Product Security Analyst

At Boeing, we innovate and collaborate to make the world a better place. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.

Boeing Defense Space & Security (BDS) is seeking an experienced Product Security Analyst to support the P-8A program in Richardson, TX. The candidate will join a team supporting product cybersecurity efforts across multiple systems and labs for both training and development efforts. The BDS Product Security Engineering team is responsible for the cybersecurity and resiliency of Boeing products and services, bridging the gap between high level security policies/requirements and technical/operational implementation of those requirements. The work is multi-disciplinary and includes activities in cyber and systems security analysis, engineering, test, and vulnerability assessments and mitigation.

At Boeing, we innovate and collaborate to make the world a better place. By joining our team, you will become an integral part of an organization that deeply values teamwork, fosters creativity, and upholds the highest standards of engineering technical excellence to ensure our products are secure. Contribute to work that matters with a company where diversity, equity and inclusion are shared values. Find your future with us!

Position Responsibilities:

• Works in classified environments, evaluating computing systems, products and platforms conformance in order to generate and analyze cybersecurity data.
• Makes mitigation recommendations and execute same.
• Supports the integration of security and resiliency into products and services throughout the lifecycle of the product/service to meet all applicable certifications and customer requirements.
• Researches, analyzes and compiles technical data to support the integration of security and resiliency into products and services throughout the lifecycle of the product/service to meet all applicable certifications and customer requirements.
• Supports the research, collection, interpretation, test, and analysis of technical data for system-level product security concepts in the projected operational environments to optimize effectiveness over the program lifecycle.
• Supports product security risk/attack surface/vulnerability analyses and security audits of applications and application stacks of various provenances.
• Supports the analysis, triage, aggregation, escalation, and reporting of relevant product security and anti-tamper data and other information sources for attack indicators and potential security breaches.
• Performs product security risk/attack surface/vulnerability analyses and security audits of applications and application stacks of various provenances.
• Analyzes, triages, aggregates, escalates, and reports relevant product security and anti-tamper data and other information sources for attack indicators and potential security breaches.
• Analyzes malware and attacker tactics to improve detection capabilities. Coordinates during incidents. Correlates and performs trend analysis Prepares and presents technical reports and briefings
• Perform assessments of software assurance activities and products, to ensure the security pedigree of our software solutions
• Develops, maintains and identifies improvements for the planning, organization, implementation and monitoring of the requirements management processes.
• Works under minimal direction
• The role on the team will require obtaining certifications such as Security+ or CISSP to comply with contract requirements
• Willingness to travel 25% to client site.

This position requires an active U.S. Secret Security Clearance and Top Secret Post-start, for which the US Government requires US Citizenship.

This position is expected to be 100% onsite. The selected candidate will be required to work onsite at one of the listed location options.

Basic Qualifications (Required Skills & Experience):

• Bachelor’s degree
• DoD 8570.01-M IAT Level III Certification (e.g., CASP+ CE, CCNP Security, CISA, CISSP (or Associate), GCED, GCIH, CCSP); and IASAE Level II (e.g., CASP+ CE, CISSP (or Associate), CSSLP)
• CompTIA Security+ Certification

Preferred Qualifications (Desired Skills & Experience):

• 4 year Technical degree
• Experience acting as a Test Engineer or Software Assurance Engineer.
• Experience with development and implementation of Anti-Tamper technologies and security controls.
• Experience with software development tools, such as, DOORS, ClearCase, GitLab, Jira, Coverity, etc.
• Experience with developing Threat Modeling, Attack Profiles, Threat and Risk Assessments on aircraft platforms and weapon systems.
• Experience with evaluating and refining customer security requirements.
• Experience capturing/documenting system security designs throughout the System Development Lifecycle (SDLC) process (e.g., System Diagrams, System Security Plans, Hardware Baselines, Software Baselines, Network Diagrams, Security Controls Traceability Matrices, Standard Operating Procedures, etc.)
• Ability to work independently, actively participate on integrated teams, and lead a task, project, or small team. Requires guidance and direction from more senior level technicians, specialists, and managers only when dealing with new, uncertain situations.
• Experience working in a customer facing role executing Information System Security Vulnerability Assessments, to include conducting customer out briefs and generating reports.
• Experience working with multiple technologies such as RHEL 8 and above, and/or CISCO IOS/NXOS, and/or Windows server 2019 and above, and/or Windows 10 or newer.
• Experience with multiple scripting languages (e.g., PowerShell, Python, Bash, Ansible, etc.)
• Experience creating system security implementation solutions against customer requirements.
• Experience with installation and configuration of Splunk Enterprise; to include creation of Apps and Dashboards to audit analysis specifications.
• Experience in Group Policy Management and implementation.
• Experience with Agile development within a DevSecOps environment

Drug Free Workplace:

Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies.

Pay & Benefits:

At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base pay and variable compensation opportunities.

The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.

The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements.

Pay is based upon candidate experience and qualifications, as well as market and business considerations.

Summary pay range: $107,950 – $145,050

Applications for this position will be accepted until Jun. 07, 2025

Export Control Requirements: This position must meet export control compliance requirements. To meet export control compliance requirements, a “U.S. Person” as defined by 22 C.F.R. §120.15 is required. “U.S. Person” includes U.S. Citizen, lawful permanent resident, refugee, or asylee.

Export Control Details: US based job, US Person required

Education

Bachelor’s Degree or Equivalent Required

Relocation

Relocation assistance is not a negotiable benefit for this position.

Security Clearance

This position requires an active U.S. Secret Security Clearance (U.S. Citizenship Required). (A U.S. Security Clearance that has been active in the past 24 months is considered active)

Visa Sponsorship

Employer will not sponsor applicants for employment visa status.

Shift

This position is for 1st shift

Equal Opportunity Employer:

Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.

Source ⇲