Principal Specialist Cyber Security Auditor- 100% Remote !!

Date Posted:

2023-04-20

Country:

United States of America

Location:

RMA99: RTN Remote, Massachusetts

Position Role Type:

Remote

About Us:

At Raytheon Missiles & Defense, by combining our vast resources and investments, we can dedicate ourselves to solving mission-level vs. product-level customer challenges – together we can anticipate more, move faster, and make a bigger impact on the big picture.

Job Summary:

The Principal Specialist Cyber Security & Risk Management Auditor will be part of a team of auditors within the RMD Digital Technology Governance, Risk and Compliance organization, which acts as an entity that evaluates the effectiveness and adequacy of the company’s security and operational controls to ensure compliance with all pertinent regulatory requirements. You will provide support and service across all mission areas and act as an integral part of executing on both functional and business strategy that ultimately enables us to fully comply with complex and evolving customer (DoD and USG) cybersecurity compliance requirements.

Responsibilities to Anticipate:

• Audit and assess program Security Accreditation Plans (SAPs) against current and future DoD, DFARS and CMMC regulatory requirements to ensure RMD personnel are executing the security plan as designed. Draft audit assessments and reports to record results and create formal audit report.
• Member of a team of professional Auditors that align with long-term functional and business cyber compliance strategy and goals to ensure RMD is fully compliant with RTX, RMD DT policy, DoD & US cyber regulations and global contractual cybersecurity requirements for the $16B business unit.
• Prepare all RMD mission areas for 3rd party, DCMA, and Cybersecurity Maturity Model Certification (CMMC) assessments (impact of noncompliance in this arena will result in negative business outcomes (CARs, fines, and/or loss of contract awards, reputation, and market share).
• Participate in domestic and international audit and compliance efforts, including infusion of cybersecurity compliance requirements for RMD landed companies and joint ventures in the Middle East (Raytheon Emirates and Raytheon Saudi Arabia), Europe (Poland and Germany) and Asia (Singapore and Taiwan) for all current and future RMD contracts and work requirements supporting U.S. national and coalition warfighters. 
• Provides processes/tools to prevent, detect, and remediate security issues. Reviews policies and guidelines for electronic and physical environment protection
• Champions security awareness through control audits, setting risk guidelines; assesses security of tech processes, projects, and 3rd party environments.

• Actively identify weaknesses or vulnerabilities through audit engagements and makes recommendations for remediating/addressing them in a timely manner.
• Assess and evaluate security plans and capabilities to ensure conformance with internal policy, external regulatory, contractual requirements.
• Ensure compliance with security regulations. Manages compliance documentation and tracks remediation.

Qualifications You Must Have:   

• Typically, a bachelor’s degree in information technology or a STEM degree, Engineering, Math, and 5 years of directly related experience is required or an Advanced degree in STEM, Technology, Engineering, Security, Math, and 3 years of related experience or an associate degree in STEM, IT, Math, and 7 years of directly experience.    

• Experience with NIST SP800-171, NIST SP 800-171A and NIST SP800-53 control implementation and assessment.
• Must have a Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or other relevant audit and cyber certs, such as GSLC or equivalent.

• Experience deploying audit engagements, performing, and overseeing security assessments and/or compliance testing and data analytics.
• Experience with audit and security control and strategies 

• Experience in planning, administering, and summarizing audit engagements, including the establishment of audit plans, timelines, progress reports and remedial action plans.

• Experience with assessment of information system compliance against internal standards and policies, accreditation plans, including all pertinent external regulatory requirements.

• The ability to obtain a transferable U.S. government issued security clearance is required prior to start date. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance.

Qualifications We Value: 

• Current secret clearance
• Excellent oral and written communication skills -- experience drafting detailed audit results and reports with a level of quality and completeness commensurate with senior leadership review and consumption.

What We Offer:

Whether you’re just starting out on your career journey or are an experienced professional, we offer a robust total rewards package that goes above and beyond with compensation; healthcare, wellness, retirement, and work/life benefits; career development and recognition programs. Some of the superior benefits we offer include parental (including paternal) leave, flexible work schedules, achievement awards, educational assistance, and child/adult backup care.

Employee Referral Award Eligibility: Only employees currently within RMD and RI&S have the potential to receive a Referral Award for submitting a referral to RMD and RI&S roles.  ALL eligibility requirements must be met (see guidelines) to receive the Referral Awarding.

The salary range for this role is 75,000 USD - 161,000 USD; however, Raytheon Technologies considers several factors when extending an offer, including but not limited to, the role and associated responsibilities, a candidate’s work experience, location, education/training, and key skills. Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement. Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company’s performance.

Raytheon Technologies is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.

Privacy Policy and Terms:

Click on this link to read the Policy and Terms