Principal Com Sys Sec Tchnl

As a member of the Raytheon Missile System’s (RMS) Information Technology (IT) Governance & Information Directorate and reporting to the RMS IT Security Manager, provide value-added IT security expertise, guidance, support, and services to enable business growth, productivity, and continuity. Enable the protection of IT assets, infrastructure, and information from attack, intrusion, disruption, or compromise. Partner with internal and external organizations to develop and deploy innovative IT security solutions to satisfy business and mission assurance goals. Ensure IT security compliance with Company policies, external regulatory requirements, technical standards, and best business practices. Manage information security risk by conducting system and network information security assessments to identify operating system and application security vulnerabilities. Provide guidance and direction to IT staff to implement corrective actions to mitigate risk. Identify technical, operational, and management controls to counter threats. Provide technical support to closed area Program ISSOs/ISSM for IT system security configuration and controls in accordance with NISPOM, JAFAN, or other applicable requirements. Provide support in the areas of operational system/network situational awareness to include monitoring and log review, incident response and tracking, and technical support for forensics investigations. Communicate and raise IT security awareness across all RMS IT supported environments. Responsibilities § Consult with IT staff to evaluate, select, install, and configure hardware and software systems that provide appropriate security functionality § Conduct system security vulnerability assessments and compliance reviews with respect to information continuity policies, procedures, and guidelines § Provide guidance to IT staff for remediation and compliance § Assist IT staff in responding to internal and external auditing department findings pertaining to information system security § Proactively protect the confidentiality, integrity, and availability of Company information and systems § Participate in investigations of suspected information security breaches and policy violations - Respond in a timely manner to the loss or misuse of IT assets - Communicate unresolved security exposures, misuse, or noncompliance situations to Corporate IT Security, IT management, or Security Department in accordance with established protocols · Provide technical expertise and guidance on the methods and approaches to information assurance as well as the administration of security tools that control and monitor information security · Develop RMS IT Security policies/directives, procedures, instructions, and processes in support of information security · Develop and implement programs, seminars, workshops, and bulletins to further end-user information security education and awareness § Maintain technical reference library; develop technical information materials and workshops on these new areas for IT, program and security staff as appropriate § Lead and manage projects or provide oversight of larger implementation efforts. Participate in or lead gate reviews for these projects Required Skills Technical · Technical proficiency in security related hardware and software · Ability to relate business requirements and risks to technology implementation for security-related issues · Knowledge of risk assessment procedures, role-based authorization methodologies, authentication technologies, and security attack pathologies · Experience using Nessus, ISS Internet Scanner, Harris STAT, eEye Retina, or other vulnerability assessment/scanner tools · Experience with QRadar, ArcSight or other Security Information Management (SIM) tools · Experience with host based intrusion detection system (HIDS) tools · Systems administration and operating system hardening experience in multiplatform environments to include Windows, UNIX, LINUX, SGI, etc. · Security patching, configuration management and configuration control methodologies · Experience with information security monitoring, incident response, forensic technologies and tools, and investigations · Technical skills and hands-on experience in some or all of the following: IP routing, wireless LAN security, voice over IP security, encryption, PKI, firewalls, Intrusion Detection Systems (IDS), VPN technology, thin client technology, and Policy-based authentication/Single Sign On for Web-based applications Non-Technical · Works under consultative direction from the IT Security Manager toward the long-range g To Apply for this position, please CLICK HERE ©2008 Raytheon Company. All rights reserved. Raytheon is an equal opportunity and affirmative action employer and welcomes a wide diversity of applicants. U.S. citizenship and security clearance may be required.