Share this Job

Information Systems Security Manager

Requisition ID:  220583

  • Position Title: Information Systems Security Manager
  • Project: WTP
  • Location:  Richland, WA
  • Posting End Date:  7/29/2019
  • Relocation Authorized:  National - Family
  • Position to be Panel Interviewed?  Yes  
  • U.S. Citizenship Required:  Yes
  • Other Requirements:  Pre-employment drug and alcohol screen, background check and physical

Bechtel is designing, constructing, and commissioning the world's largest radioactive-waste treatment plant for the U.S. Department of Energy (DOE) in southeastern Washington state. The project will use vitrification technology to process and stabilize 56 million gallons (212 million liters) of radioactive and chemical waste stored at the Hanford Site which is a byproduct of plutonium-production during World War II and the Cold War era.

The cleanup project is one of DOE's most technically challenging and the largest undertaking of its kind­ equivalent to building two nuclear power plants. The construction site spans 65 acres (26 hectares) and includes facilities for pretreatment, low-activity waste vitrification, and high-level waste vitrification, as well as an analytical laboratory.

Positions located at the Construction Site (22 miles north of Richland) work a 4 x 10 schedule, M-Th, 6:30 5 p.m. All other work locations (Richland WA, San Francisco CA and Reston VA work a 9-80's schedule, M-F 7:00 am to 4:30 pm with alternating Fridays off.

Role Overview:

Provides overall direction, coordination, and guidance for the information security (aka information assurance) program for permanent plant information systems using the NIST driven Risk Management Framework.   Directs the development and implementation of information/cyber security requirements and programs and procedures; provides functional guidance and direction to assigned information security personnel and contractors; serves as primary customer interface for information security program execution and auditing; monitors information security program activities and performance; serves as the Requirements Area Manager (RAM) for the permanent plant information system cyber security program. 


Job Responsibilities:

  • Manage a plant Information Assurance (IA), aka cyber security, organization with purview over plant operations. The Information System Security Manager (ISSM) must maintain a cohesive team comprised of both central IA staff and specialists deployed into other organizations

  • Manage and maintain, in good standing, the relationship with the customer in the area of cyber security (DOE O 205.1B) compliance and contract requirements

  • Produce policies and procedures for the WTP permanent plant information systems including communication, and industrial control systems that provide documentation of the physical and technical safeguards that are in place to protect plant assets from internal and external IA threats

  • In accordance with Contract Requirements, implement a FISMA compliant system authorization program based on the NIST Risk Management Framework and other appropriate NIST guidance as tailored by DOE O 205.1B and as directed by the customer, WTP project management, and BNI’s IA/IS&T functional management as necessary

  • Work effectively with the Engineering teams to develop appropriate cyber security technical controls such as data backup and restore capabilities for the plant industrial control systems

  • Work effectively with the plant operations team to develop mutually accepted Information Assurance procedures and subsequently enlist their support for rigorous and on-going personnel and data network monitoring managed by the IA team

  • Ensure all necessary procedures and processes necessary to achieve and maintain an ATO under DOE O 205.1B are documented and maintained

  • Act as the project point of contact and responsible manager for all permanent plant cyber related audits (both internal and external)

  • In conjunction with Bechtel’s central engineering, security operations center (SOC), and cyber incident response team (CIRT), and the WTP Site Information Security Manager, develop a comprehensive continuous monitoring program for the WTP permanent plant information systems

  • Assist with general cyber security and other IS&T needs for the Project (including occasional overtime and project IT on-call duty)

  • Collaborate with other NS&E project IA/IS&T teams and BNI’s enterprise IA/IS&T functional management

  • General managerial duties which include timecard approvals, providing guidance and performance evaluations for personnel under purview


    Basic Qualifications:

  • Bachelor’s degree from an accredited university and 9 years of experience within the information security/assurance and/or technology field of which must include program management experience focused on information assurance or cyber security or other related programs.

  • In lieu of a degree, a combination of 15 years of experience within the information security/assurance and/or technology field of which at least must include program management experience focused on information assurance or cyber security or other related programs.


    Minimum Qualifications:

  • Must have experience managing project plans and schedules

  • Must possess strong verbal and written communication skills

  • Must have firm knowledge and experience with Federal or DOD cyber & industrial security orders

  • Must have firm knowledge of NIST Risk Management Framework

  • Experience with assessment methods for the categorization and mitigation of security risks.

  • Must be able to complete and pass a pre-employment drug screen, physical (if located at the construction site), and background check which includes verification of employment and education

  • Must be able to obtain a Department of Energy badge for access to the Hanford Site


    Preferred Qualifications:

  • Extensive knowledge of SCADA, DCS, & PLC systems is highly desirable

  • Previous DOE, DoD, or manufacturing experience a plus

  • CISSP or CISM or equivalent certification desirable

  • Experience as Information Systems Security Officer or Information Systems Security Manager is desirable

  • Candidate must possess the right to work and remain in the United States without sponsorship


Shaping tomorrow together

Bechtel is one of the most respected global engineering, construction, and project management companies. Together with our customers, we deliver landmark projects that foster long-term progress and economic growth. Since 1898, we’ve completed more than 25,000 extraordinary projects across 160 countries on all seven continents. We operate through four global businesses: Infrastructure; Nuclear, Security & Environmental; Oil, Gas & Chemicals; and Mining & Metals. Our company and our culture are built on more than a century of leadership and a relentless adherence to our values, the core of which are safety, quality, ethics, and integrity. These values are what we believe, what we expect, what we deliver, and what we live.

Bechtel is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, or protected veteran status and will not be discriminated against on the basis of disability.