Cybersecurity Engineer - Lead / Senior / Principal - ESS

at  Boeing

At Boeing, we innovate and collaborate to make the world a better place. From the seabed to outer space, you can contribute to work that matters with a company where diversity, equity and inclusion are shared values. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.
The Boeing Defense, Space & Security (BDS) organization, Product Security Engineering is seeking a Cybersecurity Engineer - Lead / Senior / Principal to support our Cybersecurity activities in El Segundo, CA.
Our Space and Launch Team creates the next generation products and services for the BDS business unit. We work with proprietary customers in the development of the next-generation technologies in space. Our group works all facets of engineering from technology investment, concept development, proposal writing, requirements and design, build, integration, test, and demonstration of products in their relevant environments.
The Cybersecurity Engineer will be a part of a high-performing team that are immersed in high intensity projects. As a member of our team, you will the opportunity to work closely with our customers to provide a secure and resilient system. This role needs an individual that has a deep understanding of cybersecurity domains and comprehension of cybersecurity during all systems engineering development life-cycle phases of a program.

PREFERRED QUALIFICATIONS (DESIRED SKILLS/EXPERIENCE):

• DoD 8570 certification at IAT Level III or higher (such as CISSP, CASP, CE, CISA, GCED, or GCIH).
• 10 or more years’ related work experience or an equivalent combination of education and experience (level 5)
• 15 or more years’ related work experience or an equivalent combination of education and experience (level 6)
• Experience working with cryptography and Anti-Tamper design knowledge.
• Experience in governance and compliance standards.
• Experience leading, inspiring and motivating a team to ensure project success.
  Typical Education/Experience:

• Product Security Engineer responsible for applying an interdisciplinary, collaborative approach to plan, design, develop, validate and verify life-cycle balanced information system security solutions.
• Serves as a technical lead for product security engineering responsible for flowing down requirement to payload/bus and eventually at the unit level.
• Develops test and verification plans for requirements.
• Leads a team of Product Security Engineers that will implement cybersecurity features on satellite vehicles and implement RMF and other accreditation processes for embedded computing systems.
• Evaluates resilient network operations for a satellite system and implements effective crypto keying techniques.
• Evaluates customer/operational needs to define and coordinate system security requirements, integrate technical parameters and assure compatibility of all physical, functional and program interfaces.
• Performs various analyses to optimize total system of systems and/or system architecture.
• Identifies product assets risks, threats, and vulnerabilities in accordance with accepted industry, professional, and government standards, ensuring security design integrity, availability, confidentiality, non-repudiation and contract compliance. Knowledgeable in secure manufacturing and Anti-Tamper design.
• Evaluates remediation recommendations and develops cost to estimate documentation.
• Employs system security processes, methods, and tools and assures their consistent application. Resolves cross-functional technical issues.
• Implements appropriate Accreditation and Authorization activities per JSIG, DoD and ICD 503 RMF, NISPOM, or DoD Overprint to the NISPOM supplement as required by customers.
• Coordinates with systems engineers, system administrators, network and software engineers, test and validation engineers, and program management on security related activities and requirements.
• Troubleshoots and work under minimal direction.
• Implements standards found in NIST Cybersecurity Framework, NIST 800-53, NIST 800-171, CNSSI 1253, and ISO 27001.