Key skills
Program ManagementCMMC CertificationNIST SP 800-171Risk Management FrameworkProject Management ProfessionalCISA CertificationCISSP CertificationCISM CertificationCompliance OversightTrainingCollaborationMentoringIAMLeadershipProject ManagementRisk Management
About this role
ABB is a company that helps industries run leaner and cleaner, and they are seeking a CUI Program Manager for their Motion Business Area. This role involves overseeing the implementation and operational oversight of ABB’s Controlled Unclassified Information (CUI) Program, ensuring compliance with US regulations, and collaborating with various teams to manage information security and compliance efforts.
Responsibilities:
- Lead Motion’s CUI compliance program implementation and operationalization through formulating, organizing, coordinating, directing and monitoring program activities as necessary to ensure compliance with US regulations such as 32 CFR Part 2002, 32 CFR Part 170, 48 CFR Part 204, pending proposed FAR Case 2017-016, and agency-specific laws, regulations and policies for the handling and safe-guarding of CUI
- Collaborate and partner with business executives, leaders, functional stakeholders and organizations, to identify, develop and implement, inherited, common and business distinct solutions, including identifying, assigning, and performing oversight of key compliance roles including control owners and control performers, and ensuring individuals handle and safeguard CUI properly
- Direct coordination and oversight of applicable CUI controls performance and provide direct mentoring and training as a deep domain subject matter expert and CUI process owner and domain lead for Motion
- Provide periodic accurate and timely reporting status, of compliance posture metrics, schedule, and challenges and program needs including necessary re-sources and commitments to the Motion Business Area, Divisions, and Business Lines leadership, project stakeholders, and ABB’s CUI Program team
- Maintain Motion documentation, including System Security Plan (SSP), Plans of Action and Milestones (PO&AMs), control implementation guidelines, processes, and procedures. Promote and foster a culture of integrity and compliance aligned with ABB's global integrity program and ABB's U.S. government contractor code of business ethics and conduct program
Requirements:
- Bachelor's degree with minimum eight (8) years demonstrated program/project management experience preferably in a large matrixed multi-business, multi-functional organization
- Candidates must already have a work authorization that would permit them to work for ABB in the US
- One or more of these certifications: Project Management Professional (PMP) certification, CMMC Certified Professional (CCP), CMMC Certified Assessor (CCA), Certified Information Systems Auditor (CISA), Certified Information Systems Security Professional (CISSP), or Certified Information Security Manager (CISM)
- Practical experience in the application and implementation of the NIST (National Institute of Technology) Risk Management Framework, and related publications including NIST Special Publications 800-171 and / or 800-53, as applicable to non-federal (private sector) organizations, and associated agency CUI-related laws, regulations, and governmental policies
- 2 years CMMC program experience and/or implementing and maintaining a NIST SP 800-171 compliant environment
- Experience leading or directly supporting a DIBCAC High or Joint Surveillance NIST SP 800-171 and / or 800-53 assessment and experience teaching and demonstrating the application of NIST SP 800-171 controls to non-technical personnel
- U.S. Department of Defense approved 8570 - IAM/IAT Level III baseline certification with practical experience in the application and delivery of control systems or related solutions in an Interim Secure State (ISS)