Cyber Security Product RISK Manager

About The Position

Requirements

• Bachelor's Degree in stem field (Cyber security, Electrical engineering, Aeronautical engineering, Aerospace Engineering) or equivalent experience (5 years Cybersecurity experience in the aerospace industry or military).
• Familiarity with the NIST 800-53 controls (as applied through CNSSI-1253) and Development Security operations.
• Extensive experience of RMF implementation and defensive Cyber operations.
• Minimum of 5 years Project Management experience that includes: Leading large complex programs over multiple releases, A proven track record of launching new products or applications with demonstrated business impact, Ability to influence and coordinate multi-functional teams.
• Demonstrated experience of effective verbal and written communication skills across functions and multiple levels of leadership.
• Demonstrated ability to manage complex initiatives and projects in a matrixed, high-speed, and quickly changing business environment.
• Outstanding communication, relationship-building influencing, and collaboration skills.
• Demonstrated strong quality/process improvement experience, with relevant examples that improved business performance and customer experience.
• Advanced problem-solving skills with the ability to develop innovative solutions in a fast-changing environment.
• Excellent communication skills, both verbal and written.
• Fluent U.S. English speaker.
• Requires advanced computer skills with a focus on Microsoft Office applications.
• US citizenship is required.
• Ability to obtain and maintain a Government security clearance at the facility clearance level.

Responsibilities

• Responsible for the Cyber security of our products.
• Develop methodology to detect security events on hardware, including PCB analysis, and debug port detection.
• Extract and reverse engineer firmware, exploit development.
• Knowledge of Space BUS architecture, Secure boot.
• Production of System Security Plan (SSP). These artifacts include - a System Security Plan (SSP), Risk Assessment Report, Security Controls Traceability Matrix, and Plans of Actions & Milestones (POA&Ms). Familiarity with the NIST 800-53 controls (as applied through CNSSI-1253).
• Working as an individual contributor representing the Cyber team within the Space engineering team to architect, implement, and execute Risk Management Framework (RMF) CyberSecurity, CyberResilience, Cyber Survivability requirements of satellite systems, onboard computers, and flight software.
• All candidates must be capable of supporting cybersecurity assessment events where they work closely with systems administrators and other cyber personnel and engineering personnel (ISSOs, ISSMs,) to satisfactorily demonstrate that all applicable security controls are implemented within the system boundary.
• Proactively engages with Compliance and Legal to ensure adherence with all external and internal compliance and regulatory requirements.
• Establishes strategic peer-to-peer partnerships with suppliers, manufacturers, and other industry experts in order to develop new products or improve existing products while ensuring that applicable boundaries/firewalls are respected.
• Manages multiple product and capability initiatives to drive clear prioritization and direction to cross-functional teams including Cyber Security, and Space Engineering from Airbus US as well as key client representatives.
• Provides leadership and serves as the escalation point for all issues arising across functional teams in assigned workstreams.
• Provide updates to senior leaders and other internal and external stakeholders on integration project statuses on a regular basis.
• Actively seeks and gathers customer/stakeholder feedback and applies is to product development as appropriate.
• Develop business opportunities through peer-to-peer relationships with industry influencers and government decision-makers.
• Other projects as assigned

Benefits

• Competitive compensation
• Superior employee benefits
• Commitment to fostering individual career growth
• Equal employment opportunities (EEO)
• Workforce diversity and inclusive working environment