Lead Product Security Test Analyst (Virtual)
USA - Berkeley, MO
Boeing
Welcome to the official corporate site for the world's largest aerospace company and leading manufacturer of commercial jetliners and defense, space and security systems. Learn about our passion for innovation, our products, careers and more.Company:
The Boeing CompanyJob ID:
00000417887Date Posted:
2024-03-15Location:
USA - Berkeley, MOJob Description Qualifications:
The Boeing Test & Evaluation (BT&E) Product Security Capability team is seeking a Lead Product Security Test Analyst (Virtual) to join our virtual team. The selected candidate will be a core member in the extension and establishment of an enterprise offensive cyber test capability. This position will work as part of a team to drive the integration and enhancement of cyber test and development of skills across the Product Security Engineering team. Primary responsibilities will be focused on the planning and execution of mission-based risk assessments, vulnerability assessments, and penetration tests. In addition to the specific program responsibilities, the successful candidate will be joining a team of advanced Product Security Engineers and Analysts from across the Boeing Enterprise that are jointly developing best practices, techniques and tools, as well as a community to draw upon to deliver best value to our customers.
Occasional travel to Puget Sound, Berkeley, MO, Huntsville, AL, and other locations may be required based on business needs.
Position Responsibilities Include:
- Consult on the integration of security and resiliency into products and services throughout the lifecycle of the product/service to meet all applicable certifications and customer requirements
- Oversee the assessment of the results from research, collection, interpretation, test, and analysis of highly complex technical data for system-level product security concepts in the projected operational environments to optimize effectiveness over the program lifecycle
- Oversee complex product security risk/attack surface/vulnerability analyses and security audits of applications and application stacks of various provenances
- Assess the analysis, triage, aggregation, escalation, and reporting of relevant product security and anti-tamper data and other information sources for attack indicators and potential security breaches
- Correlate and perform complex trend analysis
- Lead the analysis of malware and attacker tactics to provide forward thinking improvements of detection capabilities
- Assess findings, prepares and presents technical impacts to senior levels of leadership
This position has been identified as a virtual opportunity and will not require the selected candidate to relocate.
This position requires an active Secret U.S. Security Clearance (U.S. Citizenship Required). (A U.S. Security Clearance that has been active in the past 24 months is considered active.)
Basic Qualifications (Required Skills/Experience):
- Bachelor's Degree or higher
- 5+ years of experience performing penetration testing or building product security test environments and custom cyber test tools
- 5+ years of experience working with Department of Defense (DoD) organizations, projects and/or programs
- 5+ years of experience leading or managing projects and/or teams
- Ability to build and assess network and software systems architectures
- Willing to travel domestically as needed
Preferred Qualifications (Desired Skills/Experience):
- 15 or more years of related work experience or an equivalent combination of education and experience
- Experience designing and/or testing product systems
- Experience coordinating and presenting technical content to a diverse audience
- Familiarity with DoD cyber test activities (e.g., CTT, MRAP-C, CVI, CVPA, AA)
- Experience interfacing with DoD organizations as a program lead
- Experience building a cyber test or vulnerability management program
- Strong understanding of blue team operations (SOC, NOC, Hunt, IR)
- Experience with program planning (cost and schedule)
- Experience performing mission-based cyber risk assessment and criticality analysis
- Demonstrated ability to identify new opportunities and engage with stakeholders to define/plan/resource/deliver solutions
- Certifications: Please state/include on resume
Typical Education/Experience:
Education/experience typically acquired through advanced education (e.g. Bachelor) and typically 15 or more years' related work experience or an equivalent combination of education and experience (e.g. Master+13 years' related work experience, 19 years' related work experience, etc.).
Relocation:
Relocation assistance is not a negotiable benefit for this position.
Drug Free Workplace:
Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies.
Shift:
This position is for 1st shift.
At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base pay and variable compensation opportunities.
The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.
The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements.
Pay is based upon candidate experience and qualifications, as well as market and business considerations.
Summary pay range: $136,850 – $212,750
Applications for this position will be accepted through March 31, 2024.
Boeing is the world's largest aerospace company and leading manufacturer of commercial airplanes and defense, space and security systems. We are engineers and technicians. Skilled scientists and thinkers. Bold innovators and dreamers. Join us, and you can build something better for yourself, for our customers and for the world.
Relocation:
No relocation availableExport Control Requirement:
U.S. Government Export Control Status: This position must meet export control compliance requirements. To meet export control compliance requirements, a “U.S. Person” as defined by 22 C.F.R. §120.15 is required. “U.S. Person” includes U.S. Citizen, lawful permanent resident, refugee, or asylee.Safety Sensitive:
This is not a safety sensitive positionContingent Upon Award Program
This position is not contingent upon program awardExperience Level:
Individual Contributor - 5Job Type:
RegularJob Code:
6M05I5 (6M5)Equal Employment Opportunity:
Stay safe from recruitment fraud! The only way to apply for a position at Boeing is via our Careers website.
Learn how to protect yourself from recruitment fraud - Recruitment Fraud Warning
Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.
Request an Accommodation - Requesting Interview Accommodations
Applicant Privacy - Applicant Privacy
EEO is the law Poster - EEO is the law
Boeing Policy on EEO - Boeing EEO Policy
Affirmative Action and Harassment - Boeing Affirmative Action and Harassment
Boeing Participates in E – Verify
- English - E-Verify (English)
- Spanish - E-Verify (Spanish)
Right to Work Statement
- English - Right to Work (English)
- Spanish - Right to Work (Spanish)
Tags: Audits Blue team C Clearance Compliance DoD Malware Pentesting Privacy Product security Risk assessment Security Clearance SOC Vulnerability management
Perks/benefits: Career development Competitive pay Flex hours Insurance Relocation support Team events
More jobs like this
Explore more InfoSec / Cybersecurity career opportunities
Find even more open roles in Ethical Hacking, Pen Testing, Security Engineering, Threat Research, Vulnerability Management, Cryptography, Digital Forensics and Cyber Security in general - ordered by popularity of job title or skills, toolset and products used - below.
- Open Information Security Specialist jobs
- Open Senior Cyber Security Engineer jobs
- Open Ethical hacker / Pentester H/F jobs
- Open Information Systems Security Officer (ISSO) jobs
- Open Principal Security Engineer jobs
- Open Cyber Security Architect jobs
- Open Manager Pentest H/F jobs
- Open Product Security Engineer jobs
- Open Staff Security Engineer jobs
- Open Cyber Security Specialist jobs
- Open Cybersecurity Analyst jobs
- Open Senior Information Security Analyst jobs
- Open Chief Information Security Officer jobs
- Open Consultant infrastructure sécurité H/F jobs
- Open IT Security Analyst jobs
- Open Cybersecurity Consultant jobs
- Open Consultant SOC / CERT H/F jobs
- Open Senior Information Security Engineer jobs
- Open Security Specialist jobs
- Open Senior Penetration Tester jobs
- Open Senior Security Architect jobs
- Open Cybersecurity Specialist jobs
- Open Security Researcher jobs
- Open IT Security Engineer jobs
- Open Security Operations Analyst jobs
- Open CISM-related jobs
- Open Windows-related jobs
- Open Network security-related jobs
- Open ISO 27001-related jobs
- Open Pentesting-related jobs
- Open Application security-related jobs
- Open Agile-related jobs
- Open GCP-related jobs
- Open Vulnerability management-related jobs
- Open SaaS-related jobs
- Open CISA-related jobs
- Open Analytics-related jobs
- Open IAM-related jobs
- Open Threat intelligence-related jobs
- Open APIs-related jobs
- Open Security assessment-related jobs
- Open Java-related jobs
- Open Malware-related jobs
- Open DevOps-related jobs
- Open Security Clearance-related jobs
- Open IDS-related jobs
- Open Forensics-related jobs
- Open CEH-related jobs
- Open EDR-related jobs
- Open Kubernetes-related jobs