational assistance and child/adult backup care.

  Check us out on YouTube!

  https://www.youtube.com/raytheontechnologies

  #LI-Onsite

  RTX is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.

  Privacy Policy and Terms:

  Click on this link to read the Policy and Terms

• About the company

  Raytheon Technologies is an aerospace and defense company that provides advanced systems and services for commercial, military and government customers worldwide. It comprises four industry-leading businesses – Collins Aerospace, Pratt & Whitney, Raytheon Intelligence & Space and Raytheon Missiles & Defense.

Notice