What you'd actually do

Develops, implements, and sustains product security and resiliency throughout the requirements, design, build, test, production, operations, and support lifecycle

Develops and enhances system requirements and architectures for product security to meet all applicable certification and customer requirements

Ensures security of facilities, equipment, tools, data, networks, and resources used for product: design, development, build, test, storage, delivery, operations, and support

Defines and identifies product security requirements for suppliers of components and subsystems for integration into Boeing products and services

Coordinates with governments, customers, suppliers, and industry to identify risks and improve industry and regulatory security standards and requirements for programs and interfacing systems

Skills

Required

Bachelor of Science degree from an accredited course of study in engineering, engineering technology (includes manufacturing engineering technology), chemistry, physics, mathematics, data science, or computer science
Ability to obtain a U.S. Security Clearance for which the U.S. Government requires U.S. Citizenship
3+ years of experience in cyber-security, information assurance, or related field
Experience interpreting and applying NIST requirements
Certified Application Security Engineer (CASE), Security+, a CISSP certification, or equivalent Cyber Security certification (CISSP preferred)

Nice to have

5+ years experience with industry standard cybersecurity frameworks (NIST, OWASP, DFARS)
5+ years of experience with security and vulnerability scanning tools such as ACAS/Nessus, STIG's, and SCC
Experience identifying security vulnerabilities within source code
5+ years of experience scanning source code with security tools Fortify and Coverity
Software engineering or Information Technology (IT) experience, including knowledge of Microsoft operating systems and client-server and web-based architectures, is desirable
Experience with the RMF or DIACAP process
Experience interpreting and applying NIST requirements
Experience with performing ACAS scans of systems and interpreting results
Experience with STIGs and SCAP tool
Experience with Vulnerator tool
Experience with DISA IAVMS and patching to the notices

Experienced Product Security Engineer

Company:

The Boeing Company

The Boeing Company is looking for an **Experienced Product Security Engineer **to join the Government Vehicle Health Management Systems (GVHMS) team in Seattle, WA. This role will support a proprietary program as well as other platforms in the GVHMS portfolio within the Boeing Global Services (BGS) organization.

In this role, you will work on our team of Product Security Engineers along with our internal team as well as external suppliers to ensure all stakeholders are meeting customer and internal CS/IA requirements. The CS/IA engineer will be required to assess compliance with CS/IA requirements, work with stakeholders to resolve compliance issues, and communicate status accordingly. This role will also be responsible for certifying compliance for the system and hardware assets as well as serving as a CS/IA focal on other efforts across the organization including requirements definition, issue remediation, as well as supporting Certification & Accreditation (C&A) activities for the team.

Our amazing team of engineers develops, fields, and supports platform health management systems for the F/A-18, MQ-25, F-15, T-38, T-7, and proprietary platforms. Our software acquires and manages platform health and usage data, performs health, and usage assessment and recommends maintenance actions. We are tasked with the creation, design, development, modification, proof of concept, verification, testing, and demonstration of products and solutions to maximize platform mission readiness and effectiveness, reduce lifecycle costs, and keep our customers safe.

At Boeing, we are all innovators on a mission to connect, protect, explore and inspire. From the seabed to outer space, you will learn and grow; contributing to work that shapes the world. Find your future with us.

**This position is expected to be 100% onsite. The selected candidate will be required to work onsite at one of the listed location options. **

**Position Responsibilities: **

Develops, implements, and sustains product security and resiliency throughout the requirements, design, build, test, production, operations, and support lifecycle
Develops and enhances system requirements and architectures for product security to meet all applicable certification and customer requirements
Ensures security of facilities, equipment, tools, data, networks, and resources used for product: design, development, build, test, storage, delivery, operations, and support
Defines and identifies product security requirements for suppliers of components and subsystems for integration into Boeing products and services
Coordinates with governments, customers, suppliers, and industry to identify risks and improve industry and regulatory security standards and requirements for programs and interfacing systems
Conducts research and development activities resulting in innovative solutions
Advises customers on maintaining product security and certification, including security consequences of modifying products and services

Basic Qualifications (Required Skills/Experience):

Bachelor of Science degree from an accredited course of study in engineering, engineering technology (includes manufacturing engineering technology), chemistry, physics, mathematics, data science, or computer science
Ability to obtain a U.S. Security Clearance for which the U.S. Government requires U.S. Citizenship
3+ years of experience in cyber-security, information assurance, or related field
Experience interpreting and applying NIST requirements
Certified Application Security Engineer (CASE), Security+, a CISSP certification, or equivalent Cyber Security certification (CISSP preferred)

Preferred Qualifications (Desired Skills/Experience):

5+ years experience with industry standard cybersecurity frameworks (NIST, OWASP, DFARS)
5+ years of experience with security and vulnerability scanning tools such as ACAS/Nessus, STIG's, and SCC
Experience identifying security vulnerabilities within source code
5+ years of experience scanning source code with security tools Fortify and Coverity
Software engineering or Information Technology (IT) experience, including knowledge of Microsoft operating systems and client-server and web-based architectures, is desirable
Experience with the RMF or DIACAP process
Experience interpreting and applying NIST requirements
Experience with performing ACAS scans of systems and interpreting results
Experience with STIGs and SCAP tool
Experience with Vulnerator tool
Experience with DISA IAVMS and patching to the notices

**Conflict of Interest: ** Successful candidates for this job must satisfy the Company's Conflict of Interest (COI) assessment process.

Union:

This is a union-represented position.

Drug Free Workplace:

Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies.

Pay & Benefits:

At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base pay and variable compensation opportunities.

The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.

The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements.

Pay is based upon candidate experience and qualifications, as well as market and business considerations.

Summary Pay Range for Experienced level (Level 3): $137,700 - $186,300

Potential signing bonus for eligible/qualified external candidates.

Language Requirements:

Not Applicable

Education:

Bachelor's Degree or Equivalent

Relocation:

This position offers relocation based on candidate eligibility.

Export Control Requirement:

This position must meet U.S. export control compliance requirements. To meet U.S. export control compliance requirements, a “U.S. Person” as defined by 22 C.F.R. §120.62 is required. “U.S. Person” includes U.S. Citizen, U.S. National, lawful permanent resident, refugee, or asylee.

Safety Sensitive:

This is not a Safety Sensitive Position.

Security Clearance:

This position requires the ability to obtain a U.S. Security Clearance for which the U.S. Government requires U.S. Citizenship. An interim and/or final U.S. Secret Clearance Post-Start is required.

Visa Sponsorship:

Employer will not sponsor applicants for employment visa status.

Contingent Upon Award Program

This position is not contingent upon program award

Shift:

Shift 1 (United States of America)

Stay safe from recruitment fraud! The only way to apply for a position at Boeing is via our Careers website. Learn how to protect yourself from recruitment fraud - Recruitment Fraud Warning

Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.

EEO is the law

Boeing EEO Policy

Request an Accommodation

Applicant Privacy

Boeing Participates in E – Verify

E-Verify (English)
E-Verify (Spanish)

**Right to Work Statement **

Right to Work (English)
Right to Work (Spanish)