Mid-Level Product Security Engineer (PSE)

Company:

Boeing Aerospace Operations

Boeing Global Services (BGS) is looking for a Mid-Level Product Security Engineer (PSE) to join our Government Training Systems team McConnell AFB, Kansas. The selected candidate will execute on our vision and share our passion for protecting our government training systems, aircraft support equipment, and associated products.  Join our team to provide technical support for product cyber security and resiliency engineering through requirements, design, analysis, build, test, production, operations, support and sustainment.

This PSE team’s portfolio spans exciting programs such as KC-46.  The candidate will rely on Cybersecurity and Information Assurance (IA) background to be a technical leader and support the Maintenance Training System (MTS) network and Boeing customers. In this role, the candidate will align product engineering support with information system security tasking’s to support the KC-46 Maintenance Training System (MTS).  This position includes guidance for the design and implementation of appropriate security controls and requirements per JSIG, DoD RMF, NISPOM, or other related governing security policies and governances as required by customers.

Position Responsibilities:

Advises customers on maintaining product security and certification, including security consequences of modifying products and services.Participates in change management activities as assigned by the ISSM, assisting stakeholders (system administrators, etc.) with the declaration and documentation of ports, protocols and services required for the information systemParticipate in remanence security risk management processesExecute procedures that identify and mitigate the residual risk and risk tolerance.Implements Risk Management Framework (RMF) processes, product development and product maintenance for assigned systemsPerforms security compliance continuous monitoringPerform security assessments and auditsPrepares and presents technical reports and briefingsIdentifies root causes, the prioritization of threats, and recommends/implements corrective actionProvides mentoring and technical leadership within the information security program teamExplores the enterprise and industry for the evolving state of industry knowledge and methods regarding information security standard methodologiesSupports development of MTS information security policies, standards, guidelines and procedures will affect other operating locationsSupports Defense Federal Acquisition Regulation Supplement (DFARS) and Cybersecurity Maturity Model Certification (CMCC) requirements based on contractual requirements for KC-46 MTS

Basic Qualifications (Required Skills/Experience):

Bachelor of Science degree from an accredited course of study in engineering, engineering technology (includes manufacturing engineering technology), chemistry, physics, mathematics, data science, or computer scienceSecurity certification, IAM Level 2 DoD 8570/8140 compliant certification (i.e. IAM Level 2 – CAP, GISF, GSLC, Security+)Risk Management Framework process along with both the NIST and DOD standards for RMF5+ years’ experience in development of cybersecurity philosophies, patterns, requirements, secure architectures, and designs5+ years’ experience in coordinating and presenting technical content to an audience, as well as preparing technical documentationKnowledge of cyber security incident response protocols (identification, impact assessment, containment, remediation, evidence handling, technical reporting, etc.) and safeguarding informationExperience and/or knowledge in product security or cybersecurity conceptsExperience generating product cyber security artifacts for customer/certifiers.Experience performing adversity (threat) analysis, security risk assessments, and maturing the analysis throughout the development lifecycle – to inform requirements, and designKnowledge of VMware (infrastructure)Experience scanning for vulnerabilities, implement mitigations, install, administer, and troubleshoot on the following operating systems: Microsoft Windows 10, Windows Server 2016+, Linux Distributions (Red Hat Enterprise)

Preferred Qualifications (Desired Skills/Experience):

8+ years’ experience in development of cybersecurity philosophies, patterns, requirements, secure architectures, and designs.8+ years of experience with cybersecurity policies and implementation of Risk Management Framework (RMF): e.g. DAAPM, CNSSI 1253, ICD-503, JSIG, and/or NIST SP 800 seriesExperience scanning for vulnerabilities, implement mitigations, install, administer, and troubleshoot on the following operating systems: MAC OS, Microsoft Windows 11, Microsoft Server 2022, Raspberry PiSplunk Syslogs, Scripting languagesExperience in product cyber security for avionics systems and component level developmentExperience in requirements analysis and allocationExperience with Systems Security Engineering or Product Security EngineeringRisk Management Framework process along with both the NIST and DOD standards for RMF2+ years of software experience: knowledge of higher order language programming languages (C/C++, Ada etc.), understanding of software life cycle, ability to read and understand code, and some understanding of secure code practices.

Drug Free Workplace:

Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies. 

Pay & Benefits:

At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent.  Elements of the Total Rewards package include competitive base pay and variable compensation opportunities.  

The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.  

The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements.

Pay is based upon candidate experience and qualifications, as well as market and business considerations.  

Summary Pay Range: $104,550- $141,450

Language Requirements:

Not Applicable

Education:

Bachelor's Degree or Equivalent

Relocation:

This position offers relocation based on candidate eligibility.

Export Control Requirement:

This position must meet export control compliance requirements. To meet export control compliance requirements, a “U.S. Person” as defined by 22 C.F.R. §120.15 is required. “U.S. Person” includes U.S. Citizen, lawful permanent resident, refugee, or asylee.

Safety Sensitive:

This is not a Safety Sensitive Position.

Security Clearance:

This position requires the ability to obtain a U.S. Security Clearance for which the U.S. Government requires U.S. Citizenship. An interim and/or final U.S. Secret Clearance Post-Start is required.

Visa Sponsorship:

Employer will not sponsor applicants for employment visa status.

Contingent Upon Award Program

This position is not contingent upon program award

Shift:

Shift 1 (United States of America)

Stay safe from recruitment fraud! The only way to apply for a position at Boeing is via our Careers website. Learn how to protect yourself from recruitment fraud - Recruitment Fraud Warning

Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.

EEO is the law

Boeing EEO Policy

Request an Accommodation

Applicant Privacy

Boeing Participates in E – Verify

E-Verify (English) E-Verify (Spanish)

Right to Work Statement

Right to Work (English) Right to Work (Spanish)