About this role
The Boeing Product Security Analyst will support BT&E cyber test capability by planning, integrating, and executing cyber security tests for the DoD portfolio. The role includes vulnerability assessments, MBCRAs, cyber risk analysis, and penetration testing on embedded avionics and IP networks, with leadership opportunities and travel.
Key Responsibilities
- Execute penetration tests to identify vulnerabilities in embedded systems and IP networks
- Define cyber test plans and schedules for complex architectures
- Conduct MBCRAs and Cyber Table Tops
- Provide team leadership and coordination for test readiness
- Complete post-test reporting and stakeholder engagement
Technical Overview
Tests across embedded systems and IP networks within a DoD cybersecurity T&E framework; requires knowledge of Windows, Linux, VxWorks, INTEGRITY, ARINC, MIL-STD; aligns with NIST CSF, RMF, CMMC, PCI/DSS; documentation and stakeholder coordination are key.
Ideal Candidate
The ideal candidate is a senior-level product security professional with 3+ years DoD experience, skilled in offensive cyber testing, MBCRAs, and risk assessments, able to lead test campaigns and collaborate with stakeholders in a DoD/BT&E environment.
Must-Have Skills
Bachelor's degree or higher3+ years of experience working with Department of Defense (DoD) organizationsprojects and/or programs3+ years of experience directing and executing projects in accordance with stakeholder objectives and schedules3+ years of experience in product securitycybersecurity researchor a related field3+ years of experience planning and executing penetration testing of either IT based systems or Avionics embedded systemsExperience in system and software architectures
Nice-to-Have Skills
5 or more years of related work experience or an equivalent combination of education and experienceExperience performing adversity (threat) analysissecurity risk assessmentsExperience hosting Cyber Table Tops and Mission Based Cyber Risk AssessmentsExperience working with stakeholders to plan/test eventsDemonstrated ability to engage with stakeholders to define/plan/resource/deliver solutionsExperience with NIST CSFDoD RMFCMMC or PCI/DSSExperience evaluating cybersecurity in WindowsLinuxVxWorksINTEGRITYExperience with ARINC/MIL-STD protocols
Tools & Platforms
WindowsLinuxVxWorksINTEGRITYARINCMIL-STDNIST CSFDoD RMFPCI/DSS
Required Skills
Penetration TestingMBCRACyber Table TopsMission Based Cyber Risk AssessmentsDoD RMFNIST CSFCMMCPCI/DSSWindowsLinuxVxWorksINTEGRITYARINCMIL-STDIP-Based NetworksAvionics Embedded SystemsTest PlanningSystem and Software Architectures
Hard Skills
Penetration TestingMBCRAMission Based Cyber Risk AssessmentsCyber Table TopsTest PlanningIP-Based NetworksAvionics Embedded SystemsWindowsLinuxVxWorksINTEGRITYARINCMIL-STDNIST CSFDoD RMFCMMCPCI/DSSSystem and Software Architectures
Soft Skills
Team leadershipCommunicationStakeholder collaborationProblem solvingAttention to detailTime managementAdaptability
Keywords for Your Resume
Product Security AnalystProduct SecurityCyber Table TopsMission Based Cyber Risk AssessmentsMBCRADoD RMFNIST CSFCMMCPCI/DSSPenetration TestingIP-Based NetworksAvionics Embedded SystemsWindowsLinuxVxWorksINTEGRITYARINCMIL-STDTest PlanningSystem and Software ArchitecturesCybersecurity
Deal Breakers
Less than 3 years of DoD experience, No active U.S. Secret Clearance, No bachelor's degree
Get matched to jobs like this
Luna finds roles that fit your skills and career goals — no endless scrolling required.
Create a Free Profile