Description
Job Description At Boeing, we innovate and collaborate to make the world a better place. From the seabed to outer space, you can contribute to work that matters with a company where diversity, equity and inclusion are shared values. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us. BDS is looking for a system/product security engineer to support the P-8A AAS program out of Richardson, TX. The candidate will join a growing System Security Engineering (SSE) team, supporting product security efforts across multiple systems and labs for both training and development contracts. The SSE function serves to bridge the gap between high level security policies/requirements and technical/operational implementation of those requirements. Position ResponsibilitiesConduct assessments of existing IT architecture for compliance with security requirements from applicable security frameworks. Provide continuous monitoring support for information systems. Develop IT architecture deliverables, specific to information security countermeasure implementations, for operational systems and systems under development. Provide technical cyber security engineering guidance to IT Administrators, Systems Architect, Systems Engineers, and Software Developers. Provide system security engineering guidance on the design and implementation of technical policies for user/computer groups and network devices. Responsible for the design and implementation of security systems across the entire organization's networks, including IDS, firewalls, log capture, host based protections, vulnerability scanning tools, etc. Assess networks/applications/systems and identify vulnerabilities, reporting results to ISSO/IT. Provide ISSO and IT administrators with system security level expertise to assist with the gathering/securing of data to support incident investigation and response.
Assist ISSO in monitoring, interpreting, and reacting to security device outputs, create documentation in support of authorization/accreditation packages, and deploy security policies, standards, and guidance. Work independently, actively participate on integrated teams, and lead a task, project, or small team. Requires guidance and direction from more senior level technicians, specialists, and managers only when dealing with new, uncertain situations. Provides guidance to lower level technicians and specialists.
Security Clearance: This position requires an active U.S. Secret Security Clearance/SCI, for which the U.S. Government requires U.S. Citizenship. (A U.S. Security Clearance that has been active in the past 24 months is considered active) Required QualificationsBachelor’s Degree or higher in Engineering, Cybersecurity, or another related technical field DoD 8570.01-M IAT Level II Certification (e.g. CCNA Security, CySA+, GICSP, GSEC, Security+ CE, CND, SSCP); with the ability to obtain IAT Level III within 6 Months Experienced with the implementation of security controls IAW DoD Risk Management Framework (RMF)
Preferred QualificationsExperienced with common DoD vulnerability and compliance assessment tools (e.g. SCAP, STIGs, ACAS) and processes. Experienced capturing/documenting system security designs throughout the System Development Lifecycle (SDLC) process (e.g. System Diagrams, System Security Plans, Hardware Baselines, Software Baselines, Network Diagrams, Security Controls Traceability Matrices, Standard Operating Procedures, etc.) Experienced in security control test plan development and execution.
Experienced with installation and configuration of McAfee ePO and DoD required endpoint products. Experienced working in a customer facing role executing Information System Security Vulnerability Assessments, to include conducting customer out briefs and generating reports. Experienced with installation and configuration of Splunk Enterprise; to include creation of Apps and Dashboards to audit analysis specifications. Experienced in working with multiple technologies; strong working knowledge of RHEL 7 and above, and/or CISCO IOS/NXOS, and/or Windows server 2016 SHB and above, and/or DoD Windows 10 SHB. Experienced with evaluating and refining customer security requirements. Experienced creating system security implementation solutions against customer requirements. Experienced in Group Policy Management and implementation. Experienced in multiple scripting languages (e.g. PowerShell, Python, Bash, etc.) DoD 8570.01-M IASAE I Certification (e.g. CASP+ CE, CISSP (or Associate), CSSLP)
Typical EducationEducation/experience typically acquired through advanced technical education from an accredited course of study in engineering, computer science, mathematics, physics or chemistry (e.g. Bachelor) and typically 5 or more years' related work experience or an equivalent combination of technical education and experience (e.g. PhD, Master+3 years' related work experience). In the USA, ABET accreditation is the preferred, although not required, accreditation standard Relocation: This position offers relocation based on candidate eligibility. Drug-Free Workplace:
Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies.
Equal Opportunity Employer: Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.
|
