Associate Supply Chain Cybersecurity Specialist

Associate Supply Chain Cybersecurity Specialist

Company:

The Boeing Company

The Boeing Company is looking for a highly experienced and detail-oriented Associate Supply Chain Cybersecurity Specialist to join our team in North Charleston, SC.       

The successful candidate will thrive in a dynamic, high-volume environment, contributing significantly to current transformation projects while executing ongoing risk management activities.

You will be a crucial interface, communicating complex cybersecurity concepts effectively to both technical and non-technical audiences, including senior management and third-party representatives.

This role requires a self-driven team player with a deep understanding of cybersecurity principles, risk management frameworks (e.g., NIST 800-161 and NIST 800-171), and supply chain dynamics. You will exercise sound judgment, operate with significant autonomy, influence stakeholders, contribute directly to the protection of Boeing's critical assets, and play an active role in shaping the future state of our program.

This position offers the unique opportunity to impact program development and implementation directly, with the expectation of assisting the team transition to sustained operational excellence as the program matures.

Position Responsibilities:

• Contribute to the development, documentation, and implementation of the TPRM governance model, strategy, policies, and operating procedures

• Participate in the configuration and implementation of a Third-Party Risk Management (TPRM) technology platform

• Assist in designing and implementing an inherent risk assessment methodology, including questionnaire development and risk scoring logic within the TPRM tool

• Help establish and document processes for validating supplier due diligence information, such as certifications and questionnaires

• Collaborate on developing requirements and testing plans for integrating the TPRM platform with other internal Boeing systems (Procurement, Contracts, Security systems, etc.)

• Support the adoption and refinement of Artificial Intelligence (AI)/automation tools for TPRM tasks like contract review and due diligence assistance

• Assist in developing communication materials and training for internal stakeholders and suppliers regarding updated TPRM processes and requirements

• Conduct and evolve comprehensive cybersecurity risk assessments of current and potential suppliers using established methodologies

• Analyze assessment results, supplier environments, and threat intelligence to identify, prioritize, and document cybersecurity risks and control gaps

• Develop, negotiate, and track pragmatic risk mitigation and corrective action plans with suppliers

• Serve as a key cybersecurity subject matter expert during procurement activities and contract negotiations, ensuring appropriate cybersecurity clauses are included and enforced

• Define and communicate cybersecurity control requirements to suppliers based on risk assessments, data sensitivity, service criticality, and regulatory obligations (NIST 800-171, CMMC, etc.)

• Review and present technical reports and briefings on supplier cybersecurity postures and associated risks to various stakeholders

• Act as a cybersecurity Subject Matter Expert (SME), providing guidance and consultation to internal teams and business partners on supply chain security matters

• Contribute to the continuous improvement of new TPRM processes, tools, and metrics

Basic Qualifications (Required Skills/Experience):

• 1+ years of experience with cybersecurity, information protection and/or risk management

• 1+ years of experience in working information technology, risk, or compliance

• 1+ years of experience with managing vendors, contracts, and/or working with supply chain processes or systems

Preferred Qualifications (Desired Skills/Experience):

• Bachelor's degree or higher in Cybersecurity, Information Technology, Risk Management, Computer Science, or a related field

• Cybersecurity certifications such as: CTPRP, CTPRA, C3PRM, CRISC, CISSP, CISM, Security+

• Experience with C-SCRM frameworks, particularly NIST SP 800-161r1

• Experience working with cybersecurity or risk management frameworks (e.g., NIST CSF, ISO 27001)

• Experience participating in technology implementation projects, especially GRC/TPRM tools

• Experience in process design, documentation, and improvement

• Experience evaluating, implementing, or using GRC platforms and/or specialized TPRM tools

• Experience with application of regulatory frameworks relevant to aerospace and defense (e.g., NIST SP 800-171, CMMC, DFARS, ITAR)

• Experience with contract review and negotiation related to cybersecurity requirements

• Experience with project management principles and practices

• Experience working and communicating asynchronously with teammates and cross-functional partners

Drug Free Workplace:

Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies.

Pay & Benefits:

At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base pay and variable compensation opportunities.

The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.

The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements.

Pay is based upon candidate experience and qualifications, as well as market and business considerations.

Summary pay range: $74,800 - $101,200

Language Requirements:

Not Applicable

Education:

Not Applicable

Relocation:

Relocation assistance is not a negotiable benefit for this position.

Export Control Requirement:

This is not an Export Control position.

Safety Sensitive:

This is not a Safety Sensitive Position.

Security Clearance:

This position does not require a Security Clearance.

Visa Sponsorship:

Employer will not sponsor applicants for employment visa status.

Contingent Upon Award Program

This position is not contingent upon program award

Shift:

Shift 1 (United States of America)

Stay safe from recruitment fraud! The only way to apply for a position at Boeing is via our Careers website. Learn how to protect yourself from recruitment fraud - Recruitment Fraud Warning

Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.

EEO is the law

Boeing EEO Policy

Request an Accommodation

Applicant Privacy

Boeing Participates in E – Verify

• E-Verify (English)
• E-Verify (Spanish)

Right to Work Statement

• Right to Work (English)
• Right to Work (Spanish)