Note: This position is open exclusively to candidates currently enrolled in the Hiring Our Heroes Fellows Program. Applications from individuals not participating in the program will not be considered.
At Boeing, we innovate and collaborate to make the world a better place. We’re committed to fostering an environment for every teammate that’s welcoming and respectful, with great opportunity for professional growth.
Find your future with us, Boeing Global Services (BGS) has an exciting opening for a Multi-level Product Security Engineer (PSE) to join our Government Training Engineering team at McConnell Air Force Base, Kansas, to support the KC-46 Maintenance Training System (MTS).
The selected candidate will leverage Cybersecurity and Information Assurance (IA) background to be a technical leader and support the MTS network and Boeing customers. They will align product engineering support with information system security tasks to support the KC-46 MTS schoolhouse. This position includes guidance for the design and implementation of appropriate security controls and requirements per JSIG, DoD RMF, NISPOM, or other related governing security policies and governance as required by customers. The PSE is responsible for working with the KC-46 Special Programs Office ISSM in maintaining and implementing all Information System Security policies, standards, and directives to ensure assessment and authorization of information systems.
____________________________________
Position Responsibilities:
- Advise customers on product security and certification, including impacts of product or service modifications.
- Support change management by assisting stakeholders with documentation of ports, protocols, and services.
- Participate in security risk management processes to identify and mitigate residual risks.
- Implement Risk Management Framework (RMF) processes for product development and maintenance.
- Conduct continuous security compliance monitoring, assessments, and audits.
- Prepare and deliver technical reports and briefings.
- Identify and analyze root causes of security issues, prioritize threats, and recommend corrective actions.
- Stay current with industry trends and evolving information security standards.
- Support development and enforcement of MTS information security policies, standards, and procedures.
- Ensure compliance with DFARS and Cybersecurity Maturity Model Certification (CMMC) requirement
____________________________________
Basic Qualifications (Required Skills/Experience):
- Bachelor of Science degree in Engineering, Engineering Technology (including Manufacturing Technology), Computer Science, Data Science, Mathematics, Physics, Chemistry or non-US equivalent qualifications directly related to the work statement
- IAM Level 2 DoD 8570.01 compliant certification (e.g., CAP, Security+ CE, CISSP, CASP, CISM, GSLC)
- 5+ years of experience with cybersecurity policies and Risk Management Framework (RMF) implementation, including DAAPM, CNSSI 1253, ICD-503, JSIG, and/or NIST SP 800 series
- Experience with security tools such NESSUS, ACAS, DISA STIGs, SCAP, Audit Reduction, and HBSS
- Experience scanning for vulnerabilities, implementing mitigations, installing, administering, and troubleshooting Windows (10, Windows Server 2016+) and Linux Distributions (Red Hat) systems
- Experience with VMware infrastructure
- Experience in generating cybersecurity artifacts and incident response protocols
- Experience developing secure architecture, threat analysis, and risk assessments, architecture, and designs
____________________________________
Preferred Qualifications (Desired Skills/Experience):
- 9+ years’ related work experience or an equivalent combination of education and experience (Senior Level)
- IAM Level III certification (CISSP, GSLC, or CISM) in good standing.
- 7+ years’ experience with cybersecurity policies and RMF implementation
- Experience as an ISSO or ISSM
- Experience in Systems or Product Security Engineering
- 7+ years’ software experience with languages like C/C++ and Ada, including secure coding practices.
- Experience assessing and documenting cybersecurity compliance
- Familiarity with Windows 11, Raspberry Pi, and related tools
____________________________________
Drug Free Workplace:
Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies.
