Job Description
At Boeing, we innovate and collaborate to make the world a better place. From the seabed to outer space, you can contribute to work that matters with a company where diversity, equity and inclusion are shared values. We're committed to fostering an environment for every teammate that's welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.
The Boeing Company is searching for an Experienced Cybersecurity Vulnerability & Risk Specialist to join the team in either Kent, WA; Berkeley, MO; Mesa, AZ; or North Charleston, SC.
This team provides governance across Vulnerability & Asset Management; risk analysis of emergent vulnerabilities and remediation guidance; and establishes capabilities and processes to drive vulnerabilities to resolution across multiple teams.
Position Responsibilities:

• Establish capabilities and processes to drive vulnerability to resolution across multiple teams through proactive bias for action, fostering strong partnerships, and identifying methods, both process and technical, to assist these teams in our mission
• Collaborate with various security teams to operationalize new capabilities
• Execute enterprise processes addressing emergent vulnerabilities
• Evaluate software and hardware configurations for vulnerabilities based on various data sources with an understanding of threat, exploitation techniques, and control effectiveness for mitigation or remediation
• Prioritization of efforts based on risk derived from vulnerability severity, exploit analysis, environmental factors, controls, and business impacts
• Develop effective stakeholder narratives describing current risk, impact to the business, scope across all impacted environments, unknowns, current controls, and future activities and timelines including communication, mitigation and remediation activities with measurements of effectiveness and risk reduction
• Lead remediation efforts, including risk analysis, plan development, implementation, and status burndown
• Perform technical analysis in support of VM efforts coordinating with key stakeholder roles for a comprehensive risk assessment (e.g. Incident Responders/Forensics, Security Operations personnel, Penetration Testers, Product Managers, IS Control SMEs)
• Identify and recommend appropriate measures to mitigate/remediate vulnerabilities with focus on reducing or eliminating risk
• Learn new technologies and adapt quickly
• Communicate effectively with the team
• Analyzing security vulnerabilities and determining risk considering attributes such as system/business criticality, environment, and ease of exploit along with acquired and open source intelligence
• Stay current with emerging technologies and vulnerabilities

This position allows telecommuting. The selected candidate will be required to perform some work onsite at one of the listed location options.
The position must meet Export Control compliance requirements, therefore a "US Person" as defined by 22 C.F.R. § 120.15 is required. "US Person" includes US Citizen, lawful permanent resident, refugee, or asylee.
Basic Qualifications (Required Skills/Experience):

• 3+ years of experience processing vulnerability information including complexity to exploit and exploit availability/feasibility
• 3+ years of experience with cloud security and compliance
• 1+ years of experience with Linux and/or Windows security
• 1+ years of experience leading a cross-functional team
• Working knowledge and experience identifying measures to remediate/mitigate vulnerabilities

Preferred Qualifications (Desired Skills/Experience):

• Experience with container security
• Experience with ICS/IOT
• Experience with NIST security controls
• Experience influencing business users to drive change and resolution
• Experience with automated tracking tools to report status of risk reduction, vulnerability remediation and corrective action plans
• Experience with vulnerability analysis of network and system assets
• Experience prioritizing vulnerabilities based on potential risks
• Experience analyzing data sets to produce actionable information
• Experience performing Vulnerably Assessments using industry recognized tools (Rapid 7, Qualys, Nessus, NMAP, BurpSuite, Metasploit, etc), performing authenticated scans, and enabling continuous monitoring
• Experience advising on enterprise policies and technical standards with specific regard to vulnerability management and secure configuration
• Experience engaging cross-divisional teams and oversight of security recommendation implementations

Typical Education & Experience:
Typically 5 or more years' related work experience or relevant military experience. Technical degree (e.g. Bachelor, Master, etc.) preferred, but not required. A technical degree is defined as any four year degree, or greater, in a mathematic, scientific or information technology field of study.
Relocation:
Relocation assistance is not a negotiable benefit for this position. Candidates must live in the immediate area or relocate at their own expense.
Drug Free Workplace:
Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies.
Work Shift:
This position will be for first shift.
At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base pay and variable compensation opportunities.
The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.
The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements.
Please note that the salary information shown below is a general guideline only. Salaries are based upon candidate experience and qualifications, as well as market and business considerations.
Summary pay range: $107,100 - $144,900
Equal Opportunity Employer:
Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.