Senior Embedded Product Security Engineer (Onsite)
HIA32: Cedar Rapids, IA 400 Collins Rd NE , Cedar Rapids, IA, 52498-0505 USA
Full Time Senior-level / Expert Clearance required USD 77K - 163K
RTX
At RTX, we're accelerating ideas to solve some of the world's biggest challenges by bringing together the brightest, most innovative minds across aviation, space and defense.Date Posted:
2024-01-16Country:
United States of AmericaLocation:
HIA32: Cedar Rapids, IA 400 Collins Rd NE , Cedar Rapids, IA, 52498-0505 USAPosition Role Type:
OnsiteDo you want to be like one of those cyber hackers from the movies? Only ethical and not as cringe? As a Senior Embedded Product Security Engineer, you will be on a mission to ensure our products are the safest from any cyber threats and are certified to be airworthy. You will find holes in the armor through ethical abuse and exploitation of our products. Can you break it and make it better?
And no, you don’t need to come from Cyber to work in Cyber. We can work with your engineering skills and transform them giving you your superpower of a niche and rare skillset.
As a Senior Embedded Product Security Engineer, you will influence the secure design and development and security verification testing of new or updated products throughout the Avionics Military Avionics Unit.
Our product portfolio spans a variety of avionics products used on military and commercial applications, from Flight Management Solutions to next generation aircraft connectivity and communication solutions.
As a member of the Cybersecurity Engineering team, you will specialize in developing custom tools and testing techniques to uncover residual defects in our products design and/or implementation. This team excels by embedding a security engineer with the design and implementation teams to ensure cohesive development. Cybersecurity work is never done and this team strives to enhance our products every day!
What YOU will do:
YOU will develop threat models and data flow diagrams to identify untrusted inputs
YOU will collaborate with software architects and development teams to mitigate security threats
YOU will review code to identify weaknesses in the implementation of security functions
YOU will conduct vulnerability assessments of proposed and fielded systems
YOU will develop and execute fuzzing and penetration tests to evaluate product robustness from untrusted inputs
YOU will create custom security testing tools that utilize aerospace specific protocols
YOU will Implement mandatory access control (MAC) through Security Enhanced Linux (SELinux)
YOU will guide the organizational adherence and adoption of the SSDLC
What YOU will learn:
You will learn how to be a credible cyber security engineer and gain niche skills enabling you to be unique in all you do.
You will gain exposure to industry security certifications such as OSCP (Offensive Security Certified Professional) for FREE. That’s a super attractive addition to your resume.
You can take flight to becoming a subject matter expert and leader in product security with exposure to the variety of business and products in an ever-evolving field. We are growing, so can you.
Education & Experience:
Typically requires a degree in Science, Technology, Engineering or Mathematics (STEM) unless prohibited by local laws/regulations and minimum 5 years prior relevant experience or an Advanced Degree in a related field and minimum 3 years of experience or in absence of a degree, 9 years of relevant experience
Qualifications you must have:
The ability to obtain and maintain a U.S. government issued security clearance is required. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance.
Embedded software development experience in Linux OS environment.
Experience coding in C, C++ or Python.
Networking experience - Layer 2 / Layer 3 / Layer 4 protocols.
Skills we value:
Experience creating and analyzing Threat Models and Data Flow Diagrams
Analysis of system and application security design and architecture
Conducting system and application vulnerability assessments
Data/network security implementations with Linux OS
Understanding tailoring and hardening of Linux OS
System and Application Penetration Testing experience
Hands-on experience with static code analysis and collaborating with developers to resolve findings
Creating System & Application Fuzzing / Resiliency Tests
SELinux Policy Development
Experience with Public Key Infrastructure (PKI) device certificate management
Experience or knowledge of RTCA DO-326A / DO-356A
Willingness to embrace continuous improvement through company funded certifications and/or post-grad degrees
Collins Aerospace, an RTX company, is a leader in technologically advanced and intelligent solutions for the global aerospace and defense industry. Collins Aerospace has the capabilities, comprehensive portfolio, and expertise to solve customers’ toughest challenges and to meet the demands of a rapidly evolving global market.
Our Avionics team advances flight deck solutions, airborne communications, vision systems, sensors and fire protection for commercial and military customers around the world. That means we’re helping people reach their destination safely and keeping pilots, passengers, flight crews, airlines, airports and military personnel connected and informed. And we’re providing industry-leading fire protection and safety systems that our customers can count on when it matters most. Are you ready to learn from the most knowledgeable experts in the industry, develop the technologies of tomorrow and reach new heights in your career? Join our Avionics team today.
#reempowerprogram
This role is also eligible for the Re-Empower Program. The Re-Empower Program helps support talented and committed professionals as they rebuild their capabilities, enhance leadership skills, and continue their professional journey. Over the course of the 14-week program, experienced professionals will gain paid, on-the-job experience, have an opportunity to participate in sessions with leadership, develop personalized plans for success and receive coaching to guide their return-to-work experience. Upon completion of the program, based on performance and contributions participants will be eligible for a career at RTX.
Minimum Program Qualifications To qualify for the Raytheon Technologies, Re-Empower Program, candidates should:
· Be on a career break of one or more year at time of application
· Have prior experience in functional area of interest
· Have interest in returning in either a full-time or part-time position
Collins Aerospace Diversity & Inclusion Statement:
Diversity drives innovation; inclusion drives success. We believe a multitude of approaches and ideas enable us to deliver the best results for our workforce, workplace, and customers. We are committed to fostering a culture where all employees can share their passions and ideas so we can tackle the toughest challenges in our industry and pave new paths to limitless possibility.
WE ARE REDEFINING AEROSPACE.
*Please ensure the role type (defined below) is appropriate for your needs before applying to this role.
Onsite: Employees who are working in Onsite roles will work primarily onsite. This includes all production and maintenance employees, as they are essential to the development of our products.
Regardless of your role type, collaboration and innovation are critical to our business and all employees will have access to digital tools so they can work with colleagues around the world – and access to Collins sites when their work requires in-person meetings.
Some of our competitive benefits package includes:
- Medical, dental, and vision insurance
- Three weeks of vacation for newly hired employees
- Generous 401(k) plan that includes employer matching funds and separate employer retirement contribution, including a Lifetime Income Strategy option
- Tuition reimbursement program
- Student Loan Repayment Program
- Life insurance and disability coverage
- Optional coverages you can buy: pet insurance, home and auto insurance, additional life and accident insurance, critical illness insurance, group legal, ID theft protection
- Birth, adoption, parental leave benefits
- Ovia Health, fertility, and family planning
- Adoption Assistance
- Autism Benefit
- Employee Assistance Plan, including up to 10 free counseling sessions
- Healthy You Incentives, wellness rewards program
- Doctor on Demand, virtual doctor visits
- Bright Horizons, child and elder care services
- Teladoc Medical Experts, second opinion program
- And more!
At Collins, the paths we pave together lead to limitless possibility. And the bonds we form – with our customers and with each other -- propel us all higher, again and again.
Apply now and be part of the team that’s redefining aerospace, every day.
The salary range for this role is 77,000 USD - 163,000 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an offer, including but not limited to, the role, function and associated responsibilities, a candidate’s work experience, location, education/training, and key skills.Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement.Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company’s performance.This role is a U.S.-based role. If the successful candidate resides in a U.S. territory, the appropriate pay structure and benefits will apply.RTX anticipates the application window closing approximately 40 days from the date the notice was posted. However, factors such as candidate flow and business necessity may require RTX to shorten or extend the application window.RTX is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.
Privacy Policy and Terms:
Click on this link to read the Policy and Terms
Tags: Application security C Certificate management Clearance Code analysis Linux Mathematics Network security Offensive security OSCP Pentesting PKI Privacy Product security Python Security Clearance STEM Strategy
Perks/benefits: 401(k) matching Career development Competitive pay Fertility benefits Flex hours Flex vacation Health care Insurance Medical leave Parental leave Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Product Security Engineer jobs
- Open Security Operations Engineer jobs
- Open Cybersecurity Analyst jobs
- Open Senior Cyber Security Engineer jobs
- Open Information Security Officer jobs
- Open Principal Security Engineer jobs
- Open Senior Product Security Engineer jobs
- Open Information Security Specialist jobs
- Open Chief Information Security Officer jobs
- Open IT Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Specialist jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Cybersecurity Consultant jobs
- Open Senior Network Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open IT Security Analyst jobs
- Open Manager Pentest H/F jobs
- Open Security Consultant jobs
- Open Security Operations Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open Information Security Architect jobs
- Open SOC-related jobs
- Open Risk assessment-related jobs
- Open Agile-related jobs
- Open Network security-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open ISO 27001-related jobs
- Open GCP-related jobs
- Open IAM-related jobs
- Open Application security-related jobs
- Open Pentesting-related jobs
- Open Threat intelligence-related jobs
- Open Vulnerability management-related jobs
- Open DevOps-related jobs
- Open DoD-related jobs
- Open Security Clearance-related jobs
- Open Malware-related jobs
- Open CEH-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs
- Open Java-related jobs
- Open SaaS-related jobs
- Open DevSecOps-related jobs