Urban Air Mobility Cybersecurity Engineer
Remote United States
We are looking for a Cybersecurity Engineer to join our team. The goal of a Cybersecurity Engineer at Wisk is to ensure the development, implementation, and sustainment of product security and resiliency engineering through requirements, design, analysis, build, test, production, operations, and support and sustainment. You will be part of the Systems Engineering and Integration team.
Location Options: USA – Mountain View, CA; USA – Atlanta, GA; USA - Remote
Why we need you
- The successful candidate has experience in Product Security and Systems Engineering, including requirements, design, analysis, build, test, production, operations, and support and sustainment. In this role, the candidate must have strong communication and leadership skills with the ability to inspire and lead by influence a team of like-minded engineers.
What you will do
- Lead the development, implementation, and sustainment of product security and resiliency throughout the requirements, design, analysis, build, test, production, operations, and support and sustainment lifecycle
- Develop/execute Product Security test plans and activities (penetration testing, cooperative and non-cooperative vulnerability testing, adversarial analysis and testing, cyber tabletop exercises, use cases, and advanced virtual/emulated testing) throughout the maturation of program life cycle
- Utilize the Risk Engineering digital thread to inform future requirements surrounding cyber survivability of the platform against specified cyber threats
- Perform criticality, adversity, threat analysis on complex, system of systems environments.
- Lead, establish, and integrate standards for supplier cybersecurity engineering artifacts to meet applicable certification requirements and timelines
- Coordinate the analysis of systems or components for risks, vulnerabilities, and threats
- Coordinate collaborative testing to assess mitigating controls and design elements
- In some areas, you will be working closely with system and components suppliers specifying and managing our technical needs as well as validating their offers and supporting their execution
- Innovating/implementing solutions for early T&E capability utilizing virtualized systems for Product Security assessment
- As a system integrator, you will help define complex aircraft or major system interfaces using the best methods and tools available in the industry
- Lead coordination with governments, customers, suppliers, and industry to identify risks and improve industry and regulatory security standards and requirements for programs and interfacing systems
- Lead coordination across multiple product security partners, including Aurora Flight Sciences and Boeing
- Lead risk reduction and where appropriate research and development activities resulting in innovative solutions for implementation in product and services offering
- Lead the advisement of IPTs on maintaining product security and certification, including security consequences of modifying products and services
- Travel (up to 25%) may be required
This position allows remote telecommuting. The selected candidate may be required to work onsite at one of the listed location options in support of workshops, reviews, and test events, (up to 25% travel).
What you have done:
- Bachelor's Degree or higher in engineering, computer engineering, computer science, software engineering, mathematics, or physics
- Minimum of 5 years experience as a Systems Engineer or Product Security Engineer for aerospace systems
- Experience performing risk assessments and risk management within networked operational technology (OT) systems
- Demonstrated ability to identify new opportunities and engage with stakeholders to define/plan/resource/deliver solutions
- Experience with the development of cybersecurity requirements and the secure architectures, using requirements management tools such as Polarion, DOORS, Requiem, etc.
- Ability to conduct requirements-based testing and analysis, architecture design and product design for embedded systems.
- Experience coordinating and presenting technical content to a diverse audience
- Able to work autonomously
- Experience and applied knowledge of complex safety critical systems development process methodologies and associated practices such as but not limited to DO-356A, DO-326A
- Solution oriented individual with a strong analytical mindset
- Strong communication skills and ability to tailor communication style to suit the audience
- Ability to adapt quickly or propose needed changes to achieve early results in a timely fashion
- Demonstrated performance embracing challenges, keeping commitments, and delivering results within reasonable expectations
- Experience integrating complex, safety-critical systems and solving associated problems.
- Experience leading a dynamic team and working across engineering and non-engineering disciplines
- Experience working across multiple Engineering disciplines
- Experience applying the certification regulations from several of the following: Part 23, 25, 27, 29, 33, 35
Desired:
- Experience in leading system and component level cyber test and evaluation, including threat and security assessments, and tabletop exercises
- Experience with MBSE process, language (SysML, UPDM) and tools (Cameo, Enterprise Architect) and its use in complex system development
- Experience designing and/or testing product systems
- Experience facilitating and/or supporting Cyber Tabletop (or equivalent) exercises
- Experience planning and executing penetration tests
- Experience building and/or leading a technical test team
- Experience with program planning (cost and schedule)
- Certifications: Please state/include on resume
Who you are:
- You are a highly motivated, self starting individual with a broad set of skills and never afraid of facing complex technical challenges
- You are a solution oriented individual with a strong analytical mindset
- You have strong communication skills and can easily tailor your communications to suit the audience
- You can adapt quickly or propose changes needed to achieve early results in a timely fashion
- You embrace challenges and take commitments and deliver results within reasonable expectations
- You are a positive team player
Export Control Requirement
- This position must meet Export Control compliance requirements, therefore a “US Person” as defined by 22 C.F.R. § 120.15 is required. “US Person” includes US Citizen, lawful permanent resident, refugee, or asylee.
- In order to fully access partner provided product security materials this position requires U.S. Citizenship.
In order to protect the health and safety of all Wisk employees in the workplace, we are requiring that all employees receive an FDA-authorized vaccination against COVID-19 prior to physically returning to Wisk’s U.S. offices. Exceptions/accommodations are considered for employees with disabilities or sincerely-held religious beliefs or practices that prevent them from being vaccinated against COVID-19.
Wisk Aero provides equal employment opportunities (EEO) to all employees and applicants for employment without regard to race, color, religion, sex, national origin, age, disability or genetics. In addition to federal law requirements, Wisk Aero abides by applicable state and local laws governing nondiscrimination in employment in every location in which the company has facilities. This policy applies to all terms and conditions of employment, including recruiting, hiring, placement, promotion, termination, layoff, recall, transfer, leaves of absence, compensation and training.
Wisk Aero is an E-Verify employer.
* Salary range is an estimate based on our InfoSec / Cybersecurity Salary Index 💰
Tags: C Compliance Computer Science Mathematics Pentesting Physics Product security Risk assessment Risk management Security assessment Vulnerabilities
Perks/benefits: 401(k) matching Career development Flex hours Flex vacation Health care Insurance Salary bonus Team events Wellness
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Ethical hacker / Pentester H/F jobs
- Open Information Security Specialist jobs
- Open Manager Pentest H/F jobs
- Open Senior Cyber Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Cyber Security Specialist jobs
- Open Product Security Engineer jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Senior Information Security Analyst jobs
- Open Cybersecurity Analyst jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant SOC / CERT H/F jobs
- Open Cybersecurity Consultant jobs
- Open Security Specialist jobs
- Open Senior Information Security Engineer jobs
- Open Cybersecurity Specialist jobs
- Open Senior Penetration Tester jobs
- Open Security Researcher jobs
- Open Sr. Security Engineer jobs
- Open Senior Security Architect jobs
- Open Security Operations Analyst jobs
- Open Clearance-related jobs
- Open ISO 27001-related jobs
- Open Windows-related jobs
- Open Application security-related jobs
- Open Network security-related jobs
- Open Agile-related jobs
- Open Pentesting-related jobs
- Open Vulnerability management-related jobs
- Open GCP-related jobs
- Open Analytics-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open IDS-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open EDR-related jobs
- Open CEH-related jobs
- Open Kubernetes-related jobs
- Open IPS-related jobs