Product Security Engineer (Phantom Works) - Full-time / Part-time

Boeing Phantom Works is seeking an innovative Product Security Engineer to join our growing Boeing Product Security Organization. The successful candidates will be responsible for applying an interdisciplinary, collaborative approach to plan, design, develop, validate and verify life-cycle balanced system security engineering solutions.

You will be a part of Boeing's Product Security Organization, which is a growing multi-disciplinary engineering organization that is responsible for the security and resiliency of Boeing's products, platforms, and services. You will have multiple responsibilities across the life-cycle of Phantom Works programs and products, including the design and development of next generation systems. You will have the opportunity to shape and influence Product Security Engineering in Phantom Works, and engage with Boeing’s Enterprise Product Security community.

Position Responsibilities:

• Perform cyber and systems security engineering of products and non-IT networks, perform threat and risk assessment as part of a cyber-maturation process that establishes threat surfaces and mitigations to maximize resiliency and minimize vulnerability
• Perform design analysis and requirements development to ensure compliant, resilient and secure products
• Support the establishment of testing and evaluation plans, including cyber test activities & cyber table top evaluation
• Perform assessment of software assurance activities and products, to ensure the security pedigree of our software solutions
• Develops, maintains and identifies improvements for the planning, organization, implementation and monitoring of the requirements management processes.
• Identifies assets and assesses risks, threats, and vulnerabilities of the product in accordance with accepted industry, professional, and government standards to ensure secure design while enabling integrity, availability, confidentiality, and non-repudiation of system functions and data, and contract compliance
• Knowledgeable in the integration of security, resilience, and anti-tamper design
• Implements appropriate security controls and requirements per JSIG, DoD and ICD 503 RMF, NISPOM, or DoD Overprint to the NISPOM as required by customers
• Travel (up to 25%) will be required for meetings with customers, internal meetings, etc.
• Works under minimal direction
• The role on the team may require obtaining certifications such as Security+ or CISSP to comply with contract requirements

This position requires an active Top Secret U.S. Security Clearance. (A U.S. Security Clearance that has been active in the past 24 months is considered active.)

Basic Qualifications (Required Skills/Experience):

• Minimum technical bachelor's degree
• Experience with Risk Management Framework (RMF) and Cyber Security Framework (CSF)

Preferred Qualifications (Desired Skills/Experience):

• Experience defining, allocating, implementing, assessing, and validating cybersecurity related requirements over the entire engineering and product life-cycle
• Experience in performing, documenting, and communicating the analysis of cyber vulnerabilities, threats, and risks
• Experience in system and component level cyber test and evaluation, including threat and security assessments, and table top exercises
• Experience in software assurance planning and assessment, including static and dynamic code analysis
• Experience in the analysis of patches and updates, with the engineering and product impact assessment
• Experience in supporting or performing cyber threat intelligence analysis
• CISSP certification
• Security + certification

Typical Education & Experience:
Education/experience typically acquired through advanced technical education from an accredited course of study in engineering, computer science, mathematics, physics or chemistry (e.g. Bachelor) and typically 5 or more years' related work experience or an equivalent combination of technical education and experience (e.g. PhD, Master+3 years' related work experience). In the USA, ABET accreditation is the preferred, although not required, accreditation standard.

Relocation:
This position offers relocation based on candidate eligibility. Basic relocation is available for internal candidates.

Drug Free Workplace:
Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies. 

Union Position:
This is a union represented position