Lead Product Security Test Analyst (Virtual)

At Boeing, we innovate and collaborate to make the world a better place. From the seabed to outer space, you can contribute to work that matters with a company where diversity, equity and inclusion are shared values. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.

The Boeing Test & Evaluation (BT&E) Product Security Capability team is seeking a Lead Product Security Test Analyst (Virtual) to join our virtual team. The selected candidate will be a core member in the extension and establishment of an enterprise offensive cyber test capability. This position will work as part of a team to drive the integration and enhancement of cyber test and development of skills across the Product Security Engineering team. Primary responsibilities will be focused on the planning and execution of mission-based risk assessments, vulnerability assessments, and penetration tests. In addition to the specific program responsibilities, the successful candidate will be joining a team of advanced Product Security Engineers and Analysts from across the Boeing Enterprise that are jointly developing best practices, techniques and tools, as well as a community to draw upon to deliver best value to our customers.

Occasional travel to Puget Sound, Berkeley, MO, Huntsville, AL, and other locations may be required based on business needs.

Position Responsibilities Include:

• Consult on the integration of security and resiliency into products and services throughout the lifecycle of the product/service to meet all applicable certifications and customer requirements
• Oversee the assessment of the results from research, collection, interpretation, test, and analysis of highly complex technical data for system-level Product Security concepts in the projected operational environments to optimize effectiveness over the program lifecycle
• Oversee complex Product Security risk/attack surface/vulnerability analyses and security audits of applications and application stacks of various provenances
• Assess the analysis, triage, aggregation, escalation, and reporting of relevant Product Security and anti-tamper data and other information sources for attack indicators and potential security breaches
• Correlate and perform complex trend analysis
• Lead the analysis of malware and attacker tactics to provide forward thinking improvements of detection capabilities
• Assess findings, prepares and presents technical impacts to senior levels of leadership

This position has been identified as a virtual opportunity and will not require the selected candidate to relocate.

This position requires an active Secret U.S. Security Clearance (U.S. Citizenship Required). (A U.S. Security Clearance that has been active in the past 24 months is considered active.)

Basic Qualifications (Required Skills/Experience):

• Bachelor's Degree or higher
• 5+ years of experience performing penetration testing or building Product Security Test environments and custom cyber test tools
• 5+ years of experience working with Department of Defense (DoD) organizations, projects and/or programs
• 5+ years of experience leading or managing projects and/or teams
• Ability to build and assess network and software systems architectures
• Willing to travel domestically as needed

Preferred Qualifications (Desired Skills/Experience):

• 15 or more years of related work experience or an equivalent combination of education and experience
• Experience designing and/or testing product systems
• Experience coordinating and presenting technical content to a diverse audience
• Familiarity with DoD cyber test activities (e.g., CTT, MRAP-C, CVI, CVPA, AA)
• Experience interfacing with DoD organizations as a program lead
• Experience building a cyber test or vulnerability management program
• Strong understanding of blue team operations (SOC, NOC, Hunt, IR)
• Experience with program planning (cost and schedule)
• Experience performing mission-based cyber risk assessment and criticality analysis
• Demonstrated ability to identify new opportunities and engage with stakeholders to define/plan/resource/deliver solutions
• Certifications: Please state/include on resume

Typical Education/Experience:

Education/experience typically acquired through advanced education (e.g. Bachelor) and typically 15 or more years' related work experience or an equivalent combination of education and experience (e.g. Master+13 years' related work experience, 19 years' related work experience, etc.).

Relocation:

Relocation assistance is not a negotiable benefit for this position.

Drug Free Workplace:

Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies.

Shift:

This position is for 1st shift.

At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base pay and variable compensation opportunities.

The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.

The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements.

Pay is based upon candidate experience and qualifications, as well as market and business considerations.

Summary pay range: $136,850 – $212,750

Applications for this position will be accepted through March 31, 2024.

Export Control Requirements: U.S. Government Export Control Status: This position must meet export control compliance requirements. To meet export control compliance requirements, a “U.S. Person” as defined by 22 C.F.R. §120.15 is required. “U.S. Person” includes U.S. Citizen, lawful permanent resident, refugee, or asylee.
Export Control Details: US based job, US Person required

Equal Opportunity Employer:

Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.