Embedded Product Cybersecurity Engineer II (Onsite Cedar Rapids, IA)

Date Posted:

Country:

United States of America

Location:

US-IA-CEDAR RAPIDS-107 400 Collins Rd NE BLDG 107

Position Role Type:

Onsite

U.S. Citizen U.S. Person or Immigration Status Requirements:

Active and transferable U.S. government issued security clearance is required prior to start date. U.S. citizenship is required as only U.S. citizens are eligible for a security clearance

Security Clearance Type:

DoD Clearance: Secret

Security Clearance Status:

Active and existing security clearance required after day 1

The Embedded Product Cybersecurity team is seeking a Cybersecurity Engineer II Embedded Product to support the secure development of safety and missioncritical embedded systems. Our work focuses on the protection of resourceconstrained realtime and connectivityenabled products throughout their operational lifecycle. As part of our shared services organization we partner with programs across the company wherever customer security requirements apply or where system architecture interfaces and deployment environments introduce cyberphysical risk.

Our team develops specialized tools analysis methods and test techniques to uncover residual design or implementation defects that could become exploitable vulnerabilities affecting the confidentiality integrity or availability of embedded systems. We work directly with architecture design and implementation teams as cybersecurity subject matter experts guiding secure design decisions threat modeling and verification activities throughout the Secure System Development Life Cycle (SSDLC).

This role will be worked onsite in Cedar Rapids IA and will require an active or ability to obtain a Secret clearance. Relocation assistance is available.

What You Will Do:

• Address Common Vulnerabilities and Exposures (CVEs)

• Author review Risk Management Framework (RMF) cybersecurity artifacts

• Follow and guide teams to the adherence of military RMF security processes

• Conduct Security Technical Implementation Guide (STIG) investigations

• Support organizational adoption of the Avionics SSDLC

• Develop and execute fuzzing and penetration tests to evaluate the robustness of the attack surface

• Analyze system data flows to identify attack vectors and assess risks to new and existing products

• Develop threat model / data flow diagrams to ensure data can be properly isolated in motion and at rest

• Ensure proper implementation of security measures during product development

• Develop deploy and automate security tools for identifying product security flaws

• Help characterize security vulnerabilities for product impact and recommend mitigations

• Review code to identify weaknesses in the implementation of security functions

• Conduct vulnerability assessments of proposed and in-service systems

Qualifications You Must Have:

• Typically requires a degree in Science Technology Engineering or Mathematics (STEM) and minimum 2 years of prior relevant experience or an Advanced Degree in a related field

• U.S. Citizenship is required; the ability to obtain and maintain a U.S. government issued securityclearanceis required.

• Embedded software engineering knowledge (Python and Java/C/C)

• Networking knowledge (OSI Layers Arnic 429 protocols WiFi etc.)

• Product security or secure system design; threat modeling or fuzzing/pen testing

Qualifications We Prefer:

• Risk Management Framework

• Knowledge of Threat Models and Data Flow Diagrams

• Data/network security implementations with operating systems

• Understanding tailoring and hardening of operating systems

• Familiarity with system and application penetration testing

• Experience with SAST and analyzing security impact of code defects

• Executing System & Application Fuzzing / Resiliency Tests

• Knowledge of Public Key Infrastructure (PKI)

• Industry recognized security certifications (Sec OSCP CISSP etc.)

What We Offer:

• Medical dental and vision insurance

• Three weeks of vacation for newly hired employees

• Generous 401(k) plan that includes employer matching funds and separate employer retirement contribution including a Lifetime Income Strategy option

• Tuition reimbursement program

• Student Loan Repayment Program

• Life insurance and disability coverage

• Optional coverages you can buy pet insurance home and auto insurance additional life and accident insurancecritical illnessinsurance group legal ID theft protection

• Birth adoption parental leave benefits

• Ovia Health fertility and family planning

• Adoption Assistance

• Autism Benefit

• Employee Assistance Plan including up to 10 free counseling sessions

• Healthy You Incentives wellness rewards program

• Doctor on Demand virtual doctor visits

• Bright Horizons child and elder care services

• Teladoc Medical Experts second opinion program

• And more!

Learn More & Apply Now!

Collins Aerospace an RTX company is a leader in technologically advanced and intelligent solutions for the global aerospace and defense industry. Collins Aerospace has the capabilities comprehensive portfolio and expertise to solve customers toughest challenges and to meet the demands of a rapidly evolving global market.

* Please consider the following role type definitions as you apply for this role.

Onsite: Employees who are working in Onsite roles will work primarily onsite. This includes all production and maintenance employees as they are essential to the development of our products.

As part of our commitment to maintaining a secure hiring process candidates may be asked to attendselect steps of the interview process in-person at one of our office locations regardless of whether the role is designated as on-site hybrid or remote.

The salary range for this role is 68900 USD - 131100 USD. The salary range provided is a good faith estimate representative of all experience levels. RTX considers several factors when extending an offer including but not limited to the role function and associated responsibilities a candidates work experience location education/training and key skills.

Hired applicants may be eligible for benefits including but not limited to medical dental vision life insurance short-term disability long-term disability 401(k) match flexible spending accounts flexible work schedules employee assistance program Employee Scholar Program parental leave paid time off and holidays. Specific benefits are dependent upon the specific business unit as well as whether or not the position is covered by a collective-bargaining agreement.

Hired applicants may be eligible for annual short-term and/or long-term incentive compensation programs depending on the level of the position and whether or not it is covered by a collective-bargaining agreement. Payments under these annual programs are not guaranteed and are dependent upon a variety of factors including but not limited to individual performance business unit performance and/or the companys performance.

This role is a U.S.-based role. If the successful candidate resides in a U.S. territory the appropriate pay structure and benefits will apply.

RTX anticipates the application window closing approximately 40 days from the date the notice was posted. However factors such as candidate flow and business necessity may require RTX to shorten or extend the application window.

RTX is an Equal Opportunity Employer. All qualified applicants will receive consideration for employment without regard to race color religion sex sexual orientation gender identity national origin age disability or veteran status or any other applicable state or federal protected class. RTX provides affirmative action in employment for qualified Individuals with a Disability and Protected Veterans in compliance with Section 503 of the Rehabilitation Act and the Vietnam Era Veterans Readjustment Assistance Act.

Privacy Policy and Terms:

Click on this link to read the Policy and Terms