Cyber Security Assessment Specialist

Job Description

Boeing’s Information Security Vulnerability Management team has an immediate need for professional cyber-security assessors to lead and conduct both application and data layer security assessments across the entire organization. These assessors have direct, customer-facing engagement responsibilities as well as participate in cross-department reviews and support internal and external security initiatives. If you are looking for a unique position where you are a part of a strong team, where your contributions will be valued, and you want the opportunity to lead and make a difference by utilizing your numerous talents and strong technical skills to assess security threats and vulnerabilities, then look no further.
 
The ideal candidate will possess strong technical skills across Information Systems including experience assessing web and database technologies using both manual and automated techniques, conducting application source code reviews, and evaluating secured middleware services, as required. With the aid and guidance of senior team members, the candidate will perform limited penetration testing and routine exploit analysis, will analyze architecture and system functionality for security issues across multiple technologies. The candidate will perform automated vulnerability testing where applicable, evaluate system security configurations and contribute as needed to the development and evaluation of attack scenarios.
 
The successful candidate will coordinate with senior team members to evaluate findings and help developers conduct root cause analyses, prepare and deliver technical reports and briefings that clearly communicate discovered security threats and vulnerabilities to a wide and diverse audience ranging from application developers and system administrators to all levels of executive management.
 
The successful candidate will have, or be able to obtain a security clearance and appropriate professional certifications such as CISSP, CEH, GIAC, be proficient in Information Security tools (including web proxies, scanners, sniffers, and fuzzers) and manual testing techniques to exploit vulnerabilities in the OWASP top 10, and must have a broad range of skills in Information Systems and Information Security that range from web servers and services to transport layer protocols. Competency in scripting or programming skills in languages that relate to application and system penetration testing such as: JavaScript, PERL, Python, C, C++, C#, .NET and/or Java programming knowledge is required.
This position requires an active (or ability to obtain) U.S. Security Clearance, for which the US Government requires US Citizenship.
Division
CIO, Information & Analytics

Relocation Assistance Available
No. Relocation assistance is not a negotiable benefit.

Qualifications
Technical bachelor’s degree and typically 5 or more years’ related work experience or a Master’s degree with typically 3 or more years’ or a PhD degree or an equivalent combination of education and experience. A technical degree is defined as any four year degree, or greater, in a mathematic, scientific or information technology field of study.

 

This position requires:
 
Experienced in Information Security tools (including web proxies, scanners, sniffers, and fuzzers)
Experienced in manual testing techniques to exploit vulnerabilities in the OWASP top 10
Have a broad range of skills in Information Systems and Information Security that range from web servers and services to transport layer protocols. 
Experienced in scripting or programming skills in languages that relate to application and system penetration testing (a minimum of two of the following): JavaScript, PERL, Python, C, C++, C#, .NET, Java
Experience with Application Programming Interfaces (APIs) and scripting languages

Experience Level
Individual Contributor

Job Type
Standard

Travel
No

Contingent Upon Program Award
No

Union
No

Job Code
3AQ1P3

Source:https://jobs.boeing.com/job/-/-/185/3306407?utm_source=Indeed&utm_medium=organic&utm_campaign=Indeed