Senior Cybersecurity GRC Engineer

BLUE ORIGIN•Seattle, WA

4d•$156,802 - $219,522

About The Position

At Blue Origin, we envision millions of people living and working in space for the benefit of Earth. We’re working to develop reusable, safe, and low-cost space vehicles and systems within a culture of safety, collaboration, and inclusion. Join our team of problem solvers as we add new chapters to the history of spaceflight! This role is part of Enterprise Technology (ET), where we’re developing the digital infrastructure needed to build the road to space, with an emphasis on digital capabilities required to advance Blue Origin’s mission. Enterprise Technology is the center of excellence for digital technology at Blue Origin, providing oversight and governance to align technology and business strategies. As part of a passionate and accomplished team of Cyber Security experts, you will protect and secure the infrastructure supporting various corporate and spaceflight systems. We are looking for someone to apply their technical expertise, leadership skills, and commitment to quality to positively impact safe human spaceflight. Passion for our mission and vision is required! We are looking to radically reduce the cost of security compliance, which will require creative genius and technical aptitude.

Requirements

Bachelor's degree or certification in cybersecurity, or equivalent industry experience
Experience with cybersecurity standards including NIST, ISO 27001, ISO 28000, SOC, and privacy frameworks
Experience with 3rd party information security audits including CMMC and ISO
10+ years experience in information security risk management
Experience with security compliance and vulnerability scanning technologies and enterprise observability technologies
Expertise in cloud native capabilities, business IT, and OT/safety-critical technologies
Knowledgeable of security strategies and practices within the manufacturing industry
Ability to earn trust, maintain positive and professional relationships, and contribute to a culture of inclusion

Nice To Haves

Experience in the aerospace and/or manufacturing industries
Experience with AI security

Responsibilities

Automate compliance workflows including artifacts collection for external audits, internal security compliance reviews, and continuous monitoring tasks.
Create GRC dashboards that integrate data from existing observability solutions and can be used to drive data-driven decisions.
Use outcome-driven metrics and key performance indicators to measure controls effectiveness, compliance burden, and drive improvements and efficiencies.
Identify manually-intensive processes that can be automated and develop, test, deploy, and maintain automated GRC solutions.
Support risk assessments to identify potential threats and vulnerabilities across the organization, analyzing their impact and likelihood of occurrence.
Support policies and procedures maintenance aligned with in-scope security frameworks, regulations, and internal standards to manage identified risks effectively.

Benefits

Medical, dental, vision, basic and supplemental life insurance, paid parental leave, short and long-term disability, 401(k) with a company match of up to 5%, and an Education Support Program.
Stock Options for all regular employees (working at least 20 hours/week)
Paid Time Off: Up to four (4) weeks per year based on weekly scheduled hours, and up to 14 company-paid holidays.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume