Senior Cybersecurity Engineer - Embedded Avionics (ONSITE)

About The Position

Requirements

• Typically requires a degree in Science, Technology, Engineering or Mathematics (STEM) and minimum 5 years prior relevant experience or an Advanced Degree in a related field and minimum 3 years of experience.
• U.S. Citizenship is required - The ability to obtain and maintain a U.S. government issued security clearance is required. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance.
• Embedded software development experience in Linux OS environment
• Experience coding in C, C++, Python, other scripting languages
• Networking experience - Layer 2/Layer 3/Layer 4 protocols

Nice To Haves

• Experience creating and analyzing Threat Models and Data Flow Diagrams
• Analysis of system and application security architectures
• Conducting system and application vulnerability assessments
• Data/network security implementations with Linux OS
• Understanding tailoring and hardening of Linux OS
• System and Application Penetration Testing skills
• Hands-on experience with SAST and collaborating with developers to resolve findings
• Creating System & Application Fuzzing / Resiliency Tests
• SELinux Policy Development
• Experience with Public Key Infrastructure (PKI) device certificate management
• Experience or knowledge of RTCA DO-326A / DO-356A
• Experience with Risk Management Framework (RMF)
• Being a CISSP or (ISC)2 Associate is desirable.
• Use excellent communications skills to communicate technical issues and status in both written and oral form.
• Be adaptable to change, determined to accomplish tasks based on program schedule,
• Collaborate with teammates in order to learn and make good decisionsE
• Enjoy learning new technologies, and contribute to a positive work environment.

Responsibilities

• Developing threat models and data flow diagrams to ensure information can be properly isolated in motion and at rest
• Conducting vulnerability assessments of proposed and fielded systems
• Collaborating with product architects and software development teams to mitigate security threats
• Reviewing code to identify weaknesses in the implementation of security functions
• Developing and executing fuzzing and penetration tests to evaluate product robustness to untrusted inputs
• Creating custom security testing tools that utilize aerospace specific protocols
• Implementing mandatory access controls (MAC) through the development of Security Enhanced Linux (SELinux) policies
• Supporting multiple product security efforts concurrently
• Guiding the organization throughout the SSDLC
• Authoring of Risk Management Framework (RMF) artifacts

Benefits

• Medical, dental, and vision insurance
• Three weeks of vacation for newly hired employees
• Generous 401(k) plan that includes employer matching funds and separate employer retirement contribution, including a Lifetime Income Strategy option
• Tuition reimbursement program
• Student Loan Repayment Program
• Life insurance and disability coverage
• Optional coverages you can buy pet insurance, home and auto insurance, additional life and accident insurance, critical illness insurance, group legal, ID theft protection
• Birth, adoption, parental leave benefits
• Ovia Health, fertility, and family planning
• Adoption Assistance
• Autism Benefit
• Employee Assistance Plan, including up to 10 free counseling sessions
• Healthy You Incentives, wellness rewards program
• Doctor on Demand, virtual doctor visits
• Bright Horizons, child and elder care services
• Teladoc Medical Experts, second opinion program
• And more!