Senior Cybersecurity Engineer-P3

Date Posted:

2025-02-03

Country:

United States of America

Location:

CO901: 6859 North Foothills 6859 North Foothills Highway , Boulder, CO, 80302 USA

Position Role Type:

Onsite

At Raytheon, the foundation of everything we do is rooted in our values and a higher calling – to help our nation and allies defend freedoms and deter aggression. We bring the strength of more than 100 years of experience and renowned engineering expertise to meet the needs of today’s mission and stay ahead of tomorrow’s threat. Our team solves tough, meaningful problems that create a safer, more secure world.

Raytheon is seeking a well-qualified Senior Cyber Security Engineer-P3 to join the Cyber Security Engineering team securing some very interesting systems. The position provides secure software cybersecurity expertise; as well as guiding the secure implementation of databases. The successful candidate is expected to have proven experience implementing secure coding standards, the Defense Information Systems Agency (DISA) Application Security and Development Security Technical Implementation Guide (ASD STIG), database security, Python coding, and experience with the Risk Management Framework (RMF) process and artifact development leading to a successful Authorization to Operate (ATO).  Continuous Integration / Continuous Deployment (CI/CD) pipeline and DevSecOps experience is highly desired; as is the ability to effectively perform in a dynamic, agile development environment. This position requires work onsite in Boulder, CO.

What You Will Do

• Perform security analysis of software applications using both automated tooling (static code analysis, software composition analysis, fuzzing) and manual code and design review

• Support integration of tools and processes into DevSecOps pipelines

• Design, implement, and integrate improvements to software analysis continuous integration tooling

• Perform/analyze compliance scans and generate reports (e.g., STIG, SCAP, SCA, vulnerability scans, etc.)

• Support software developers in remediating issues identified during code analysis & support software developers in integrating security into system designs

Qualifications You Must Have

• Typically requires a Bachelor's degree in Science, Technology, Engineering or Mathematics (STEM) and 5+ years of engineering experience in cyber security

• Active and transferable U.S. government issued Secret Security clearance is required prior to start date. U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance

• Experience with Risk Management Framework (RMF), NIST 800-37, Continuous Monitoring IAW NIST 800-137, Patching IAW NIST 800-40, NIST 800-53 and CNSSI 1253

• Experience with one or more of the following programming languages: C++, Python, JavaScript (or TypeScript), Rust

• Experience with using and configuring static code analysis tooling (e.g. Coverity, Klockwork, SonarQube, etc.)

• Experience with vulnerability discovery using fuzzing (AFL, AFL++, honggfuzz, etc.)

• Required Security Certification in accordance with DoD 8570.01 IASAE-I for a Linux environment (e.g., CASP+ CE and Linux OS Certification); NOTE:  Obtaining IASAE-I certification is required at fstart

Qualifications We Prefer

• An active and transferable U.S. government issued Top Secret/SCI Security Clearance is preferred

• Develop and augment automation through scripting or programming and collaborating w/ teams for security functionality to meet cyber requirements

• Experience identifying, exploiting, and remediating application vulnerabilities

• Experience with cyber security engineering projects (specifically focused on software security) and programs for U.S. Government clients

• Knowledge of secure coding practices and enforcement through DevSecOps pipelines

• Experience identifying, exploiting, and remediating application vulnerabilities

• Experience with application debugging, runtime instrumentation (Strace, eBPF), and reverse engineering (Ghidra, IDA Pro)

• Familiarity with threat modeling tools such as the MITRE ATT&CK framework

• Ability to work in a team environment and work collaboratively across traditional engineering disciplines

• Must be a self-starter capable of multitasking and efficiently managing your time

What We Offer

• Our values drive our actions, behaviors, and performance with a vision for a safer, more connected world. At RTX we value: Trust, Respect, Accountability, Collaboration, and Innovation

• Relocation Eligible – Relocation assistance is available

Learn More & Apply Now!

RTX solves some of the toughest challenges in aerospace and defense. That requires expansive thinking and bold innovation – and that, in turn, requires a culture that is diverse, equitable and inclusive.

We embrace individuality and diversity of thought to fuel opportunity for our employees, our customers, and our communities. We work toward progress, knowing that a more inclusive world is critical to our mission. Not just in this moment, but always.

The salary range for this role is 82,000 USD - 164,000 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an offer, including but not limited to, the role, function and associated responsibilities, a candidate’s work experience, location, education/training, and key skills.

Hired applicants may be eligible for benefits, including but not limited to, medical, dental, vision, life insurance, short-term disability, long-term disability, 401(k) match, flexible spending accounts, flexible work schedules, employee assistance program, Employee Scholar Program, parental leave, paid time off, and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement.

Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including, but not limited to, individual performance, business unit performance, and/or the company’s performance.

This role is a U.S.-based role. If the successful candidate resides in a U.S. territory, the appropriate pay structure and benefits will apply.

RTX anticipates the application window closing approximately 40 days from the date the notice was posted. However, factors such as candidate flow and business necessity may require RTX to shorten or extend the application window.

RTX is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability or veteran status, or any other applicable state or federal protected class. RTX provides affirmative action in employment for qualified Individuals with a Disability and Protected Veterans in compliance with Section 503 of the Rehabilitation Act and the Vietnam Era Veterans’ Readjustment Assistance Act.

Privacy Policy and Terms:

Click on this link to read the Policy and Terms