Job Information
The Boeing Company Product Security Pentester (Experienced or Senior) in Berkeley, Missouri
Job Description
At Boeing, we innovate and collaborate to make the world a better place. From the seabed to outer space, you can contribute to work that matters with a company where diversity, equity and inclusion are shared values. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.
The Boeing Test & Evaluation (BT&E) organization is seeking a Product Security Pentester to support cyber test capability. The selected applicant will join a highly technical Enterprise Test & Evaluation team building an offensive cyber test capability in Berkeley, MO .
This position will be providing testing services to Boeing Defense Space & Security (BDS) portfolio. The primary responsibilities will include Product Security (Cyber) test planning, integration, and execution, mission-based risk assessments, vulnerability assessments, and penetration tests. The selected candidate will become a St. Louis area team member trained across the broader BT&E enterprise Product Security Capability team with the opportunity to also contribute to innovation efforts advancing adversarial testing.
BT&E is currently hiring for a broad range of experience levels including Experienced and Senior level Product Security Pentesters.
Position Responsibilities Include:
Lead execution of penetration tests to identify, exploit, and assess a target system’s vulnerabilities in a threat-representative manner
Subject Matter Expert in analyzing advanced cyber adversary (advanced persistent threats) tactics, techniques and procedures (TTPs). Associate TTPs with vulnerabilities/penetrations discovered
Lead controlled attack simulations that test the effectiveness of a blue team and its capabilities to detect, block, and mitigate attacks and breaches
Analyze exploits and malware targeting modern operating systems and defenses
Conduct reverse engineering activities
Analyze penetration tests on modern Windows and Linux operating systems and IP-based networks
Communicate recommendations for improvements via reports or presentations to customers using common frameworks such as MITRE ATT&CK, Cyber Kill Chain, etc.
This position is hybrid. This means that the selected candidate will be required to perform some work onsite at one of the listed location options. This is at the hiring team’s discretion and could potentially change in the future.
This position requires an active Secret U.S. Security Clearance (U.S. Citizenship Required). (A U.S. Security Clearance that has been active in the past 24 months is considered active.)
Basic Qualifications (Required Skills/Experience):
Bachelor’s degree or higher
3+ years of experience leading or managing projects and/or teams
3+ years of experience working with Department of Defense (DoD) organizations, projects and/or programs
3+ years of experience planning and executing penetration testing of either IT based systems or Avionics embedded systems
Preferred Qualifications (Desired Skills/Experience):
5 or more years of related work experience or an equivalent combination of education and experience
Demonstrated ability to engage with stakeholders to define/plan/resource/analyze solutions
Experience testing and/or analyzing product systems
Experience building and/or leading a technical test team
Experience working with Product Security (non-IT) Cyber Compliance and/or Avionics Embedded systems risk management assessment
Experience facilitating and/or supporting Cyber Table Top (or equivalent) exercises
Experience planning and executing penetration tests in one or more of the following domains:
Windows and Linux Operating Systems and IP-Based Networks
Web Applications
Avionics, Embedded Systems, Non-Standard Ethernet Protocols (ARINC, MIL-STD)
RF interfaces
Hardware
Experience coordinating and presenting technical content to a diverse audience
Experience with program planning (cost and schedule)
Experience with Aircraft Platforms, Weapon Systems and/or C5ISR
Knowledgeable in Cryptography and Reverse Engineering
One or more of the following Certifications:
Offensive Security Certified Engineer (OSCE)
Offensive Security Certified Professional (OSCP)
GIAC Certified Exploit Researcher and Advanced Penetration Testers (GXPN)
Typical Education/Experience:
Experienced (Level 3)
Education/experience typically acquired through advanced education (e.g. Bachelor) and typically 6 or more years' related work experience or an equivalent combination of education and experience (e.g. Master+4 years' related work experience, 10 years' related work experience, etc.).
Senior (Level 4)
Education/experience typically acquired through advanced education (e.g. Bachelor) and typically 10 or more years' related work experience or an equivalent combination of education and experience (e.g. Master+8 years' related work experience, 14 years' related work experience, etc.).
Relocation:
This position offers relocation based on candidate eligibility.
Drug Free Workplace:
Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies .
Shift:
This position is for 1st shift.
At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base pay and variable compensation opportunities.
The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.
The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements.
Pay is based upon candidate experience and qualifications, as well as market and business considerations.
Summary pay range for experienced level: $101,150 – $136,850
Summary pay range for senior level: $123,250 - $166,750
Applications for this position will be accepted through June 20, 2024.
Export Control Requirements: U.S. Government Export Control Status: This position must meet export control compliance requirements. To meet export control compliance requirements, a “U.S. Person” as defined by 22 C.F.R. §120.15 is required.
“U.S. Person” includes U.S. Citizen, lawful permanent resident, refugee, or asylee.
Export Control Details: US based job, US Person required
Equal Opportunity Employer:
Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.
Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.
The Boeing Company
-
- The Boeing Company Jobs
