Product Security Analyst

At Boeing, we innovate and collaborate to make the world a better place. From the seabed to outer space, you can contribute to work that matters with a company where diversity, equity and inclusion are shared values. We're committed to fostering an environment for every teammate that's welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.

Boeing is the world's largest aerospace company and leading manufacturer of commercial airplanes and defense, space and security systems. We are engineers and technicians. Skilled scientists and thinkers. Ambitious innovators and dreamers. Join us, and you can build something better for yourself, for our customers and for the world.

As an equal opportunity employer that promotes a diverse and safe workplace environment, one of the country's leading and preferred Defence partners, Boeing Defence Australia (BDA) is now looking for experienced Cyber Operations Analysts to fill roles at multiple career levels.

The **Product Security Analyst - Cyber Operations & Compliance Specialist**for the Mission Systems and Ground Systems Capability will be supporting the E-7A AUS Wedgetail AEW&C program.

To be successful in the role you should always be expanding your industry knowledge and be able to quickly identify security issues.

You will be joining a challenging and dynamic environment, supporting an aircraft platform that defends the Australia's interests. The role located onsite in Williamtown, NSW, and remote work is unavailable.

A solid foundation in Computer Science, Cyber Security or ICT is required to succeed in the role, with formal qualifications and industry experience preferred.

**Responsibilities**
- Monitoring and Analysing network traffic and event logs to identify potential threats and vulnerabilities.
- Assist in Continuous monitoring and assessment of security control coverage and effectiveness, performing activities to provide assurance of security controls and that tasks such as Asset management, Patching and other maintenance tasks have been completed and are effective.
- Perform Vulnerability assessments and audits to identify weaknesses and recommend appropriate security measures.
- Identify current configuration and practices in support of the maintenance of Security Accreditation documentation.
- Author and /or review Vulnerability management reports, briefs and presentation packs, and other supporting documentation.
- Manage or Support Incident response activities and post incident analysis, tabletop exercises and reporting.
- Work as part of a team responsible for implementation of information security requirements, policies, standards, guidelines and procedures.
- Evaluate capability risk/gaps and takes and/or coordinates action to meet objectives.
- Delivers sound and timely information security design advice and can recommend technological, or procedural solutions to meet security control intent in support of engineering projects.
- Investigate and document information security events. Identify root causes, prioritises threats and recommend and/or implement corrective actions. Test and deploy risk mitigation processes and tools. Monitors outcomes and takes action.
- Participates in the creation of security policies, audits, assessments.

**Experience/Qualifications**
- Working knowledge of Australian Defence Security Principles Framework and associated policies and procedures including familiarity with the Australian Government Information Security Manual.
- Understanding of developing and implementing information security practices in an engineering environment.
- Certifications or demonstratable experience in Incident response, auditing, vulnerability assessment, SIEM, IDS/IPS, firewalls or penetration testing, IT or security tools.
- Solid written and verbal communications skills and the ability to clearly articulate complex security concepts to a broad and diverse audience.
- Sound information security knowledge across the following environments is desirable:
- Network connectivity and configuration.
- Windows Client-server systems.
- Linux Client-server systems.
- Support and maintenance of in-house hardware/software systems.
- Engineering Change Management processes.
- A desire to work as part of a dynamic team supporting a diverse range of technology.
- Industry recognised information security qualification is preferable and/or relevant experience.
- Hold, or be able to achieve a minimum of NV1 clearance, NV2 will be required.
- **Ability to obtain a Security Clearance** - The preferred applicant will be required to successfully undergo the security clearance vetting process at the NEGATIVE VETTING 2 level. The preferred applicant **MUST** be willing to disclose all relevant and required information and **MUST** have lived in Australia, or have a checkable background, for at least the preceding** Five** years.

**Applicants must be Australian Citizens to meet Defence security requirem