Product System Security Engineer

Rolls-Royce•Indianapolis, IN

3d•Hybrid

About The Position

We’re looking for a Product System Security Engineer (cyber-physical embedded systems) to join our growing team. In this role, your focus will be on helping to secure a range of Roll-Royce Defense products against an increasingly diverse and complex range of threats. You’ll be part of a multi-disciplinary team, working together to tackle technical challenges in a stimulating and collaborative environment. This is an exciting opportunity to work on flagship Rolls-Royce programs and play an important role in addressing some of the most complex and interesting technological challenges in Defense. There are several disciplines within SSE that you will be exposed to and be able to participate in. You will be encouraged to further develop and leverage your skills and experience in Systems Security Engineering, identify and pursue unique specialty skillsets, and help grow Rolls-Royce capability in this pivotal area.

Requirements

Associate degree with 4+ years of experience in a relevant engineering environment (Electrical, Software, Controls, Systems)
Bachelor's degree in STEM discipline with experience in a relevant engineering environment (Electrical, Software, Controls, Systems) with 2+ years’ experience, OR Master’s degree in STEM discipline with experience in a relevant engineering environment (Electrical, Software, Controls, Systems), with 0+ years’ experience OR JD/PhD
Must be a U.S. citizen with the ability to obtain and maintain a high-level security clearance.

Nice To Haves

5+ years of experience working in Product Security Engineering on real-time cyber-physical embedded systems (ie - aviation systems, software defined vehicles, medical devices, weapon systems, etc)
10+ years of experience working in a related Engineering role (ie - Systems Engineering, Embedded Computer Engineering, or Embedded Software Engineering, etc)
Experience with Systems Engineering on complex systems and excellent systems thinking aptitude: the ability to understand complex system boundaries, interactions, and interdependencies across multiple abstraction layers throughout the system’s entire lifecycle.
Experience of embedded systems and the technical skills required to develop, implement, and secure such cyber-physical systems.
Experience or interest in cybersecurity and cyber threats (ie - designing secure products, systems, and applications; intrusion detection; digital forensics; system recovery; risk assessment tools and methods; security solutions, policies, standards, and procedures, etc.).
Experience in applying Product Security policies and standards to the engineering of cyber-physical systems such as NIST SP 800-160, DO-326, UK Secure By Design, IEC 62443, the Risk Management Framework (RMF), and DoDI 5000.83,.
Excellent communications skills: able to influence without authority and describe complex ideas simply and succinctly to non-technical people.

Responsibilities

Work with the core product security and LibertyWorks teams to determine the technology and processes required to meet customer requirements for system security and resiliency.
Act as a business technical specialist in secure cyber resilient engineering (SCRE), applying technical knowledge and providing technical direction as required throughout the product lifecycle: requirements, design, build, test, production, operations, and support.
Lead a small number of individuals or projects in this subject area, providing technical leadership to teams or projects in addition to having impact through functional knowledge.
Collaborate with government, customers, suppliers, and industry experts to meet system requirements.
Create digital models and use digital tools such as model-based systems engineering (MBSE) to meet program expectations.
Develop and update systems security and resilience good practice and help ensure the techniques, policies, procedures, and knowledge to enable us to implement this good practice across the business.