Boeing
Defense Space & Security
ProductSecurityEngineer(MidlevelorSenior)
“Product Security Engineer (Mid-level or Senior) at Boeing. Skills: Product Security, Cybersecurity, Risk Assessment, Vulnerability Analysis. Develop product security and resiliency. Analyze customer security requirements”
Industry & Context.
Analyze customer and regulatory information system security requirements; Decompose them into system security design specifications and verifiable requirements; Research, collect, interpret, test, and analyze technical data; Perform and support product security risk, attack-surface, and vulnerability analyses; Analyze, triage, aggregate, escalate, and report relevant product security, anti-tamper, and telemetry/data sources; Analyze malware and attacker tactics; Provide technical analysis to inform containment and remediation; Make mitigation recommendations; Provide ISSO and IT administrators with system security expertise
Active U. S. Top Secret / Sensitive Compartmented Information (TS/SCI) with Polygraph Security Clearance (US Citizenship Required), Ability to obtain and retain Special Access Program (SAP) approval, Willingness to travel 25%, 100% onsite at the Richardson, TX office location
What They're Looking For.
Must Have
Bachelor of Science degree in Engineering, Engineering Technology (including Manufacturing Technology), Computer Science, Data Science, Mathematics, Physics, Chemistry or non-US equivalent qualifications, 5+ years of product security experience, CompTIA Security+ certification
Nice to Have
DoD 8570.01-M IAT Level III Certification (e.g., CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, CCSP); and IASAE Level II (e.g., CASP+ CE, CISSP (or Associate), CSSLP), 5 or more years’ experience with the implementation of security controls IAW DoD Risk Management Framework (RMF), 5 or more years’ experience with common DoD vulnerability and compliance assessment tools (e.g., SCAP, STIGs, ACAS) and processes, 5 or more years’ experience in security control test plan development and execution, Experience with software development tools, such as, DOORS, ClearCase, GitLab, Jira, Coverity, etc., Experience with developing Threat Modeling, Attack Profiles, Threat and Risk Assessments on aircraft platforms and weapon systems, Experience with evaluating and refining customer security requirements, Experience working with multiple technologies such as RHEL 8 and above, and/or CISCO IOS/NXOS, and/or Windows server 2019 and above, and/or Windows 10 or newer, Experience with multiple scripting languages (e.g., PowerShell, Python, Bash, Ansible, etc.), Experience creating system security implementation solutions against customer requirements, Experience with installation and configuration of Splunk to include creation of Apps and Dashboards to audit analysis specifications, Experience in Group Policy Management and implementation, Experience with Agile development within a DevSecOps environment
What You'll Do.
Develop product security and resiliency
Analyze customer security requirements
Decompose requirements into design specifications
Develop system requirements and architectures
Interface with customers and stakeholders
Define product security requirements for suppliers
Evaluate computing systems for conformance
Analyze technical data for security integration
Perform product security risk analyses
Conduct security audits
Analyze malware and attacker tactics
Coordinate incident response activities
Make mitigation recommendations
Perform software assurance assessments
Ensure security of facilities and equipment
Provide system security expertise
Create and maintain documentation
Deploy and enforce security policies
Develop requirements management processes
Conduct R&D for security solutions
Train junior staff members
How You'll Work.
Team & Collaboration
Interface directly with customers, lead engineers, suppliers, and government stakeholders; Coordinate their integration into Boeing products and services; Coordinate and support incident response activities; Coordinate implementation with engineering and program teams; Provide ISSO and IT administrators with system security expertise; Work under minimal direction; Effectively communicate technical findings and recommendations to technical peers and leadership
Communication Scope
Effectively communicate technical findings and recommendations in reports and briefings
Process & Methodology
Develop, maintain, and improve planning, organization, implementation, and monitoring of requirements management processes
Applying for this Product Security Engineer (Mid-level or Senior) role?
Most applicants get filtered before a human reads their resume. See if yours makes the cut.
How to Apply on Workday
- Workday has a multi-step form — save your progress after every section.
- "Apply With LinkedIn" can fail or lose data; manual entry is more reliable.
- Watch for the "Submit for Review" final step — hitting "Save" alone does not submit.
- Job requisition numbers are useful when following up with HR by email.
ANONYMOUS · UNFILTERED
What do employees actually say about Boeing?
Real rants from real employees. Read before you apply.