Product Security Engineer (Product Security Engineer)

About The Position

Requirements

• Bachelor of Science degree from an accredited course of study in engineering, computer science, mathematics, physics or chemistry
• 1+ years of experience in development of avionics computer systems
• 3+ years’ experience and ability to identify risk, new opportunities and engage with stakeholders to define, plan, resource and deliver solutions
• 3+ years’ experience assisting with the development of cybersecurity philosophies, patterns, requirements, secure architectures and designs
• 3+ years’ experience coordinating and presenting technical content to a diverse audience, as well as preparing technical documentation
• Knowledge of cyber security incident response protocols (identification, impact assessment, containment, remediation, evidence handling, technical reporting, etc.) and safeguarding information.
• This position requires an ability to obtain and maintain an active Secret U.S. Security Clearance. An interim and/or final U.S. Secret Clearance Post-Start is required.
• To meet U.S. export control compliance requirements, a “U.S. Person” as defined by 22 C.F.R. §120.62 is required. “U.S. Person” includes U.S. Citizen, U.S. National, lawful permanent resident, refugee, or asylee.

Nice To Haves

• Master's or higher degree in engineering (e.g., aerospace, mechanical) or material science
• 5+ years' related work experience or an equivalent combination of education and
• Experience in product cyber security for avionics systems and component level development
• Experience performing adversity (threat) analysis, security risk assessments, and maturing the analysis throughout the development lifecycle – to inform requirements, and design
• Experience generating product cyber security artifacts for customer/certifiers
• Security certification is desired (e.g. CISSP); Please state/include on resume

Responsibilities

• Support the development, implementation, and sustainment of product security for Phantom Works avionics systems, throughout the requirements, design, analysis, build, test, production, operations, support and sustainment lifecycle
• Coordinate with partners and system-of-systems product security counterparts for requirements, activities, artifacts, and solutions
• Coordinate with other engineering stakeholders – systems, software, and hardware – advising on the results of security analysis – to develop secure architectures and designs
• Assist in establishing, and integrating standards and processes for product security engineering for embedded avionics development, and meet applicable program/certification requirements
• Utilize the Risk Engineering digital thread to inform product requirements surrounding cyber survivability against specified cyber threats – by performing criticality, adversity, threat analysis for avionics systems
• Assist in risk reduction and technology maturation activities – where appropriate – resulting in innovative solutions in product and services offering
• Implements appropriate security controls and requirements per JSIG, DoD and ICD 503 RMF, NISPOM, or DoD Overprint to the NISPOM
• Support inputs for planning, scheduling, risks, issues, and opportunity activities for cyber security
• Support team building, leading cross-functional teams, motivating and engaging team member, and inspiring work groups through daily interactions.
• Travel (up to 10%) is required for meetings with customers, suppliers and/or internal meetings.

Benefits

• Elements of the Total Rewards package include competitive base pay and variable compensation opportunities.
• The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.