Mid-Level or Senior Product Security Engineer (Cybersecurity)

Mid-Level or Senior Product Security Engineer (Cybersecurity) at BOEING summary : The Mid-Level or Senior Product Security Engineer at Boeing focuses on securing operational technology in manufacturing environments through vulnerability management, patching, and incident response. The role requires collaboration with cross-functional teams to ensure the resilience of production systems and mentoring junior engineers. Candidates must have strong cybersecurity expertise, experience with industrial control systems, and proficiency in relevant tools and programming languages. Job Description At Boeing, we innovate and collaborate to make the world a better place. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us. Boeing Engineering is actively seeking a Product Security Engineer (Cybersecurity) to join our growing Factory & Operational Technology (OT) Product Security Engineering (PSE) team on-site in Everett or Seattle, WA . Our teams are currently hiring for a broad range of experience levels including Mid-Level (Level 3) and Senior (Level 4) Product Security Engineers . This role offers a rare opportunity to work at the forefront of efforts to ensure that our factories, producing products ranging from commercial airplanes, to satellites, to autonomous submersibles, continue to be secure and resilient from cyber threats. Our manufacturing systems—assembly robots, CNC machines, and industrial control systems—along with the buildings that house them, demand rigorous cybersecurity defenses to prevent disruption and compromise. In this role, you will be securing Boeing’s production environments by architecting and implementing OT vulnerability and patch management capabilities, enabling continuous asset visibility, prioritized remediation, and validating fixes in controlled test environments. Working alongside manufacturing, IT, safety, and external vendors, you’ll coordinate mitigations to preserve uptime, participate in incident investigations and root‑cause activities, and drive program improvements. The role blends technical execution, stakeholder coordination, and mentorship to strengthen Boeing’s resilient manufacturing operations. Whether you're passionate about strengthening operational technology security, applying hands‑on technical expertise to protect complex manufacturing environments, or seeking a leadership‑oriented engineering role, this position offers both impact and visibility in a highly specialized domain. Join us and help lead the charge in securing the systems and environments that produce our industry leading products. Primary responsibilities : Develop and enhance the enterprise OT Vulnerability Management Program to deploy OT aware scanning and patching tooling across targeted OT environments such as production equipment, facilities, and labs Implement continuous asset discovery and credentialed / passive vulnerability scanning with centralized ingestion to Boeing SIEM and consolidated reporting Formalize the OT Security lifecycle workflows with risk-based prioritization, ticketing and verification workflows, exception documentation, and compensating control processes Design, build, and validate a safe patching infrastructure, including vendor sourcing, patch staging, test lab validation, deployment orchestration, rollback procedures, and change control coordination Create and maintain procedures for reproducing, testing, and validating OT vulnerabilities using deployed tooling to ensure reliable remediation and verification Coordinate with cross functional stakeholders (manufacturing, IT, safety, vendors) to implement mitigations, minimize operational impact, track program metrics and continuously improve Support incident response (IR) and root‑cause analysis for OT security events, including coordination with the IR team, safety, and operations teams Mentor junior engineers and participate in cross‑functional design reviews Contribute to roadmaps, budget justification, and vendor evaluations to evolve the OT security program Basic Qualifications (Required Skills and Experience) : Bachelor of Science degree in Engineering, Engineering Technology (including Manufacturing Technology), Computer Science, Data Science, Mathematics, Physics, Chemistry or non-US equivalent qualifications directly related to the work statement Level 3 : 5 years of related work experience or an equivalent combination of education and experience Level 4 : 9 years of related work experience or an equivalent combination of education and experience Deep understanding of cybersecurity controls, frameworks, and the vulnerability management lifecycle Experience in design, management, and troubleshooting of industrial control systems Proven experience in hardening both Windows and Linux operating systems Working knowledge of a vulnerability scanning tool such as Nessus, Qualys, OpenVAS, etc Working knowledge of a source control tool such as GIT, Subversion, CVS, etc Working knowledge of cloud security in a cloud platform such as AWS, Azure, Google Cloud, etc Working knowledge of a programming or scripting language (i.e. python, C++, java, etc) Experience in architecture, design, management, administration and troubleshooting of networks with a focus on security controls and firewall administration Preferred Qualifications (Desired Skills and Experience) : Working knowledge of cybersecurity vulnerability assessments, risk assessments, threat models, architecture, and procedures Experience with PowerShell, Bash, Ladder Logic, and Structured Text Deep understanding of the NIST 800 series documents Cybersecurity Certifications such as Security, CySA, CISSP, CEH etc Experience participating in an incident response team Working knowledge in systems engineering and system integration Experience as a DevOps and / or DevSecOps engineer Experience in authoring engineering design and process documents Excellent leadership, technical communication, and documentation skills Drug Free Workplace : Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies. Pay & Benefits : At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base pay and variable compensation opportunities. The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work. The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements. Pay is based upon candidate experience and qualifications, as well as market and business considerations. Summary Pay Range : Experienced (Level 3) : $131,750 - $178,250 Senior (Level 4) : $164,050 - $221,950 Applications for this position will be accepted until Nov. 14, 2025 Export Control Requirements : This position must meet export control compliance requirements. To meet export control compliance requirements, a “U.S. Person” as defined by 22 C.F.R. §120.15 is required. “U.S. Person” includes U.S. Citizen, lawful permanent resident, refugee, or asylee. Export Control Details : US based job, US Person required Education Bachelor's Degree or Equivalent Required Relocation This position offers relocation based on candidate eligibility. Visa Sponsorship Employer will not sponsor applicants for employment visa status. Shift This position is for 1st shift Equal Opportunity Employer : Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military / veteran status or other characteristics protected by law. Keywords : Product Security Engineer, Cybersecurity, Operational Technology Security, Vulnerability Management, Incident Response, Industrial Control Systems, Patch Management, Manufacturing Security, NIST Cybersecurity Framework, Cloud Security