Who We Are

Williams International is a privately-owned company that develops and manufactures jet engines for both military and commercial aircraft applications. We are a company of creators who deliver pioneering ideas and technologies that lead the aerospace industry. Our culture fosters creativity, collaboration, and continuous learning to position our team members to inspire each other and provide quality products and supporting services that exceed the expectations of our customers.

The Opportunity

Williams International has an exciting opportunity for a Information Security Compliance Analyst (ISCA). The Information Security Compliance Analyst (ISCA) are conducting internal cyber-risk management reviews and assessing new and existing technologies/processes to ensure compliance with DFARS 254.204-7012, NIST 800-171, and CMMC 2.0, and managing all aspects of third-party assessments (i.e., preparing for, facilitating, and completing resultant action items) for Williams International’s commercial business operations. Additional responsibilities include identifying and recommending mitigation strategies for cybersecurity compliance risks within IT and across the organization; often resulting in the creation and maintenance of supporting documentation (e.g., SSP, POA&M, P&Ps, etc.), managing compliance efforts to meet both internal and external deadlines, and helping prioritize the most critical compliance gaps to be addressed first. This person’s time will be split between the above and a separate role serving as the Information Systems Security Officer (ISSO) for several DoD programs, with all duties and responsibilities therein as defined in the DAAPM and/or JSIG.

Job Duties

• Analyze management and technical controls to ensure specific security and compliance requirements are met through the verification of documented processes, procedures, and standards in order to validate maintenance of secure configurations.
• Track enterprise compliance across NIST and CMMC frameworks and maintain up-to-date records of requirements, outstanding items, and/or corresponding mitigating controls.
• Manage third-party risk assessments and assist in performing internal risk assessments.
• Collaborate on critical IT projects to ensure cybersecurity policy/risk issues are addressed throughout the project life cycle.
• Participate in the IT change management process to ensure cybersecurity/risk compliance.
• Develop key performance metrics to track and ensure compliance with established policies and standards.
• Support development of cybersecurity processes and procedures and creation/maintenance of supporting documentation to ensure controls are managed and maintained.
• Document and report control failures and gaps to stakeholders. Provide remediation guidance and prepare management reports to track remediation activities.
• Train, guide, and act as a resource on cybersecurity assessment functions within IT and throughout the organization
• Participate in the development and administration of the Cybersecurity and Awareness Training program
• Remain current on best practices and technological advancements and act as a technical resource for cybersecurity assessment and regulatory compliance.
• Within the defined boundaries of DoD programs, perform all duties and responsibilities pertaining to an ISSO as defined in the DAAPM and/or JSIG

Requirements

• Must be a U. S. Citizen
• Possession of current Secret security clearance with SAP eligibility or the ability to obtain and maintain such
• Bachelor’s Degree in a related field (i.e., Computer Science, Information Technology, Cybersecurity, etc.) and 2 - 3 years of related experience
• Possession of certification in good standing to satisfy DoD 8570.01-M Level 2 (e.g., Security+, CISSP, CISM, etc.), or the ability to obtain such within six months of hire date
• Must possess a strong working knowledge of computer systems, system software, computer peripherals, and operating systems.
• Experience with/knowledge of CUI, DFARS 254.204-7012, NIST SP 800-171, and CMMC 2.0
• Experience operating in secure environments preferred
• Experience with/working knowledge of security-relevant tools, systems, and applications in support of RMF to include: eMASS, NESSUS, ACAS, DISA STIGs/SCAP preferred
• Experience with the SAP community preferred
• Knowledge of specific DoD standards, RMF, DAAPM processes, and JSIG directives.
• Prior experience managing RMF packages and implementing DoD policies: e.g., DAAPM, CNSSI 1253, ICD-503, JSIG, or NIST SP 800 series preferred
• Prior experience authoring and/or maintaining Body of Evidence (BOE) artifacts in support of A&A of assigned systems in accordance with RMF preferred.
• High level of customer service, communication skills (oral and written), and attention to detail
• Willingness to learn and be adaptable with a “can do” attitude
• Strong interpersonal and communication skills; must be a self-starter with initiative to work independently and interact with personnel and government customer
• Work individually and as part of a team in a diverse, rapidly changing environment
• Ability to work with limited direction and handle multiple projects on short timelines
• Responsible for and accountable for product safety and the quality of work, including, as a minimum, all elements defined in the Company’s Quality Policy
• Position requires the ability to obtain a U. S. Government Security Clearance, if needed. Candidates selected may be subject to a U. S. Government security investigation and must meet eligibility requirements for access to classified information. For more information on Security Clearances, please visit: U. S. Department of State

Salary Range: $80,000 - $120,000

Additional Information

Williams International is a Drug Free Workplace where all new team members and contractors are subject to pre-employment drug testing for the following controlled substances: marijuana, cocaine, PCP, amphetamines, opioids and alcohol as policy dictates.

Williams International is committed to equal employment opportunities for all individuals regardless of race, color, religion, sex, gender identity, sexual orientation, national origin, age, disability, and protected veteran status.

Please view Equal Employment Opportunity Posters provided by OFCCP here.

If you are interested in applying for employment with Williams International and need special assistance or an accommodation to use our website or to apply for a position due to a physical and/or mental disability, please send an e-mail with your request to HR@Williams-int.com. Or, please call 248-624-5200. Determination on requests for reasonable accommodation is made on a case-by-case basis.

Education

• Bachelors or better in SOFT ENG or related field
• Bachelors or better in BUS INFO TECH or related field
• Bachelors or better in COMP SCI or related field

Equal Opportunity Employer/Protected Veterans/Individuals with Disabilities

The contractor will not discharge or in any other manner discriminate against employees or applicants because they have inquired about, discussed, or disclosed their own pay or the pay of another employee or applicant. However, employees who have access to the compensation information of other employees or applicants as a part of their essential job functions cannot disclose the pay of other employees or applicants to individuals who do not otherwise have access to compensation information, unless the disclosure is (a) in response to a formal complaint or charge, (b) in furtherance of an investigation, proceeding, hearing, or action, including an investigation conducted by the employer, or (c) consistent with the contractor’s legal duty to furnish information. 41 CFR 60-1.35(c)