Product Security Engineer

Job Description

At Boeing, we innovate and collaborate to make the world a better place. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.

is seeking motivated and talented Associate (Level
2), Mid Level (Level 3 ) or Senior (Level
4) Product Security Engineers in Colorado Springs, Colorado
! These positions will support the performance of product security and cybersecurity engineering for the National Team Command, Control, Battle Management and Communications (C2

BMC) Programs & Networks.

Missile Defense programs are part of the Ballistic Missile Defense System which defends the United States homeland and its regional allies all over the world. Be a part of our passionate and highly motivated team who are excited to be on the forefront of defense of our nation.

Boeing offers a comprehensive benefits package including generous Paid Time Off (PTO), flexible work schedules,
paid parental leave for mothers and fathers, 401k matching, tuition assistance for earning advanced degrees, and paid medical leave programs.

Primary Responsibilities

The chosen team member will work with other industry partners in the development and execution of a comprehensive assessment program supporting the C2

BMC Element of the Ballistic Missile Defense System. This individual will act as the primary group to for testing and applying patches on all main software/application systems on the system including workstation and servers. This team will be supporting the system by interacting continuously with the cyber team compliance team to remediate any vulnerabilities founding during automated or manual cyber scans.

As patching can be an impacting activity, a detailed oriented individual is a must for this position.

• Developing and verifying installation instructions for Cyber Tools and Vendor Patches

• Applying Security Technical Implementation Guides (STIGs)

• Managing and addressing any Cyber Tasking Orders (CTOs) related to the Cyber Tools

• Integrating, configuring and automating the installation of the Elastic Stack with the existing set of Cyber Tools on the C2
  
  BMC system

• Working with various C2
  
  BMC teams to ensure compatibility and seamless integration of Cyber Tools within the larger system

• Documentation and verification of all installation and configuration steps for the labs and operations deliveries

• Providing feedback to Cyber Leadership and engineers to improve the cybersecurity tools and processes

• Verifying the Elastic Stack meets contractual requirements

• Documenting the installation and delivering installation instructions to deploy the Elastic Stack

• Installing, deploying, and unit testing other Cyber Tools such as ACAS, Arc Sight, Big Fix, Delinea, Endgame, ESS, Axway Repeater, and Responder for Windows MFA in National Team (NT) labs, the C2
  
  BMC Testbed (CTB), and Operations.

• Collaborating with local Information System Security Officers (ISSOs) to ensure compliance with relevant cybersecurity standards and regulations

• Assess organization-wide security and privacy risk and update assessment results on an ongoing basis

• Perform system analysis and develop system test for cyber threats, cyber test activities, and the cybersecurity of large-scale events

• Perform cyber risk assessments and develop risk mitigation plans

• Support the engineering installation & analysis of patches and various system updates and upgrades to determine system consequence of these changes

• Attend, collect data from, out brief, and facilitate collaboration and project management from various program boards

• Support cyber threat intelligence activities

• Support the development and maintenance of cyber scanning, patching, remediation, tools and applications

• Support, as required, TEMPEST, DFARS, COMSEC, CNSSI, and other compliance drivers as needed

• Support and facilitate various ATO packages including processing IAVMs and CTOs for the same

• Perform and/or support the development of tools for cyber forensics

• Develop, define efficiencies and improvements to tools to improve team productivity

• Perform system analysis trade studies to define technical concepts and solutions

This position is expected to be 100% onsite. The selected candidate will be required to work onsite at one of the listed location options. (Colorado Springs, CO.)

This position may require the ability to obtain access to an MDA facility. Access to the facility requires a background investigation by U.S. government authorities.

This position requires candidate acceptance by industry partner resource control board.

This position requires an active Top Secret U.S. Security Clearance. (A U.S. Security Clearance that has been active in the past 24 months is considered active.)

• Bachelor of Science degree from an accredited course of study in Engineering, Engineering Technology (includes…