Mid-Level Cybersecurity Assessment Specialist
Boeing, Kent, WA, United States
Overview
At Boeing, we innovate and collaborate to make the world a better place. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Position
The Boeing Enterprise Security Red Team is looking for a
Mid-Level Cybersecurity Assessment Specialist
to join the team in Kent, WA; Huntsville, AL; Mesa, AZ; El Segundo, CA; Seal Beach, CA; Pleasanton, CA; Englewood, CO; Miami, FL; Chicago, IL; Berkeley, MO; Oklahoma City, OK; Ridley Park, PA; North Charleston, SC; Dallas, TX; Plano, TX; Ogden, UT; Arlington, VA; Everett, WA; or Seattle, WA. This position involves performing adversarial security testing of the enterprise’s various Information Technology (IT) environments and penetration testing utilizing Proof of Concept (PoC) and homegrown exploitation in addition to red teaming activities. The individual must have strong foundational knowledge and working proficiency in both system administration and software development disciplines. Responsibilities
Conduct application and network layer penetration tests on various IT environments Conduct red teaming activities, including physical security penetration testing Perform independent pen testing utilizing numerous penetration testing tools and leveraging mainly manual techniques, typically testing will necessitate source code analysis Write risk prioritized finding reports, debrief system owners and consult on remediation options Retest security vulnerabilities that have been identified as fixed to verify remediation is effective Contribute to pen testing, red teaming, tooling, and reporting methodology enhancements Stay current on emerging technologies, pen testing tools and techniques, and security vulnerabilities Evaluate effectiveness of defensive countermeasures and consult with blue teams to help improve detection methods and capabilities required for situational awareness Basic Qualifications (Required Skills/Experience)
3+ years of experience with server administration and file management structure 3+ years of experience with programming experience in Python, PHP, Perl, Ruby, .NET, or other interpreted or compiled languages 1+ years of experience in penetrating testing and vulnerability assessments using manual techniques and vulnerability testing tools (including scanners, sniffers, fuzzers and exploit tools such as Burp, Nmap, Kali and Metasploit) Preferred Qualifications (Desired Skills/Experience)
Bachelor’s degree or higher Security professional certifications (e.g. OSCP, GIAC, CEH, CISSP) 3+ years of experience working in Information/Cybersecurity identifying security vulnerabilities Experience with secure software development lifecycle and large-scale computing environments Experience with information security principles, policies, and industry best practices (CIS, OWASP, Top 10, MITRE ATT&CK) Experience working with Authentication and Authorization Controls Experience with common server applications (IIS, Apache, LDAP, Tomcat, SSH) Experience with common network protocols (HTTP/HTTPS, TCP/IP, UDP) Experience conducting technical research Experience with cloud-based architectures Strong written and verbal communication skills Experience growing technical skills and participating in the Boeing Information Security community Compliance & Other Information
Conflict of Interest: Successful candidates for this job must satisfy the Company’s Conflict of Interest (COI) assessment process. Drug Free Workplace: Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies. Expose Control & Export Requirements: This position must meet U.S. export control compliance requirements. A “U.S. Person” is required. Export Control Details: US based job, US Person required Relocation: Relocation assistance is not a negotiable benefit for this position. Security Clearance: This position requires the ability to obtain a U.S. Security Clearance. An interim and/or final U.S. Secret Clearance Post-Start is required. Visa Sponsorship: Employer will not sponsor applicants for employment visa status. Shift: This position is for 1st shift Equal Opportunity Employer: Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to protected characteristics. Pay & Benefits: Boeing delivers a Total Rewards package including competitive base pay and variable compensation opportunities. Eligible employees may enroll in various benefit programs, including health insurance, savings plans, and time-off programs. Pay range is summarized as: Summary pay range: $107,100 – $167,900. This posting will remain open until filled.
#J-18808-Ljbffr
At Boeing, we innovate and collaborate to make the world a better place. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Position
The Boeing Enterprise Security Red Team is looking for a
Mid-Level Cybersecurity Assessment Specialist
to join the team in Kent, WA; Huntsville, AL; Mesa, AZ; El Segundo, CA; Seal Beach, CA; Pleasanton, CA; Englewood, CO; Miami, FL; Chicago, IL; Berkeley, MO; Oklahoma City, OK; Ridley Park, PA; North Charleston, SC; Dallas, TX; Plano, TX; Ogden, UT; Arlington, VA; Everett, WA; or Seattle, WA. This position involves performing adversarial security testing of the enterprise’s various Information Technology (IT) environments and penetration testing utilizing Proof of Concept (PoC) and homegrown exploitation in addition to red teaming activities. The individual must have strong foundational knowledge and working proficiency in both system administration and software development disciplines. Responsibilities
Conduct application and network layer penetration tests on various IT environments Conduct red teaming activities, including physical security penetration testing Perform independent pen testing utilizing numerous penetration testing tools and leveraging mainly manual techniques, typically testing will necessitate source code analysis Write risk prioritized finding reports, debrief system owners and consult on remediation options Retest security vulnerabilities that have been identified as fixed to verify remediation is effective Contribute to pen testing, red teaming, tooling, and reporting methodology enhancements Stay current on emerging technologies, pen testing tools and techniques, and security vulnerabilities Evaluate effectiveness of defensive countermeasures and consult with blue teams to help improve detection methods and capabilities required for situational awareness Basic Qualifications (Required Skills/Experience)
3+ years of experience with server administration and file management structure 3+ years of experience with programming experience in Python, PHP, Perl, Ruby, .NET, or other interpreted or compiled languages 1+ years of experience in penetrating testing and vulnerability assessments using manual techniques and vulnerability testing tools (including scanners, sniffers, fuzzers and exploit tools such as Burp, Nmap, Kali and Metasploit) Preferred Qualifications (Desired Skills/Experience)
Bachelor’s degree or higher Security professional certifications (e.g. OSCP, GIAC, CEH, CISSP) 3+ years of experience working in Information/Cybersecurity identifying security vulnerabilities Experience with secure software development lifecycle and large-scale computing environments Experience with information security principles, policies, and industry best practices (CIS, OWASP, Top 10, MITRE ATT&CK) Experience working with Authentication and Authorization Controls Experience with common server applications (IIS, Apache, LDAP, Tomcat, SSH) Experience with common network protocols (HTTP/HTTPS, TCP/IP, UDP) Experience conducting technical research Experience with cloud-based architectures Strong written and verbal communication skills Experience growing technical skills and participating in the Boeing Information Security community Compliance & Other Information
Conflict of Interest: Successful candidates for this job must satisfy the Company’s Conflict of Interest (COI) assessment process. Drug Free Workplace: Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies. Expose Control & Export Requirements: This position must meet U.S. export control compliance requirements. A “U.S. Person” is required. Export Control Details: US based job, US Person required Relocation: Relocation assistance is not a negotiable benefit for this position. Security Clearance: This position requires the ability to obtain a U.S. Security Clearance. An interim and/or final U.S. Secret Clearance Post-Start is required. Visa Sponsorship: Employer will not sponsor applicants for employment visa status. Shift: This position is for 1st shift Equal Opportunity Employer: Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to protected characteristics. Pay & Benefits: Boeing delivers a Total Rewards package including competitive base pay and variable compensation opportunities. Eligible employees may enroll in various benefit programs, including health insurance, savings plans, and time-off programs. Pay range is summarized as: Summary pay range: $107,100 – $167,900. This posting will remain open until filled.
#J-18808-Ljbffr