Senior Software Security Engineer

About The Position

Requirements

• Bachelor of Science degree in Engineering, Engineering Technology (including Manufacturing Technology), Computer Science, Data Science, Mathematics, Physics, Chemistry or non-US equivalent qualifications directly related to the work statement
• 9+ years of related work experience or an equivalent combination of education and experience
• 5+ years of experience in a role that required teaming and collaboration skills, and ability to work well with a geographically dispersed cross-functional and matrix team
• Experience managing and/or leading security design and architecture
• 9+ years of experience factoring and applying confidentiality, integrity, and availability considerations in all phases of the system development lifecycle
• Experience with the Software Development Lifecycle (SDLC)
• Experience with DevSecOps and Continuous Integration and Continuous Deployment (CI/CD) tools and execution

Nice To Haves

• Experience with aerospace/aviation software requirements, design, and design analysis
• Experience with system security engineering or systems engineering

Responsibilities

• Partner with the Software Engineering organization and cross-functional stakeholders to drive and deploy software security requirements across Boeing commercial programs
• Liaison with Boeing commercial programs for enterprise software assurance initiatives
• Design and assess system, software, and product architectures for security risks and alignment with industry and Boeing software assurance principles and practices
• Participate in Technical Design Reviews, representing enterprise software assurance
• Define and deploy software assurance policy, standards, processes, and recommendations across the Software Development Lifecycle in accordance with Boeing strategy, industry, and government standards
• Engage with industry and regulatory bodies to influence updates to regulation, frameworks, and standards
• Manage risk in accordance with accepted industry, professional, and government standards to ensure security design integrity, availability, confidentiality, and regulatory compliance
• Develop security requirements and coordinate with multiple system stakeholders to identify, properly implement, and verify security measures to mitigate risks, threats, and vulnerabilities
• Identify improvements to ensure software implementation is aligned to industry and Boeing software assurance best practices
• Apply Practical knowledge of software assurance concepts (secure design principles, OWASP, SAST/DAST, SBOMs, supply chain considerations, etc.)
• Own partnership with the Software Engineering organization and cross-functional stakeholders to drive and deploy software security requirements across Boeing commercial programs
• Drive enterprise software assurance initiatives within Boeing commercial programs
• Represent enterprise software assurance in Technical Design Reviews
• Own definition and implementation of software assurance policy, standards, processes, and recommendations across the commercial Software Development Lifecycle in accordance with Boeing strategy, industry, and government standards
• Represent Boeing in industry and regulatory forums, influence standards and regulatory adoption.
• Advise senior executives on portfolio-wide risk to ensure security design integrity, availability, confidentiality, and regulatory compliance
• Oversee and develop baseline security requirements for commercial platforms.
• Own implementation of software security requirements to key programs within the commercial portfolio.

Benefits

• health insurance
• flexible spending accounts
• health savings accounts
• retirement savings plans
• life and disability insurance programs
• paid and unpaid time away from work