Cessna Aircraft Company
Product Cyber Security Engineer, Compliance and Analysis
Cessna Aircraft Company, Fort Worth, Texas, United States, 76102
Job Description - Product Cyber Security Engineer, Compliance and Analysis (323522)Product Cyber Security Engineer, Compliance and Analysis (
Job Number:
323522 )We’re more than aviation experts, we’re pioneers. We challenge what’s possible. From breaking the sound barrier to advanced tiltrotor systems. Today, Bell is shaping the future of aviation through specialized engineering.
And we want you.Bell in Fort Worth, TX has on-site roles for Product Cyber Security Engineers ranging from Sr Engineers to Principal Engineers and above to support
Aircraft Cyber Security Compliance and Analysis.In these critical Cyber Security roles, you will join the Future Vertical Lift (FVL) V280 team focusing on Compliance and Analysis of airborne cyber security artifacts (RMF documentation and contract deliverables which includes MBSE modeling).You will ensure our next-generation tiltrotor aircraft meet all aspects of compliance thereby producing a cyber resilient and survivable platform. You will engage in this fast-paced program through collaborating in cross-functional groups, process development and adherence throughout the product lifecycle, while ensuring the cyber security aspects remain aligned with customer and regulatory requirements.You may be deriving and allocating aircraft architecture design requirements, architectural analysis, and model-based systems engineering (MBSE) implementation utilizing CAMEO. Threat modeling exercises using various methodologies (STRIDE, STPA, STPA-Sec) to include cyber tabletops.Compliance driven programs require DoDI 8510.01/8500.01 Risk Management Framework (RMF) certification for military platforms, and your work will include process development and documentation, threat management, mitigation, and the implementation of all applicable controls. You will serve as a liaison for various engineering functions and review/validate/remediate the impact all design changes to existing and in-development platforms.A Day in the Life:
Engage in the flight controls, avionics, or mission system architecture development and influence design for cyber security. Conduct analytics of design options, identify risks and mitigation steps. Take ownership of the vulnerability analysis through our state-of-the-art System Integration Labs (SILs). But more than anything, it’s about being open-minded and inquisitive about what’s possible and to bring the most innovative ideas to life. We rise to the challenge, push past obstacles to create new solutions to the hardest problems, and open doors to new experiences few dream possible.From our founding as an aerospace innovator to our current position as a technology company that is redefining flight, we come to work every day to do things differently.Cyber Security Certifications Required:For a Senior Engineer role: you should possess or obtain within 6 months of hire a DoD 8570 IAM or IAT Level I certification at a minimum (i.e., Security+ CE, CAP, CSSLP, etc.).For a Principal Engineer or higher role: you should possess a DoD 8570 IAM or IAT Level III certification at a minimum (i.e., CISSP, CISM).Education and Skills You Bring To this Role:Bachelor’s Degree is required in a technical discipline (Electrical/Electronic Engineering (EE), Electronic Engineering in Technology (EET), Computer Science, and/or Cyber Security or similar technical bachelor’s degree).Multiple levels of experience in cybersecurity will be considered with a minimum of 2 years of experience, and we greatly prefer those with at least 6 years or more of DoD RMF / DIACAP accreditation experience and the Authority to Operate (ATO) Process.At least familiarity with NIST SP 800-37/53/160v2 RMF publications, but greatly prefer those with have in-depth knowledge of NIST SP800 standards.At least familiarity with and greatly prefer those who have generated SCTMs, POAMs, Risk Assessments, SSP, and Security Assessments.Ability to work in a collaborative technical environment and negotiate design and cyber security technical trade-offs with Integrated Product Teams (IPTs) and throughout the organization.The ability to develop and communicate product cyber security requirements and perform residual risk assessments in accordance with Bell’s product cyber security policies and methods is required.Familiarization with DoD Cyber Survivability Endorsement Implementation Guide (CSEIG).Experience and/or familiarity with one or more areas: attack trees, tabletops, threat modeling, architectural design analysis, digital signing, software authenticity, root of trust systems, plus threat and vulnerability analysis.Ability to obtain and maintain a DoD Secret level clearance.What You Need to Be Successful:We are looking for inquisitive and driven engineers with a passion to innovate.Strong logical, analytical, and communication skills are required.Ability to prioritize work, strong analytical and problem-solving skills with a team player mindset.Ability to create plans, procedures, and briefing material(s) for program presentations to USG.What We Offer You in Return:You’ll be off every other Friday with our 9/80 work schedule.80 hours of Personal Time Off (PTO).120 hours Vacation time.12-13 paid holidays per year.6 weeks parental leave.On-site clinic, pharmacy, physical therapy, and licensed counselor.Access to more than 11 Employee Resource Groups.And so much more.It’s time to make your mark on the future of aviation. Join us on this mission, and let’s make history together.We are on a journey to amplify innovation, cultivate purpose and bridge experiences by fostering a culture that is driven by unique perspectives, voices and values.EEO StatementTextron is committed to providing Equal Opportunity in Employment, to all applicants and employees regardless of race, color, religion, gender, age, national origin, military status, veteran status, handicap, physical or mental disability, sexual orientation, gender identity, genetic information or any other characteristic protected by law.Applicants selected will be subject to a government security investigation and must meet eligibility requirements, including US Citizenship, for access to classified information. This position requires use of information which is subject to the International Traffic in Arms Regulations (ITAR) and/or the Export Administration Regulations (EAR). Non-U.S. persons selected must meet eligibility requirements for access to export-restricted information. The ITAR/EAR defines a U.S. person as a U.S. Citizen, U.S. Permanent Resident (i.e. 'Green Card Holder'), Political Asylee, or Refugee.Recruiting Company: Bell Textron Inc.Primary Location
US-Texas-Fort WorthJob Field
Schedule
Full-timeJob Level
Shift
First ShiftTravel
Yes, 15 % of the TimeRelocation AvailableJob Posting
05/13/2024, 1:55:54 PMTextron values diversity to enhance our businesses.
#J-18808-Ljbffr
Job Number:
323522 )We’re more than aviation experts, we’re pioneers. We challenge what’s possible. From breaking the sound barrier to advanced tiltrotor systems. Today, Bell is shaping the future of aviation through specialized engineering.
And we want you.Bell in Fort Worth, TX has on-site roles for Product Cyber Security Engineers ranging from Sr Engineers to Principal Engineers and above to support
Aircraft Cyber Security Compliance and Analysis.In these critical Cyber Security roles, you will join the Future Vertical Lift (FVL) V280 team focusing on Compliance and Analysis of airborne cyber security artifacts (RMF documentation and contract deliverables which includes MBSE modeling).You will ensure our next-generation tiltrotor aircraft meet all aspects of compliance thereby producing a cyber resilient and survivable platform. You will engage in this fast-paced program through collaborating in cross-functional groups, process development and adherence throughout the product lifecycle, while ensuring the cyber security aspects remain aligned with customer and regulatory requirements.You may be deriving and allocating aircraft architecture design requirements, architectural analysis, and model-based systems engineering (MBSE) implementation utilizing CAMEO. Threat modeling exercises using various methodologies (STRIDE, STPA, STPA-Sec) to include cyber tabletops.Compliance driven programs require DoDI 8510.01/8500.01 Risk Management Framework (RMF) certification for military platforms, and your work will include process development and documentation, threat management, mitigation, and the implementation of all applicable controls. You will serve as a liaison for various engineering functions and review/validate/remediate the impact all design changes to existing and in-development platforms.A Day in the Life:
Engage in the flight controls, avionics, or mission system architecture development and influence design for cyber security. Conduct analytics of design options, identify risks and mitigation steps. Take ownership of the vulnerability analysis through our state-of-the-art System Integration Labs (SILs). But more than anything, it’s about being open-minded and inquisitive about what’s possible and to bring the most innovative ideas to life. We rise to the challenge, push past obstacles to create new solutions to the hardest problems, and open doors to new experiences few dream possible.From our founding as an aerospace innovator to our current position as a technology company that is redefining flight, we come to work every day to do things differently.Cyber Security Certifications Required:For a Senior Engineer role: you should possess or obtain within 6 months of hire a DoD 8570 IAM or IAT Level I certification at a minimum (i.e., Security+ CE, CAP, CSSLP, etc.).For a Principal Engineer or higher role: you should possess a DoD 8570 IAM or IAT Level III certification at a minimum (i.e., CISSP, CISM).Education and Skills You Bring To this Role:Bachelor’s Degree is required in a technical discipline (Electrical/Electronic Engineering (EE), Electronic Engineering in Technology (EET), Computer Science, and/or Cyber Security or similar technical bachelor’s degree).Multiple levels of experience in cybersecurity will be considered with a minimum of 2 years of experience, and we greatly prefer those with at least 6 years or more of DoD RMF / DIACAP accreditation experience and the Authority to Operate (ATO) Process.At least familiarity with NIST SP 800-37/53/160v2 RMF publications, but greatly prefer those with have in-depth knowledge of NIST SP800 standards.At least familiarity with and greatly prefer those who have generated SCTMs, POAMs, Risk Assessments, SSP, and Security Assessments.Ability to work in a collaborative technical environment and negotiate design and cyber security technical trade-offs with Integrated Product Teams (IPTs) and throughout the organization.The ability to develop and communicate product cyber security requirements and perform residual risk assessments in accordance with Bell’s product cyber security policies and methods is required.Familiarization with DoD Cyber Survivability Endorsement Implementation Guide (CSEIG).Experience and/or familiarity with one or more areas: attack trees, tabletops, threat modeling, architectural design analysis, digital signing, software authenticity, root of trust systems, plus threat and vulnerability analysis.Ability to obtain and maintain a DoD Secret level clearance.What You Need to Be Successful:We are looking for inquisitive and driven engineers with a passion to innovate.Strong logical, analytical, and communication skills are required.Ability to prioritize work, strong analytical and problem-solving skills with a team player mindset.Ability to create plans, procedures, and briefing material(s) for program presentations to USG.What We Offer You in Return:You’ll be off every other Friday with our 9/80 work schedule.80 hours of Personal Time Off (PTO).120 hours Vacation time.12-13 paid holidays per year.6 weeks parental leave.On-site clinic, pharmacy, physical therapy, and licensed counselor.Access to more than 11 Employee Resource Groups.And so much more.It’s time to make your mark on the future of aviation. Join us on this mission, and let’s make history together.We are on a journey to amplify innovation, cultivate purpose and bridge experiences by fostering a culture that is driven by unique perspectives, voices and values.EEO StatementTextron is committed to providing Equal Opportunity in Employment, to all applicants and employees regardless of race, color, religion, gender, age, national origin, military status, veteran status, handicap, physical or mental disability, sexual orientation, gender identity, genetic information or any other characteristic protected by law.Applicants selected will be subject to a government security investigation and must meet eligibility requirements, including US Citizenship, for access to classified information. This position requires use of information which is subject to the International Traffic in Arms Regulations (ITAR) and/or the Export Administration Regulations (EAR). Non-U.S. persons selected must meet eligibility requirements for access to export-restricted information. The ITAR/EAR defines a U.S. person as a U.S. Citizen, U.S. Permanent Resident (i.e. 'Green Card Holder'), Political Asylee, or Refugee.Recruiting Company: Bell Textron Inc.Primary Location
US-Texas-Fort WorthJob Field
Schedule
Full-timeJob Level
Shift
First ShiftTravel
Yes, 15 % of the TimeRelocation AvailableJob Posting
05/13/2024, 1:55:54 PMTextron values diversity to enhance our businesses.
#J-18808-Ljbffr