Product Security Architect
Vacancy expired!
Job DescriptionAt Boeing, we innovate and collaborate to make the world a better place. From the seabed to outer space, you can contribute to work that matters with a company where diversity, equity and inclusion are shared values. We're committed to fostering an environment for every teammate that's welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.The Boeing Company is seeking a Product Security Architect to lead transformation activities including managing security posture and risks to Secure Digital Transformation Environment (SDTE), a multi-tenant unclassified software development environment serving numerous BDS Programs. Product Security Engineering is supporting the Boeing Enterprise DevSecOps transformation across our business units by securing software engineering environments and factories, supporting the transition from on premise infrastructure to the cloud, and defining security practices and policies to integrate with development and operations of products and services.Boeing offers a comprehensive benefits package including generous Paid Time Off (PTO), flexible work environment , paid parental leave, 401k matching, very generous tuition assistance for earning advanced degrees, and paid medical leave programs. For more information, click here. Position Responsibilities:
- Set project-wide security priorities in accordance with continuous vulnerability management and compliance requirements.
- Perform security risk assessments for proposed SDTE changes, grant security approval for changes, and identify mitigating security controls as necessary.
- Supervise response to security incidents in accordance with policy.
- Lead collaboration of Engineering and IT teams to attain and maintain information system security compliance in accordance with DFARS / NIST SP 800-171.
- Lead within a SAFe Agile methodology of planning and managing statement of work.
- Bachelor of Science (or greater) from an accredited course of study, in engineering, computer science, mathematics, physics, or chemistry or other technical degree
- At least 3 years of experience with Risk Management Framework (RMF) OR DFARS NIST 800-171 Compliance
- 3 or more years working with Systems Security Plan (SSP), Security Controls Traceability Matrix (SCTM) and supporting compliance documents such as Access Control Plan (ACP)
- At least 3 years of experience working Plan of Action and Milestones (POAM) writing, tracking, and management
- Working knowledge and experience in Agile
- Possess CISSP Certification
Vacancy expired!