Product Security Software Engineer (Mid-Level or Experienced)

Company: BOEING
Location: Seattle
Posted on: November 20, 2023

Job Description:

Job DescriptionAt Boeing, we innovate and collaborate to make the world a better place. From the seabed to outer space, you can contribute to work that matters with a company where diversity, equity and inclusion are shared values. We're committed to fostering an environment for every teammate that's welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.The Boeing Company is looking for a range of experience levels including; Mid-Level or Experienced Level Product Security Software Engineer (Mid-Level or Experienced).Product Security Engineer to join the Enterprise Product Security Software organization in order to support certification and software assurance inside Boeing Commercial Airplanes (BCA) in Seattle, WA.The successful candidate will be responsible for overseeing the development, implementation, and sustainment of product security and resiliency throughout the software development lifecycle; protecting our commercial airplanes' products and the aviation ecosystem.As a member of the Enterprise Product Security Software organization, you will have support from security experts across all business units, and exposure to a large variety of products and services. With a focus on BCA Product Security Software efforts, you will be accountable for the security of software products and pipelines across the world's leading portfolio of commercial airplanes. At Boeing, we innovate and collaborate to make the world a better place. From the seabed to outer space, you can contribute to work that matters with a company where diversity, equity and inclusion are shared values. We're committed to fostering an environment for every teammate that's welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us. Position Responsibilities:

• Assess the adversity of airborne software subsystems in the context of the larger system
• Manage risk in accordance with accepted industry, professional, and government standards to ensure security design integrity, availability, confidentiality, and regulatory compliance
• Develop security requirements and coordinate with multiple system stakeholders to identify and properly implement and verify security measures to mitigate the risks, threats and vulnerabilities
• Perform requirements verification on software security engineering products using inspection, analysis, demonstration, and test methods
• Perform Common Vulnerabilities and Exploits (CVE) analysis and coordinate with system stakeholders to appropriately mitigate and address to reduce likelihood and consequences of CVE impacting system safety and operation
• Support airplane system certification by providing required artifacts to the Boeing Cybersecurity Certification organization
• Provide technical data and develop documentation in accordance with requirements and system security engineering processes and procedures for internal reference and external delivery
• Support Product Security Incident Response Team to respond to security events
• Organize several software teams to ensure consistent application of security standards within the Software Development Lifecycle
• Identify improvements to ensure software implementation is aligned to industry and Boeing software assurance best practicesThis position is expected to be 100% onsite. The selected candidate will be required to work onsite at one of the listed location options. This position requires the ability to obtain a U.S. Security Clearance for which the U.S. Government requires U.S. Citizenship. An interim and/or final U.S. Secret clearance Post Start is required. Basic Qualifications (Required Skills/Experience):
  • Bachelor, Master or Doctorate of Science degree from an accredited course of study, in engineering, computer science, mathematics, physics or chemistry
  • 2+ years of work-related experience in CybersecurityPreferred Qualifications (Desired Skills/Experience):
    • 5 or more years' related work experience or an equivalent combination of education and experience
    • Experience with Information Systems Security
    • Excellent written/oral communication skills to effectively convey cybersecurity concepts across business and technical stakeholders
    • Experience with software development or network engineering
    • Experience in security network architecture, network security, embedded systems security, security testing and evaluation, network design, PKI infrastructure
    • Cybersecurity Certifications not limited to Security+, CISSP, CEH etc.Typical Education/Experience: Mid-Level: (Level 3) Education/experience typically acquired through advanced technical education from an accredited course of study in engineering, computer science, mathematics, physics or chemistry (e.g. Bachelor) and typically 5 or more years' related work experience or an equivalent combination of technical education and experience (e.g. PhD, Master+3 years' related work experience). In the USA, ABET accreditation is the preferred, although not required, accreditation standard.Experienced: (Level 4) Education/experience typically acquired through advanced technical education from an accredited course of study in engineering, computer science, mathematics, physics or chemistry (e.g. Bachelor) and typically 9 or more years' related work experience or an equivalent combination of technical education and experience (e.g. PhD+4 years' related work experience, Master+7 years' related work experience). In the USA, ABET accreditation is the preferred, although not required, accreditation standard.Relocation:This position offers relocation based on candidate eligibility. Drug Free Workplace:Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies.Shift Work Statement: This position is for 1st shift.This is a union represented position.At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base pay and variable compensation opportunities. The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work. The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements. Please note that the salary information shown below is a general guideline only. Salaries are based upon candidate experience and qualifications, as well as market and business considerations. Summary pay range Min - Max:Mid-Level: $119,000 - $161,000 Experienced: $146,000 - $197,000 Export Control Requirements: U.S. Government Export Control Status: This position must meet export control compliance requirements. To meet export control compliance requirements, a "U.S. Person" as defined by 22 C.F.R. 120.15 is required. "U.S. Person" includes U.S. Citizen, lawful permanent resident, refugee, or asylee.Export Control Details: US based job, US Person requiredEqual Opportunity Employer:Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.

Keywords: BOEING, Seattle , Product Security Software Engineer (Mid-Level or Experienced), IT / Software / Systems , Seattle, Washington