Chief Information Security Officer

Job Posting End Date: Until Filled 

Shift:                               1st 

Security Clearance:      No Clearance

This position is 100% onsite and requires daily presence in office. 

SUMMARY

As a member of the Information Technology (IT) leadership team, develops and implements a cybersecurity program to protect enterprise communications, systems and information assets. Responsible for the enterprise IT cybersecurity program, to include compliance posture, policy administration, architectural standards and training. Manages a team of cybersecurity analysts/engineers and compliance professionals which oversees vulnerability and security assessments, policy compliance, and cybersecurity audits to ensure internal and external regulatory compliance and minimize risk. Independently determines and develops approach to meet objectives. Works with departmental users to define security requirements in support of their business needs.  Collaborates with other General Dynamics Business Units and the broader Cybersecurity community to address concerns and policy. Works closely with the Chief Technology Officer and the Infrastructure team. Reports to the Chief Information Officer. 

ESSENTIAL FUNCTIONS AND DUTIES

• Develops and executes a comprehensive, risk-based cybersecurity strategy aligned with business objectives, compliance obligations and the unique demands of a manufacturing organization engaged in government contracts.
• Provides mentorship and guidance to team members, as well as stakeholders inside and outside of IT.
• Leads cyber incident response activities, including planning, real-time threat detection, and coordinated response to cybersecurity breaches.
• Serves as the primary point of contact for all cybersecurity matters, including audits, customer-driven questionnaires, and contract-related inquiries.
• Leads investigations to address all cybersecurity violations and insider-threat risks.
• Coordinates mitigation activities to address audit findings and associated remediation efforts.
• Maintains a cybersecurity awareness program to enable a security-first culture, focused on the reduction of contemporary risk associated with leading-edge technologies (AI, OT, Cloud, etc.).
• Stays current on evolving threats, attack surfaces, regulatory changes, and customer-driven cybersecurity initiatives (FedRAMP, NISPOM, CMMC, etc.).
• Provides cyber-risk management services to the business and participates in integrated risk assessments.
• Responsible for the installation, maintenance and availability of IT cybersecurity related devices, configurations, hardware and software.
• Continuously evaluates and manages the cyber and technology risk posture of the organization.
• Develops a strategic vision, including evaluation and justification of current and future cybersecurity investments.
• Oversees cybersecurity risk evaluation for all purchased or deployed applications and IT service providers.
• Assists staff with problem resolution requiring advanced skills. Identifies and resolves advanced cybersecurity concerns. 
• Actively participates in implementing and monitoring continuous improvement initiatives to improve safety, improve quality, reduce cycle time, and reduce costs.
• Additional responsibilities and duties as assigned.

SKILLS AND QUALIFICATIONS

• A Bachelor’s degree in Information Technology or Engineering is highly preferred. Equivalent experience/education will be considered.
• A minimum of 12 years of relevant professional experience is required.
• CISSP or CISM certification or equivalent experience is required.
• Strong understanding of network architecture, security protocols, firewalls, intrusion detection/prevention systems, VPNs and secure access solutions is required.
• Experience securing cloud environment, including knowledge of FedRAMP, Cloud Access Security Brokers (CASB), and hybrid cloud governance is required.
• Extensive understanding of Security policies and standards, technical security safeguards and operational security measures is required.
• Familiarity with NIST 800-171 and latest CMMC requirements is required.
• Strong leadership, communication, and interpersonal skills with a proven ability to present complex technical issues clearly to non-technical stakeholders.
• Working experience supporting an enterprise engaged in government contracting is highly preferred.
• Working experience supporting manufacturing facilities, Operational Technology (OT) and Industrial Control System (ICS) is highly preferred.

PHYSICAL DEMAND REQUIREMENTS

Work primarily conducted in an office setting with good lighting.  Specific vision abilities required by this job include close vision, distance vision, peripheral vision, depth perception, and the ability to focus.  Regularly required to sit, use hands and fingers, operate computer keyboard and controls, and communicate verbally and in writing. Must be physically able to commute to buildings throughout the shipyard. Occasional exposure to dust, fumes and moderate levels of noise.

PAY SCALE 

$189,400 - $262,500 

This pay range is a reasonable estimate of the salary range for this role. It takes into account the wide range of factors considered in making compensation decisions; including but not limited to skill sets, experience, training, and education. General Dynamics NASSCO also provides a variety of benefits including medical & dental insurance coverage, 401(k) retirement savings plan, flexible spending accounts/HSAs, life and disability insurance, company paid holidays and paid time off (PTO), wellness coaching, and an onsite health services. 

General Dynamics NASSCO is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other basis protected by local, state, or federal law.

To learn more about applicant rights under federal law, click here:

Know Your Rights: Workplace Discrimination is Illegal

If you have a disability that impacts your ability to complete the job application process and would like to request an accommodation, please contact our Human Resources Department.

Call (619) 544-8511 or email nasscohr@nassco.com. This contact information is for accommodation requests only, not to inquire about the status of applications.

NASSCO is an Equal Opportunity / Individuals with Disabilities / Protected Veterans Employer