Product Security (Cyber) Test Engineer (Associate or Experienced)

USA - Berkeley, MO, United States

Boeing

Welcome to the official corporate site for the world's largest aerospace company and leading manufacturer of commercial jetliners and defense, space and security systems. Learn about our passion for innovation, our products, careers and more.

View all jobs at Boeing

Apply now Apply later

Product Security (Cyber) Test Engineer (Associate or Experienced)

Company:

The Boeing Company

The Boeing Test & Evaluation (BT&E) team is seeking a Product Security (Cyber) Test Engineer to support the Air Proprietary 1 (AP1) program in Berkeley, MO. This role will be responsible for executing the cyber test lifecycle. You will be joining a cybersecurity pentest team focused on product testing. The successful candidate will perform threat assessments and execute adversarial testing with engineering rigor. You will lead the development of cyber test cases, conduct pentesting, and perform test reporting as a part of an engineering team located in the greater St. Louis area.

You will be joining a growing multi-disciplinary cybersecurity engineering organization that is responsible for the security and resiliency of our products, platforms, and services. This position will support the various phases of the Product Test Lifecyle by supporting test proposals, developing test plans and schedules, executing pentesting, and supporting post-test activities.  Joining this team will put you at the cutting edge of Boeing Product Security testing.

BT&E is currently hiring for a broad range of experience levels including Associate and Experienced level Product Security Test Engineers.

This position is expected to be 100% onsite.  The selected candidate will be required to work on-site at one of the listed location options.

Position Responsibilities Include:

  • Execute penetration tests to identify, exploit, and assess a target system’s vulnerabilities in a threat-representative manner on embedded systems and IP-based networks
  • Support emulation of advanced cyber adversary tactics, techniques and procedures (TTPs) targeting avionic systems
  • Support controlled attack simulations that test the effectiveness of a blue team and its capabilities to detect, block, and mitigate attacks and breaches
  • Support development of exploits and malware targeting modern operating systems and defenses
  • Support the development of cyber test tools as necessary to achieve threat emulation objectives
  • Communicate recommendations for improvements via reports or presentations to customers using common frameworks such as MITRE ATT&CK, Cyber Kill Chain, etc.
  • Occasional domestic and international travel as needed

Basic Qualifications (Required Skills/Experience):

  • Bachelor of Science degree from an accredited course of study in engineering, engineering technology (includes manufacturing engineering technology), chemistry, physics, mathematics, data science, or computer science    
  • 1+ years of experience working with Department of Defense (DoD) organizations, projects and/or programs
  • 1+ years of experience planning and executing penetration testing of either IT based systems or Avionics embedded systems
  • Able to travel both domestically and internationally

Preferred Qualifications (Desired Skills/Experience):

  • 3 or more years of related work experience or an equivalent combination of education and experience
  • Demonstrated ability to engage with stakeholders to define/plan/resource/deliver solutions (state years of experience)
  • Experience working with Product Security (non-IT) Cyber Compliance and/or Avionics Embedded systems risk management assessment
  • Experience supporting Cyber Table Top, Mission Based Cyber Risk Assessment, or equivalent exercises
  • Experience evaluating cybersecurity in one or more of the following domains:
    • Windows, Linux, VxWorks, and INTEGRITY Operating Systems
    • IP-Based Networks
    • Avionics, Embedded Systems, Non-Standard Ethernet Protocols (ARINC, MIL-STD)
    • RF interfaces
  • Experience with cybersecurity compliance frameworks such as NIST CSF, DoD RMF, CMMC or PCI/DSS
  • Experience coordinating and presenting technical content to a diverse audience
  • Experience designing and/or testing product systems
  • Experience with program planning (cost and schedule)
  • Experience with Aircraft Platforms, Weapon Systems and/or C5ISR

Drug Free Workplace:

Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies.

Pay & Benefits:

At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent.  Elements of the Total Rewards package include competitive base pay and variable compensation opportunities.  

The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.  

The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements.

Pay is based upon candidate experience and qualifications, as well as market and business considerations.  

Summary pay range for associate level: $91,800 – $124,200

Summary pay range for experienced level: $112,200 - $151,800

Language Requirements:

Not Applicable

Education:

Bachelor's Degree or Equivalent

Relocation:

This position offers relocation based on candidate eligibility.

Export Control Requirement:

This position must meet export control compliance requirements. To meet export control compliance requirements, a “U.S. Person” as defined by 22 C.F.R. §120.15 is required. “U.S. Person” includes U.S. Citizen, lawful permanent resident, refugee, or asylee.

Safety Sensitive:

This is not a Safety Sensitive Position.

Security Clearance:

This position requires an active U.S. Secret Security Clearance (U.S. Citizenship Required). (A U.S. Security Clearance that has been active in the past 24 months is considered active) This position requires ability to obtain program access, for which the U.S. Government requires U.S. Citizenship only.

Visa Sponsorship:

Employer will not sponsor applicants for employment visa status.

Contingent Upon Award Program

This position is not contingent upon program award

Shift:

Shift 1 (United States of America)

Stay safe from recruitment fraud! The only way to apply for a position at Boeing is via our Careers website. Learn how to protect yourself from recruitment fraud - Recruitment Fraud Warning

Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.

EEO is the law

Boeing EEO Policy

Request an Accommodation

Applicant Privacy


Boeing Participates in E – Verify

Right to Work Statement

Apply now Apply later
Job stats:  0  0  0

Tags: Blue team C Clearance CMMC Compliance Computer Science Cyber Kill Chain DoD DoD RMF Ethernet Exploit Exploits Linux Malware Mathematics MITRE ATT&CK NIST Pentesting Physics Privacy Product security Risk assessment Risk management RMF Security Clearance TTPs Vulnerabilities VxWorks Windows

Perks/benefits: Competitive pay Flex hours Health care Insurance Relocation support

Region: North America
Country: United States

More jobs like this

Explore more career opportunities

Find even more open roles below ordered by popularity of job title or skills/products/technologies used.