At Boeing, we innovate and collaborate to make the world a better place. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.
Location:
Brisbane
Category:
Engineering / Technical
Position Type:
Permanent
Job Reference:

ABOUT US

Do you aspire to help build something better? Would you like to work for a company that employs the best talent to develop and deliver world class capabilities and systems to protect Australia and its national interests? Would you like to work on cutting edge projects? Then we would like to talk to you.
As an equal opportunity employer that promotes a diverse and safe workplace environment, one of the country’s leading and preferred defence partners, Boeing Defence Australia (BDA) is now recruiting a Product Security Engineer (PSE) in Brisbane to support the MQ-28 Program.

THE OPPORTUNITY

We are seeking an experienced Product Security Engineer with a solid technical background, a deep knowledge of cyber controls, a working knowledge of systems engineering and solution design practices as well superb stakeholder engagement skills. The successful candidate would have a developed understanding and practical experience applying product security engineering design practices and cyber governance, risk and compliance strategies, in a defence-industry Operational Technology and Information Technology context.

ABOUT US

Boeing Defence Australia is shaping the future of aerospace and delivering some of the nation’s most important programs for the Australian Defence Force. As a BDA employee, you will join other innovative, ethical people who have the critical skills required to develop and deliver world class capabilities and systems to protect Australia and its national interests. Joining us is a chance to make your mark, working with a diverse team that is united in pushing the boundaries of imagination and excellence.
At Boeing, we innovate and collaborate to make the world a better place. From the seabed to outer space, you can contribute to work that matters with a company where diversity, equity and inclusion are core values. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us

It would also be desirable if you had the following additional experience and qualifications:

• Experience in Authorisation and Certification of Aerospace (or Operational Technology) systems within Defence.
• Industry recognised information security qualification such as CISSP, CRISC, CISM or similar
• Defence industry and/or Government security experience.
• Experience with executing within a Scaled Agile Program Execution framework.
• Experience in Model Based Systems Engineering including the use of Dassault Systems Magic System of Systems (Cameo) suite of products

RESPONSIBILITIES:

• Partner with technical SMEs, solution architects and engineers to identify, prioritise, design and implement cyber security solutions to minimise vulnerability and maximise resiliency.
• Ensure system and product designs align with the Protective Security Policy Framework (PSFP), Information Security Manual (ISM) and other relevant industry standard cyber controls.
• Contribute to the development of security policies, procedures, audits, assessments to achieve and maintain system authorisation.
• Perform threat and risk assessments as part of a cyber-maturation process, analyse critical system resources and attack surfaces, identify and prioritise mitigations, and make recommend implementation approaches to the program.
• Evaluate cyber risk/impacts associated with engineering changes to system authorisation baselines and partner with Engineering Integrated Product Teams (IPTs) to plan, design and implement any required mitigations.
• Provide inputs for planning, scheduling, and risk, issues, opportunity activities for cyber security across the Program.
• Participate in the evaluation of process effectiveness and identify areas for improvement.

TO BE SUCCESSFUL IN THIS ROLE, YOU WILL HAVE:

• A Tertiary degree qualification in an engineering or related technical discipline.
• A systems engineering background with extensive experience with security and industry standards (e.g. ISM, PSPF, DSPF, NIST, ACSI).
• Demonstrated experience in applying relevant engineering practices, standards and regulations throughout engineering development lifecycle.
• Experience implementing Secure Development and Operations (SecDevOps) systems and processes to ensure secure Software Development Life Cycle (SDLC) and Continuous Integration/Continuous Deployment (CI/CD) environments.
• Experience with the authorisation processes for Australian government (Defence) systems and developing associated authorisation document packs.
• Strong written and verbal communications skills with the ability to clearly articulate complex security concepts to a broad and diverse audience.

It would also be desirable if you had the following additional experience and qualifications:

• Experience in Authorisation and Certification of Aerospace (or Operational Technology) systems within Defence.
• Industry recognised information security qualification such as CISSP, CRISC, CISM or similar
• Defence industry and/or Government security experience.
• Experience with executing within a Scaled Agile Program Execution framework.
• Experience in Model Based Systems Engineering including the use of Dassault Systems Magic System of Systems (Cameo) suite of products.

Ability to obtain a Security Clearance - The preferred applicant will be required to successfully undergo the security clearance vetting process for NEGATIVE VETTING level 1. The preferred applicant MUST be willing to disclose all relevant and required information and MUST have lived in Australia, or have a checkable background, for at least the preceding Ten years