Software Security Capability Lead Engineer

About the position

The Software Security Capability is looking for a Software Security Capability Lead Engineer to drive secure software solutions into a complex hybrid-cloud engineering environment within the Air Dominance portfolio in Berkeley, MO. This position is aligned to the enterprise Product Security Engineering (PSE) operating group, supporting both programs across the Saint Louis Portfolio. The role involves impacting the next generation of engineering environments at Boeing, contributing to the future of national defense through advanced military capabilities.

Responsibilities

• Incorporate key security concepts through the initial planning, design, and implementation of complex engineering environments spanning multiple sites.
• Collaborate closely with program customers to support the definition of security requirements and ensure systems verification.
• Engage with multiple engineering disciplines, including cloud computing, software engineering, and Systems Engineering.
• Treat security as a primary concern and engage from the early phases of design.
• Mentor and help to build a team of software security engineers.
• Build up a strong set of security tools into the DevSecOps pipeline.
• Assist in establishing, integrating standards and processes for product security engineering.
• Utilize Risk Engineering digital thread to inform product requirements surrounding cyber survivability.
• Provide security expertise to Air Dominance program management and engineering teams.

Requirements

• Bachelor of Science degree from an accredited course of study in engineering, engineering technology, chemistry, physics, mathematics, data science, or computer science.
• Demonstrated ability to execute in complex digital engineering constructs, including Software Development environments.
• Experience with DoD Security standards such as JSIG, NIST SP 800-53, and associated RMF processes.
• Experience managing or contributing to the Authorization to Operate (ATO) lifecycle.
• Experience designing, securing, and accrediting cloud-based systems in accordance with DoD or IC security requirements.
• Experience coordinating and presenting technical content to a diverse audience.
• Experience securing commercial cloud environments using practices such as Zero Trust and Security Monitoring.
• Familiarity with the Secure Software Development Lifecycle (SDLC).

Nice-to-haves

• Experience developing or integrating ground or platform architectures.
• Experience overseeing the design, development, and testing of engineering solutions.
• Experience developing multi-layer security architectures.
• Experience providing work instructions that support the design and documentation of system architectures.
• Experience in product cyber security for avionics systems.
• Experience performing adversity (threat) analysis and security risk assessments.
• Experience generating product cyber security artifacts for customer/certifiers.
• Security certification is desired (e.g. CISSP).

Benefits

• Competitive base pay and variable compensation opportunities.
• Health insurance, flexible spending accounts, health savings accounts.
• Retirement savings plans, life and disability insurance programs.
• Programs that provide for both paid and unpaid time away from work.