Skip to main content
Go

Mgr II, Information, Governance and Risk Management- multi locations!

Apply Now
Businesses Raytheon Missiles & Defense Clearance type Confidential Relocation eligible Yes Job ID 172357BR Date posted 12/03/2020 City Huntsville State AL Country United States
The RMD Digital Technology (DT) organization embraces the opportunity to deliver business value by connecting business insight with technical expertise and innovation. We’re continuously pushing the envelope to create leading-edge secure technological solutions for complex systems and program challenges. In joining our team, you will have the opportunity to be an integral part of a team responsible for managing business risk and cyber compliance through the implementation, measurement and assessment of effective IT controls.

As a Manager ll Information Governance and Risk, you will manage a team of auditors and security control assessors within the RMD Digital Technology Governance, Risk and Compliance organization, which acts as an independent assessment entity that evaluates the effectiveness and adequacy of the company’s security and operational controls to ensure compliance with all pertinent regulatory requirements. You will provide oversight to dedicated Audit and Security Control Assessor (SCA) teams that provide support and service across all product lines and strategic initiatives, and are an integral part of executing on both functional and business strategy that ultimately enables us to fully comply with complex and evolving customer (DoD and USG) cybersecurity compliance requirements.

This role is based in the Andover, MA and/or Tucson AZ geographical areas. Capped relocation will be available to the selected applicant if they are eligible per company policy.


Responsibilities Include:
  • Manages a team that conducts complex internal audit engagements and assessments of internal security accreditation plans (SAPs) aimed at achieving 100% compliance with all internal and external policies and regulations as well as and all current cyber regulatory and DoD requirements, including DFARS and CMMC
  • Manages overall internal DT preparation external DoD (DCSA, DCMA) and/or internal company audits, and improve overall program and environmental security posture
  • Responsible for coordination of detailed and timely comprehensive assessments of the management, operational and technical security controls employed within or inherited by an information system and its associated Security Accreditation Package (SAP).
  • Manages the development and delivery of relevant or required training and awareness to program teams and leads, in advance of customer or 3rd party audits.
  • Coordinates and conducts assessment and audit interviews with pertinent management, lab and program personnel, and other stakeholders throughout the audit process.
  • Develops and documents audit findings, root cause identification, and develops and implements remedial action plans that align with all internal and external cyber-regulatory requirements and specifications.
  • Drafts and issues clear, concise, and detailed audit reports suitable for leadership consumption
  • Assigns, manages and coordinates daily tasking, and ensure proper execution
  • Manages all aspects of staff augmentation (i.e., interview, selection and onboarding processes)
  • Assists with the assessment and/or audit of existing security accreditation plans
  • Innovates for efficiency by developing improved internal processes and workflows
  • Provides technical, team, and collaborative guidance where necessary
  • Acts as an open, collaborative and consistent resource for the team and informs leadership of progress and/or issues

Minimum Required Skills:

  • Bachelor’s degree in Information Technology or a STEM degree and 8 years of directly related Digital Technology/IT Security experience or equivalent, to include leadership and management experience of diverse teams in a fast paced environment, or a directly related IT/STEM Master’s degree with 6 years of directly related experience (in lieu of degree additional 8 years of experience is required).
  • Experience with NIST SP800-171, NIST SP 800-171A and NIST SP800-53 control implementation and assessment.
  • Must have a Certified Information Systems Auditor (CISA) and/or Certified Information Systems Security Professional (CISSP) certification(s)
  • Experience designing, planning and deploying audit engagements, performing and overseeing security assessments and/or compliance testing and data analytics, preferably in a medium to large organization.
  • Experience with audit and security control concepts and strategies in a highly complex, regulated environment.
  • Experience and ability in planning, administering, and summarizing audit engagements, including the establishment of audit plans, timelines, progress reports and remedial action
  • Experience drafting and issuing formal detailed audit reports with a level of quality and completeness commensurate with senior leadership review and consumption.
  • Experience with assessment of information system compliance against internal standards and policies, accreditation plans, including all pertinent external regulatory requirements.
  • US Citizen Status is required as this this position will need a US Security Clearance within 1 year of start date

Highly Desired Skills:

  • Proven, effective oral and written communication skills
  • Highly effective interpersonal and communication (verbal and written) skills that enable clear, concise messaging of ideas, recommendations and results to leadership and stakeholders.
  • Simultaneous management and coordination of projects and teams in a fast paced, deadline-driven environment.
  • Ability to apply critical thinking and navigate relationships to effectively facilitate teams toward a common goal while enabling transparency, understanding and cohesion throughout the audit and review process.
  • Familiarity with Cybersecurity Maturity Model Certification (CMMC)


This position requires either a U.S. Person or a Non-U.S. Person who is eligible to obtain any required Export Authorization.172357
Raytheon Technologies is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.
Apply Now

Your Saved Jobs

You have not saved any jobs.

Recently Viewed Jobs

You have no recently viewed jobs.

Sign Up for Job Alerts

Get the latest career opportunities as soon as they become available.

Interested InSearch for a category and select one from the list of suggestions. Search for a location and select one from the list of suggestions. Finally, click “Add” to create your job alert.

  • Computer Science, Huntsville, Alabama, United StatesRemove
  • Computer Science, Tucson, Arizona, United StatesRemove
  • Computer Science, North Andover, Massachusetts, United StatesRemove
  • Computer Science, Boston, Massachusetts, United StatesRemove
  • Computer Science, Tewksbury, Massachusetts, United StatesRemove
  • Computer Science, Woburn, Massachusetts, United StatesRemove
  • Computer Science, Pelham, New Hampshire, United StatesRemove
  • Computer Science, Portsmouth, Rhode Island, United StatesRemove
  • Computer Science, McKinney, Texas, United StatesRemove
  • Computer Science, Richardson, Texas, United StatesRemove
  • Information Technology, Huntsville, Alabama, United StatesRemove
  • Information Technology, Tucson, Arizona, United StatesRemove
  • Information Technology, North Andover, Massachusetts, United StatesRemove
  • Information Technology, Boston, Massachusetts, United StatesRemove
  • Information Technology, Tewksbury, Massachusetts, United StatesRemove
  • Information Technology, Woburn, Massachusetts, United StatesRemove
  • Information Technology, Pelham, New Hampshire, United StatesRemove
  • Information Technology, Portsmouth, Rhode Island, United StatesRemove
  • Information Technology, McKinney, Texas, United StatesRemove
  • Information Technology, Richardson, Texas, United StatesRemove
  • Configuration Management, Huntsville, Alabama, United StatesRemove
  • Configuration Management, Tucson, Arizona, United StatesRemove
  • Configuration Management, North Andover, Massachusetts, United StatesRemove
  • Configuration Management, Boston, Massachusetts, United StatesRemove
  • Configuration Management, Tewksbury, Massachusetts, United StatesRemove
  • Configuration Management, Woburn, Massachusetts, United StatesRemove
  • Configuration Management, Pelham, New Hampshire, United StatesRemove
  • Configuration Management, Portsmouth, Rhode Island, United StatesRemove
  • Configuration Management, McKinney, Texas, United StatesRemove
  • Configuration Management, Richardson, Texas, United StatesRemove
  • Cyber, Huntsville, Alabama, United StatesRemove
  • Cyber, Tucson, Arizona, United StatesRemove
  • Cyber, North Andover, Massachusetts, United StatesRemove
  • Cyber, Boston, Massachusetts, United StatesRemove
  • Cyber, Tewksbury, Massachusetts, United StatesRemove
  • Cyber, Woburn, Massachusetts, United StatesRemove
  • Cyber, Pelham, New Hampshire, United StatesRemove
  • Cyber, Portsmouth, Rhode Island, United StatesRemove
  • Cyber, McKinney, Texas, United StatesRemove
  • Cyber, Richardson, Texas, United StatesRemove
  • Information and Knowledge Systems, Huntsville, Alabama, United StatesRemove
  • Information and Knowledge Systems, Tucson, Arizona, United StatesRemove
  • Information and Knowledge Systems, North Andover, Massachusetts, United StatesRemove
  • Information and Knowledge Systems, Boston, Massachusetts, United StatesRemove
  • Information and Knowledge Systems, Tewksbury, Massachusetts, United StatesRemove
  • Information and Knowledge Systems, Woburn, Massachusetts, United StatesRemove
  • Information and Knowledge Systems, Pelham, New Hampshire, United StatesRemove
  • Information and Knowledge Systems, Portsmouth, Rhode Island, United StatesRemove
  • Information and Knowledge Systems, McKinney, Texas, United StatesRemove
  • Information and Knowledge Systems, Richardson, Texas, United StatesRemove
  • Integration and Test Engineering, Huntsville, Alabama, United StatesRemove
  • Integration and Test Engineering, Tucson, Arizona, United StatesRemove
  • Integration and Test Engineering, North Andover, Massachusetts, United StatesRemove
  • Integration and Test Engineering, Boston, Massachusetts, United StatesRemove
  • Integration and Test Engineering, Tewksbury, Massachusetts, United StatesRemove
  • Integration and Test Engineering, Woburn, Massachusetts, United StatesRemove
  • Integration and Test Engineering, Pelham, New Hampshire, United StatesRemove
  • Integration and Test Engineering, Portsmouth, Rhode Island, United StatesRemove
  • Integration and Test Engineering, McKinney, Texas, United StatesRemove
  • Integration and Test Engineering, Richardson, Texas, United StatesRemove
  • Security, Huntsville, Alabama, United StatesRemove
  • Security, Tucson, Arizona, United StatesRemove
  • Security, North Andover, Massachusetts, United StatesRemove
  • Security, Boston, Massachusetts, United StatesRemove
  • Security, Tewksbury, Massachusetts, United StatesRemove
  • Security, Woburn, Massachusetts, United StatesRemove
  • Security, Pelham, New Hampshire, United StatesRemove
  • Security, Portsmouth, Rhode Island, United StatesRemove
  • Security, McKinney, Texas, United StatesRemove
  • Security, Richardson, Texas, United StatesRemove
  • Engineering, Huntsville, Alabama, United StatesRemove
  • Engineering, Tucson, Arizona, United StatesRemove
  • Engineering, North Andover, Massachusetts, United StatesRemove
  • Engineering, Boston, Massachusetts, United StatesRemove
  • Engineering, Tewksbury, Massachusetts, United StatesRemove
  • Engineering, Woburn, Massachusetts, United StatesRemove
  • Engineering, Pelham, New Hampshire, United StatesRemove
  • Engineering, Portsmouth, Rhode Island, United StatesRemove
  • Engineering, McKinney, Texas, United StatesRemove
  • Engineering, Richardson, Texas, United StatesRemove
  • All, Huntsville, Alabama, United StatesRemove
  • All, Tucson, Arizona, United StatesRemove
  • All, North Andover, Massachusetts, United StatesRemove
  • All, Boston, Massachusetts, United StatesRemove
  • All, Tewksbury, Massachusetts, United StatesRemove
  • All, Woburn, Massachusetts, United StatesRemove
  • All, Pelham, New Hampshire, United StatesRemove
  • All, Portsmouth, Rhode Island, United StatesRemove
  • All, McKinney, Texas, United StatesRemove
  • All, Richardson, Texas, United StatesRemove
  • SAS Information Security Analyst, Huntsville, Alabama, United StatesRemove
  • SAS Information Security Analyst, Tucson, Arizona, United StatesRemove
  • SAS Information Security Analyst, North Andover, Massachusetts, United StatesRemove
  • SAS Information Security Analyst, Boston, Massachusetts, United StatesRemove
  • SAS Information Security Analyst, Tewksbury, Massachusetts, United StatesRemove
  • SAS Information Security Analyst, Woburn, Massachusetts, United StatesRemove
  • SAS Information Security Analyst, Pelham, New Hampshire, United StatesRemove
  • SAS Information Security Analyst, Portsmouth, Rhode Island, United StatesRemove
  • SAS Information Security Analyst, McKinney, Texas, United StatesRemove
  • SAS Information Security Analyst, Richardson, Texas, United StatesRemove