Cyber A&A Engineer
Boeing
The Boeing Company is seeking a Cyber A&A Engineer in Colorado Springs, CO.
Boeing’s Missile Defense Program is seeking motivated and talented professionals to join its team supporting the National Team Command, Control, Battle Management and Communications (C2BMC) Programs & Networks.
Missile Defense programs are part of the Ballistic Missile Defense System which defends the United States homeland and its regional allies all over the world. Be a part of our passionate and highly motivated team who are excited to be on the forefront of defense of our nation.
Boeing offers a comprehensive benefits package including generous Paid Time Off (PTO), flexible work schedules, paid parental leave for mothers and fathers, 401k matching, tuition assistance for earning advanced degrees, and paid medical leave programs.
Come Join Us and Build the Future!
Position Responsibilities:
- Process and track DD Form 2875 user account forms and required training for privileged and non-privileged accounts, perform annual validation of accounts, and work with system administrator on creation, modification, and removal of accounts
- Perform assessment of systems and networks within a virtual environment and identify where those systems deviate from acceptable configurations, enclave policy, or local policy. This is achieved through passive evaluations such as compliance audits using STIG Viewer, SCAP, etc. and active evaluations such as vulnerability assessments utilizing ACAS.
- Perform Security Technical Implementation Guide (STIG) assessments and hardening for both Windows, Red Hat Enterprise Linux (RHEL) systems, and networking equipment utilizing ConfigOS
- Develop test plans reflecting how STIG checks are implemented and be able to show expected outcomes of those checks
- Update Risk Management Framework (RMF) artifact documentation to ensure system hardening non-compliant is tracked and remediated.
- Establish strict program control processes to ensure mitigation of risks and supports obtaining assessment and authorization of systems. Includes support of process, analysis, coordination, control certification test, compliance documentation, as well as investigations, software research, hardware introduction and release, emerging technology research, inspections, and periodic audits.
- Assist in the implementation of the required government policy (i.e., NISPOM, NIST, DoD), making recommendations on process tailoring, participating in and documenting process activities.
Don't want to miss the next one?
Subscribe to daily email alerts for roles matching your interests.