Senior Cybersecurity Engineer Embedded Avionics (ONSITE)

Date Posted:

Country:

United States of America

Location:

US-IA-CEDAR RAPIDS-107 400 Collins Rd NE BLDG 107

Position Role Type:

Onsite

U.S. Citizen U.S. Person or Immigration Status Requirements:

The ability to obtain and maintain a U.S. government issued security clearance is required. U.S. citizenship is required as only U.S. citizens are eligible for a security clearance

Security Clearance Type:

DoD Clearance: Secret

Security Clearance Status:

Active and existing security clearance required after day 1

The Embedded Product Cybersecurity Engineering team needs a Senior Software Security Engineer to meet our commitment to product cybersecurity excellence in both commercial and military avionics. As a member of this shared service team you will ensure the secure design secure development and security verification testing of new or updated systems. This team supports security needs throughout the company wherever the customer has security requirements or where a system will be exposed to cyber threats. We specialize in developing custom tools and testing techniques to uncover residual defects in our products design and/or implementation. Members of the Cybersecurity Engineering team excel by embedding with the design and implementation teams as the product cybersecurity subject matter expert supporting our Secure Systems Development Life Cycle (SSDLC) through an emphasis on Airworthiness Security and National Institute of Standards and Technology (NIST) Risk Management Framework (RMF).

The ideal candidate will possess the technical breadth and adaptability to seamlessly navigate and contribute to both Commercial and Military sector cybersecurity requirements.

This is an onsite position based in Cedar Rapids Iowa.

What you will do:

• Developing threat models and data flow diagrams to ensure information can be properly isolated in motion and at rest
• Conducting vulnerability assessments of proposed and fielded systems
• Collaborating with product architects and software development teams to mitigate security threats
• Reviewing code to identify weaknesses in the implementation of security functions
• Developing and executing fuzzing and penetration tests to evaluate product robustness to untrusted inputs
• Creating custom security testing tools that utilize aerospace specific protocols
• Implementing mandatory access controls (MAC) through the development of Security Enhanced Linux (SELinux) policies
• Supporting multiple product security efforts concurrently
• Guiding the organization throughout the SSDLC
• Authoring of Risk Management Framework (RMF) artifacts
• Candidates for this position should be fluent in the software / systems engineering domain and have a passion for cybersecurity. Being a CISSP or (ISC)2 Associate is desirable.
• Use excellent communications skills to communicate technical issues and status in both written and oral form.
• Be adaptable to change determined to accomplish tasks based on program schedule
• Collaborate with teammates in order to learn and make good decisionsE
• Enjoy learning new technologies and contribute to a positive work environment.

Qualifications you must have:

• Typically requires a degree in Science Technology Engineering or Mathematics (STEM) and minimum 5 years prior relevant experience or an Advanced Degree in a related field and minimum 3 years of experience.
• U.S. Citizenship is required - The ability to obtain and maintain a U.S. government issued security clearance is required. U.S. citizenship is required as only U.S. citizens are eligible for a security clearance.
• Embedded software development experience in Linux OS environment
• Experience coding in C C Python other scripting languages
• Networking experience - Layer 2/Layer 3/Layer 4 protocols

Qualifications we prefer:

• Experience creating and analyzing Threat Models and Data Flow Diagrams
• Analysis of system and application security architectures
• Conducting system and application vulnerability assessments
• Data/network security implementations with Linux OS
• Understanding tailoring and hardening of Linux OS
• System and Application Penetration Testing skills
• Hands-on experience with SAST and collaborating with developers to resolve findings
• Creating System & Application Fuzzing / Resiliency Tests
• SELinux Policy Development
• Experience with Public Key Infrastructure (PKI) device certificate management
• Experience or knowledge of RTCA DO-326A / DO-356A
• Experience with Risk Management Framework (RMF)

What we offer:

• Medical dental and vision insurance

• Three weeks of vacation for newly hired employees

• Generous 401(k) plan that includes employer matching funds and separate employer retirement contribution including a Lifetime Income Strategy option

• Tuition reimbursement program

• Student Loan Repayment Program

• Life insurance and disability coverage

• Optional coverages you can buy pet insurance home and auto insurance additional life and accident insurancecritical illnessinsurance group legal ID theft protection

• Birth adoption parental leave benefits

• Ovia Health fertility and family planning

• Adoption Assistance

• Autism Benefit

• Employee Assistance Plan including up to 10 free counseling sessions

• Healthy You Incentives wellness rewards program

• Doctor on Demand virtual doctor visits

• Bright Horizons child and elder care services

• Teladoc Medical Experts second opinion program

• And more!

Learn More & Apply Now!

Please ensure the role type (defined below) is appropriate for your needs before applying to this role.

Onsite: Employees who are working in Onsite roles will work primarily onsite. This includes all production and maintenance employees as they are essential to the development of our products. Regardless of your role type collaboration and innovation are critical to our business and all employees will have access to digital tools so they can work with colleagues around the world and access to Collins sites when their work requires in-person meetings.

At Collins the paths we pave together lead to limitless possibility. And the bonds we form with our customers and with each other -- propel us all higher again and again. Apply now and be part of the team thats redefining aerospace every day.

As part of our commitment to maintaining a secure hiring process candidates may be asked to attendselect steps of the interview process in-person at one of our office locations regardless of whether the role is designated as on-site hybrid or remote.

The salary range for this role is 86800 USD - 165200 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an offer including but not limited to the role function and associated responsibilities a candidates work experience location education/training and key skills.

Hired applicants may be eligible for benefits including but not limited to medical dental vision life insurance short-term disability long-term disability 401(k) match flexible spending accounts flexible work schedules employee assistance program Employee Scholar Program parental leave paid time off and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement.

Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including but not limited to individual performance business unit performance and/or the companys performance.

This role is a U.S.-based role. If the successful candidate resides in a U.S. territory the appropriate pay structure and benefits will apply.

RTX anticipates the application window closing approximately 40 days from the date the notice was posted. However factors such as candidate flow and business necessity may require RTX to shorten or extend the application window.

RTX is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race color religion sex sexual orientation gender identity national origin age disability or veteran status or any other applicable state or federal protected class. RTX provides affirmative action in employment for qualified Individuals with a Disability and Protected Veterans in compliance with Section 503 of the Rehabilitation Act and the Vietnam Era Veterans Readjustment Assistance Act.

Privacy Policy and Terms:

Click on this link to read the Policy and Terms