Mid-Level Cybersecurity Assessment Specialist - Millennium Space Systems
Boeing, Boulder, CO, United States
Job Summary
The MSS Ground Systems & Operations Organization is seeking a
Mid-Level Cybersecurity Assessment Specialist
to join the team in Boulder, CO. The role involves performing adversarial security testing of the enterprise’s IT environments and penetration testing utilizing Proof of Concept (PoC), home‑grown exploitation, and red‑team activities. Applicants must have a strong foundation in system administration and software development.
Position Responsibilities
Conduct application and network layer penetration tests in various IT environments.
Conduct red‑team activities, including physical security penetration testing.
Perform independent penetration testing using multiple tools, primarily employing manual techniques, often involving source code analysis.
Write risk‑prioritized findings reports, debrief system owners, and consult on remediation options.
Retest identified vulnerabilities after fixes to verify remediation.
Contribute to methodology enhancements for penetration testing, red‑team operations, tooling, and reporting.
Evaluate defensive countermeasures and collaborate with blue teams to improve detection methods and capabilities required for situational awareness.
Perform exploitation analysis and author exploitation tools and techniques.
Experience performing ACAS and OpenRMF compliance scans for classified networks, identifying weaknesses and reporting results to external organizations.
Experience with secure software development lifecycle and large‑scale computing environments.
Experience working with information security principles, policies, and industry best practices, including CIS, OWASP Top 10, and the MITRE ATT&CK framework.
Experience manipulating authentication and authorization controls.
Experience with common server applications (IIS, Apache, LDAP, Tomcat, SSH).
Experience with common network protocols (HTTP/HTTPS, TCP/IP, UDP).
Basic Qualifications
Active U.S. Top Secret Security Clearance with SCI eligibility (U.S. Citizenship required).
9+ years related work experience or an equivalent combination of education and experience.
1+ year of server administration and file‑management experience.
1+ year of programming experience in Python, PHP, Perl, Ruby, .NET, or other languages.
1+ year of penetration testing and vulnerability assessment experience using manual techniques and tools such as Burp, Nmap, Kali, and Metasploit.
Experience leading and conducting vulnerability assessments and penetration testing for multiple and undefined interfaces.
Experience performing assessment planning and analyzing architecture and system functionality.
Experience configuring and conducting automated scanning and manual testing.
Preferred Qualifications
Bachelor’s degree or higher in Engineering or a STEM field.
Experience developing security control plan implementations across 10 NIST SP 800‑53 control families for ATO submission supporting mission‑critical systems for a United States Space Force Space Operation Center.
Experience reviewing and adjudicating RMF ATO artifacts, including software assurance plans, trusted file‑transfer plans, RBAC matrices, and vulnerability and patch‑management plans.
Experience evaluating system security configurations.
Experience configuring and conducting automated scanning and manual testing.
Conflict of Interest
Successful candidates must satisfy the Company’s Conflict of Interest (COI) assessment process.
Drug‑Free Workplace
Millennium Space Systems, a Boeing Company, is a drug‑free workplace; post‑offer applicants and employees may be subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria are met as outlined in the policies.
Total Rewards
This position offers competitive base pay, variable compensation opportunities, and a comprehensive benefit package, including health insurance, flexible spending accounts, health savings accounts, retirement plans, life and disability insurance, and paid/unpaid time off.
Pay Range
Level 4: $153,000 – $225,000
Additional Information
Applications will be accepted until May 01 2026. The role requires a U.S. citizen, U.S. permanent resident, or eligible person under U.S. export control regulations. Relocation assistance is not available. The position is for the first shift. The Employer will not sponsor employment visas.
Equal Opportunity Employer
Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status, or other characteristics protected by law.
#J-18808-Ljbffr
The MSS Ground Systems & Operations Organization is seeking a
Mid-Level Cybersecurity Assessment Specialist
to join the team in Boulder, CO. The role involves performing adversarial security testing of the enterprise’s IT environments and penetration testing utilizing Proof of Concept (PoC), home‑grown exploitation, and red‑team activities. Applicants must have a strong foundation in system administration and software development.
Position Responsibilities
Conduct application and network layer penetration tests in various IT environments.
Conduct red‑team activities, including physical security penetration testing.
Perform independent penetration testing using multiple tools, primarily employing manual techniques, often involving source code analysis.
Write risk‑prioritized findings reports, debrief system owners, and consult on remediation options.
Retest identified vulnerabilities after fixes to verify remediation.
Contribute to methodology enhancements for penetration testing, red‑team operations, tooling, and reporting.
Evaluate defensive countermeasures and collaborate with blue teams to improve detection methods and capabilities required for situational awareness.
Perform exploitation analysis and author exploitation tools and techniques.
Experience performing ACAS and OpenRMF compliance scans for classified networks, identifying weaknesses and reporting results to external organizations.
Experience with secure software development lifecycle and large‑scale computing environments.
Experience working with information security principles, policies, and industry best practices, including CIS, OWASP Top 10, and the MITRE ATT&CK framework.
Experience manipulating authentication and authorization controls.
Experience with common server applications (IIS, Apache, LDAP, Tomcat, SSH).
Experience with common network protocols (HTTP/HTTPS, TCP/IP, UDP).
Basic Qualifications
Active U.S. Top Secret Security Clearance with SCI eligibility (U.S. Citizenship required).
9+ years related work experience or an equivalent combination of education and experience.
1+ year of server administration and file‑management experience.
1+ year of programming experience in Python, PHP, Perl, Ruby, .NET, or other languages.
1+ year of penetration testing and vulnerability assessment experience using manual techniques and tools such as Burp, Nmap, Kali, and Metasploit.
Experience leading and conducting vulnerability assessments and penetration testing for multiple and undefined interfaces.
Experience performing assessment planning and analyzing architecture and system functionality.
Experience configuring and conducting automated scanning and manual testing.
Preferred Qualifications
Bachelor’s degree or higher in Engineering or a STEM field.
Experience developing security control plan implementations across 10 NIST SP 800‑53 control families for ATO submission supporting mission‑critical systems for a United States Space Force Space Operation Center.
Experience reviewing and adjudicating RMF ATO artifacts, including software assurance plans, trusted file‑transfer plans, RBAC matrices, and vulnerability and patch‑management plans.
Experience evaluating system security configurations.
Experience configuring and conducting automated scanning and manual testing.
Conflict of Interest
Successful candidates must satisfy the Company’s Conflict of Interest (COI) assessment process.
Drug‑Free Workplace
Millennium Space Systems, a Boeing Company, is a drug‑free workplace; post‑offer applicants and employees may be subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria are met as outlined in the policies.
Total Rewards
This position offers competitive base pay, variable compensation opportunities, and a comprehensive benefit package, including health insurance, flexible spending accounts, health savings accounts, retirement plans, life and disability insurance, and paid/unpaid time off.
Pay Range
Level 4: $153,000 – $225,000
Additional Information
Applications will be accepted until May 01 2026. The role requires a U.S. citizen, U.S. permanent resident, or eligible person under U.S. export control regulations. Relocation assistance is not available. The position is for the first shift. The Employer will not sponsor employment visas.
Equal Opportunity Employer
Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status, or other characteristics protected by law.
#J-18808-Ljbffr