Skip to main content
collage of photos featuring a rocket, a plane, and a submarine

Bring your ideas
to life

Search

Find U.S. Contract Jobs

Information Security Management System Lead (IC)

Englewood, Colorado; United States; Virtual Job ID JR2025453676 Category Cybersecurity Post Date Apr. 30, 2025
Apply Now

Job Description

At Boeing, we innovate and collaborate to make the world a better place. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.

Jeppesen is seeking an Information Security Management System Lead or Principal (IC), this role can be virtual within the US. The ISMS Manager role is a multifaceted role performing a host of leadership and management functions in support of Jeppesen aviation software business. This role will focus on owning the ISMS, policies, standards, procedures, and baselines for Jeppesen. This role will be a deputy supporting role to the Director of Governance, Risk, and Compliance (GRC) at Jeppesen. As the owner of the ISMS, the ISMS Manager will focus on maintaining the policies, standards, and procedures that govern Jeppesen. The ISMS Manager will provide expert guidance on policies, standards, procedures, risk management, risk mitigation, and compliance to junior members of the GRC staff and to various teams and groups, including executives, throughout Jeppesen. As needed by schedule ISMS Manager will support and participate in risk management efforts and compliance efforts. This ISMS Manager will work directly with the Director of GRC in proposing measurable improvements to the Jeppesen business in terms of GRC; similarly, this role will path find efforts for future security frameworks and certifications including scheduling and resource allocation, deficiencies, etc. This role will supplement the management of Jeppesen’s GRC tool, GRC Compliance Specialists and GRC Risk Management Specialists. This role will support defining, quantitating, and developing materials such as Plan of Action & Milestone(s) (POA&M) to mitigate and resolve risks across Jeppesen. The role will also support compliance efforts by assisting in analyzing security practices and controls for the various frameworks, analyze Jeppesen’s current state, analyze the deficiencies between current Jeppesen state and implementation of controls, determine corrective measures to address deficiencies, plan appropriate steps to implement corrections, track the implementation of corrective actions, and provide internal self-audits of both processes and operational implementation of the controls. This role works across the organization and is expected to communicate effectively with leadership, operations, and development in ensuring that Jeppesen establishes and maintains a world-class compliance team.

Position Responsibilities

  • Communicate with groups from C-Level Executives to operations and development
  • Willingness to speak truth on security compliance regardless of audience; the role must be willing to express deficiencies when deficiencies exist
  • Provide ownership and guidance for Jeppesen ISMS
  • Deputy to the Director of GRC
  • Works across the Jeppesen business as an authority on both ISMS and GRC
  • Work in GRC tools such as Vanta to track risk
  • Understand compliance frameworks and how they interrelate in terms of controls
  • Decompose security practices and controls into actionable requirements
  • Define, write, and formally document policies, standards, procedures, guidelines, and baselines
  • Test policies, standards, procedures, guidelines, and baselines for compliance to security frameworks
  • Determine non-compliance and/or deficiencies between control expectations and current implementation including ability to provide guidance to fully meet intention of the security control
  • Analyze schedule and budgets to determine if tasks are achievable
  • Understands risk management including business risk management, operational risk management, and development risk management
  • Problem solver; a desire to see problems as challenges to be resolved
  • Continue to learn and improve skills through both JEPPESEN provided training and self-training

Basic Qualifications (Required Skills/Experience):

  • Minimum of 5 years working in a leadership role in GRC
  • Minimum of 7 years working in GRC and/or risk management
  • Minimum of 7 years working in security practices and controls
  • Ability to supplement all areas of GRC at Jeppesen as schedule(s) dictate
  • Ability to quickly change from one task to another
  • Experience in at least one of the following security frameworks: NIST, ISO 27001, CMMC 2.0, COBIT, Cyber Essentials, etc.
  • Domestic and international travel may be required to support audit and compliance efforts at Jeppesen locations in the US and worldwide.  This is not estimated to be more than 15% of the employee’s time.

Preferred Qualifications:

  • Bachelor’s degree or similar level of experience in a technical field
  • A security or compliance certification such as CISSP, CISA, CISM, CCP, CCA, ISO 27001 Auditor, etc.
  • Ability to effectively discuss security frameworks in detail in how compliance works to shape a business and/or business unit
  • Ability to take non-specific technical controls and data and relate them to technical implementations
  • Experience working in Change Control Boards (CCBs) or other oversight groups
  • Experience auditing businesses, business units, or teams for compliance to a security framework
  • Experience in regulations such as GDPR, HIPAA, FISMA, etc.
  • Experience in technical roles such as security operations, boundary defense, vulnerability management

Drug Free Workplace:

Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies.

Pay & Benefits:

At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent.  Elements of the Total Rewards package include competitive base pay and variable compensation opportunities. 

The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work. 

The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements.

Pay is based upon candidate experience and qualifications, as well as market and business considerations. 

Summary Pay Range:

Level 5: $85,850 - $211,600.00

Level 6: $191,250.00-$258,750.00


Applications for this position will be accepted until May. 09, 2025


Export Control Requirements: This is not an Export Control position.

Relocation

Relocation assistance is not a negotiable benefit for this position.

Visa Sponsorship

Employer will not sponsor applicants for employment visa status.

Shift

This position is for 1st shift


Equal Opportunity Employer:

Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.

Shows the full job description for sighted users
Apply Now

Your Benefits

No matter where you are in life, our benefits help prepare you for the present and the future.

  • Generous company match to your 401(k).
  • Industry-leading tuition assistance program pays your institution directly.
  • Fertility, adoption, and surrogacy benefits.
  • Up to $10,000 gift match when you support your favorite nonprofit organizations.
Explore more benefits

These programs are subject to eligibility requirements and other conditions, which may differ for employees of certain subsidiaries or business units, or union-represented employees depending on bargaining agreement terms. If this information conflicts with the program documents, the latter shall control. This material is informational only.

  • Jacob M
    We never stop growing

    Whether you’re looking to expand your knowledge or grow as a leader, our development programs are designed to help you succeed.

    Learn more

Jobs for You:

No recently viewed jobs.

View all of our available opportunities

No saved jobs.

View all of our available opportunities

Connect with us

Sign up for Job Alerts

Be the first to know when new jobs are posted.

Sign up for Job Alerts

Join our Talent Community

Get updates about Boeing job opportunities, events and career information.

Sign up for our Talent Community

Veteran Talent Community

Transition to a career in engineering, product support, IT, manufacturing or other areas.

Sign up for our Veteran Talent Community