FlightAware- Technical Project Manager, Product Cyber Controller (Remote)

at  Collins Aerospace

QUALIFICATIONS YOU MUST HAVE:

• Typically requires a University Degree and minimum 5 years prior relevant experience or an Advanced Degree in a related field and minimum 3 years of experience or in absence of a degree, 9 years of relevant experience.
• Must be authorized to work in the U.S. without sponsorship now or in the future. RTX will not offer sponsorship for this position.
• Experience in project management and systems engineering, cyber security, software engineering, or similar; executing projects with Agile methodology.
• Experience with independently leading and supporting technical meetings with customers, teammates, program management and leadership.

QUALIFICATIONS WE PREFER:

• Prior experience as a software or systems engineer is a big plus!
• Demonstrate leadership by example, building trust and inspiring people through a shared vision where people feel valued, empowered, and fulfilled.
• Ability to build confidence with customers, engineers, technicians, program management, and product line management to achieve program and business objectives.
• Experience with proposal effort coordination, including estimating, bidding, narrative writing, risk identification, and technical leadership.
• Experience with software repository management, vulnerability management, and collaboration tools.
• Experience with cloud computing technologies.
• Experience with NIST 800-53.

DO YOU WANT TO PLAY A KEY ROLE IN THE DEFENSE AND PROTECTION OF FLIGHTAWARE AGAINST CYBERSECURITY THREATS?

FlightAware, part of the Connected Aviation Solutions (CAS) unit of Collins Aerospace, has built the world’s leading aviation software platform, processing over 180+ million incoming messages an hour from over 30,000 individual data feeds—2 terabytes a day and growing! We provide the best, most complete, and most accurate real-time flight-tracking service and are proud to have built a wide variety of successful products on this foundation that have become central to the aviation industry at large.
Data, Applications, and Platforms Engineering (DAPS Engineering) is searching for a Product Cyber Controller (PCC). This role will suit someone with strong organizational and collaboration skills who has an interest in Cyber Security, but not necessarily be deeply technical. The PCC is a Technical Project Manager (TPM) who ensures that Cyber Security management practices are embedded into the way development teams go about their work. This role serves as the primary point of contact for a product’s cyber security governance, risk, and incident response. In this role, you will have a close working relationship with cyber security and engineering leaders to bridge the gap by converting cyber security policies to actionable plans.
The PCC must maintain a working knowledge of software and systems development and demonstrate sound decision-making, strategic thinking and networking skills. The mission is to successfully design, develop, integrate, and maintain secure systems and software products that support a marketplace for the exchange of data for the aviation community. This role ensures that practices are in place to monitor the cyber vulnerabilities within a product and that vulnerabilities are proactively assessed in terms of criticality and addressed in accordance with their criticality.

Working at Collins Aerospace means you are a member of a dynamic and high functioning team where your opinion matters and your work will have a highly visible impact. We also make time to have fun, share our passions, and be ourselves. Regardless of role, we expect excellent interpersonal and communication skills across all hires at Collins Aerospace. We look for candidates who will thrive here, meaning they demonstrate clear communication, embrace open feedback, trust their colleagues, and are driven to execute, deliver, and complete projects independently and efficiently.

• Please ensure the role type (defined below) is appropriate for your needs before applying to this role.

Remote: Employees who are working in Remote roles* will work primarily offsite (from home). An employee may be expected to travel to the site location as needed.

• Position is remote; however, if you live within a reasonable commute of a Collins site with other colleagues you interact with, your manager will discuss whether there is a degree of onsite presence associated with this role.

WHAT YOU WILL DO:

• Represent FightAware in cybersecurity and compliance initiatives. In doing so, you will be responsible for reviewing vulnerability reports, drafting an engineering plan to address them, and coordinating with system administrators, the CAS cybersecurity organization, and fellow TPMs to execute the vulnerability plan.
• Responsible for making sure that the processes and practices that will be followed in the case of a Cyber Event are documented and communicated to the wider team. In the case of a Cyber Event, the PCC will also play the role of Event Manager, bringing the right people together as per the playbook and ensuring that all necessary stakeholders are kept up to date in terms of how the event is being managed.
• Translate complex cyber audit requirements into actionable plans for engineering teams including being responsible for ISO Audit readiness, classification of all products in export control system, ensuring product compliance with NIST 800-53 and other engineering documented processes.
• Develop and enact resource and schedule execution plans that are aligned with multiple product line manager roadmaps and internal processes and procedures; understand risks and variances; assist in the development of mitigation plans; become 100% involved in the day-to-day execution of these plans.
• Responsible for compliance of SSDLC (Secure Software Development Lifecycle) system documentation, response plans, and security monitoring.
• Coordinate risk assessments with the CAS Cyber GRC (Governance, Risk, and Compliance) team and develop and manage Remediation Plans (POAMs-Plan of Action and Milestones) for exceptions, deviations and vulnerability management.
• Steer the FlightAware engineering team indirectly using strong interpersonal, mentoring and negotiation skills, and will be responsible for managing project risks/issues and elevating to upper management when appropriate.
• Collaborate across divisions and the enterprise, necessitating an ability to clearly communicate objectives, approach, and status to audiences with varying degrees of understanding of the project details and underlying technology.
• Ensure that a wide range of different stakeholders (for example Value Stream Leader, Software Engineering Manager, Product Owners, PCL, business Cyber Security team, and development team) are all kept up to date with the Cyber Security state of a particular product and the progress against the plan of any agreed plans.
• Responsible for adhering to, and supporting Collins process methodologies while developing and managing commitments to meet project schedule deliverables and quality requirements.
• Accountable to ensure that engineering communication plans and analysis plans are being followed if an event does occur.
• Represent FlightAware at cyber project gate reviews (CMS), stakeholder meetings, monthly cyber review meetings, & bi-weekly cyber security governance boards meetings.
• Be the primary contact for completing the cyber portion of customer questionnaires.
• Learn the RTX Digital Policy Framework (DPF) and ensure the product teams are complying.
• Potential to travel up to 10%.