At Boeing, we innovate and collaborate to make the world a better place. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.
Boeing Commercial Airplanes is seeking a Product Security Log Analytics Engineer (Mid-Level, Senior, or Lead) to join our Cybersecurity Innovation team in Seattle, WA or Everett, WA. This position is the primary focal leading the team responsible for ensuring security, safety, and resiliency of all digitally-connected, in-service BCA airplanes with the development and support of detection capabilities, methods, and tools. As such, this position offers a great career opportunity for someone with log analytics experience wanting to grow their leadership skills and/or enter the exciting and growing area of cybersecurity. Our teams are currently hiring for a broad range of experience levels including Mid-Level, Senior, or Lead Product Security Log Analytics Engineer.

BASIC QUALIFICATIONS (REQUIRED SKILLS/EXPERIENCE):

• Bachelor of Science degree from an accredited course of study in engineering, engineering technology (includes manufacturing engineering technology), chemistry, physics, mathematics, data science, or computer science
• 5+ years of experience in systems engineering, systems integration, software engineering, electrical engineering, certification, network security and/or cybersecurity

PREFERRED QUALIFICATIONS (DESIRED SKILLS/EXPERIENCE):

• Senior or Lead: 10+ years of related work experience or an equivalent combination of education and experience
• Working knowledge in systems, engineering, systems integration, airplane systems, and/or airplane certification
• Experience in cybersecurity, security network architecture, embedded systems security, security testing and evaluation, network design, cyber physical systems or PKI infrastructure.
• Experience planning and executing penetration tests in one of more of the following domains:
• Windows and Linux Operating Systems and IP-based networks
• Web applications
• Avionics, embedded systems, non-standard ethernet protocols (ARINC, etc.)
• Hardware
• Proficiency in detection engineering and data correlation techniques
• Experience coordinating and presenting technical content to a diverse audience
• Experience in scripting languages (ex. Python) and/or query languages (ex. SQL)
• Familiarity with system administration techniques to manage log collection agents and infrastructure
• Possess one or more security certifications, including but not limited to: CISSP; Security+; CEH; CCNA; UNIX/LINUX System Administration; GIAC GPEN, GWAPT, or GXPN; Offensive Security Certified Engineer (OSCE); Offensive Security Certified Professional (OSCP)

• Assesses risks, threats, and vulnerabilities of the product assets and production systems in accordance with accepted industry, professional, and government standards to ensure security design integrity, availability, confidentiality, and regulatory compliance
• Develops and coordinates system security requirements in alignment with continued airworthiness strategies
• Provides technical data and develops documentation in accordance with requirements and system security engineering processes and procedures for internal reference and external delivery
• Coordinates with security testers to validate coverage and impacts to analysis
• Coordinates with external customers and internal stakeholders on detection capabilities in alignment with continued airworthiness strategies
• Leads and participates in the development of effective and/or innovative technical solutions with an awareness of consequences of judgements individually and through teams
• Supports the development, implementation, and communication of the sustainment program to ensure continued product security, safety, and resiliency of digitally-connected, in-service airplane models
• Ensures configuration management and security of facilities, equipment, tools, data, networks, and resources used to ensure continued product security and resiliency of in-service models