Sr. Embedded Product Security Eng (Hybrid)

Posted Feb 23

Full Job Description

Date Posted:

2023-02-21-08:00

Country:

United States of America

Location:

HIA32: Cedar Rapids, IA 400 Collins Rd NE , Cedar Rapids, IA, 52498-0505 USA

Position Role Type:


Remote

As a Senior Embedded Product Security Engineer, you will influence the secure design and development and security verification testing of new or updated products throughout the Avionics Business Unit. Our product portfolio spans a variety of avionics products, from Flight Management Solutions, Cabin Management Systems to next generation aircraft connectivity and communication solutions. As a member of the Cybersecurity Engineering team, you will specialize in developing custom tools and testing techniques to uncover residual defects in our products design and/or implementation. This team excels by embedding a security engineer with the design and implementation teams as the product cybersecurity subject matter expert that guides program adherence to our Secure Systems Development Life Cycle (SSDLC). We understand product cybersecurity work is never done and this team strives to enhance our product cybersecurity posture every day!

As our Senior Embedded Product Security Engineer, you will be a key member of a shared services team of security engineers focused on improving the quality of our products by ensuring the security, integrity and robustness is maintained throughout the product life cycle

The Ideal candidate will posses a willingness to embrace continuous improvement through company funded security certification and/or post-grad degrees

Primary Responsibilities:

  • Develop threat models and data flow diagrams to identify untrusted inputs
  • Collaborate with software architects and development teams to mitigate security threats
  • Review code to identify weaknesses in the implementation of security functions
  • Conduct vulnerability assessments of proposed and fielded systems
  • Develop and executing fuzzing and penetration tests to evaluate product robustness from untrusted inputs
  • Create custom security testing tools that utilize aerospace specific protocols
  • Implement mandatory access control (MAC) through Security Enhanced Linux (SELinux)
  • Guide the organizational adherence and adoption of the SSDLC

Basic Qualifications:

  • Typically requires a degree in Science, Technology, Engineering or Mathematics (STEM) unless prohibited by local laws/regulations and minimum 5 years prior relevant experience or an Advanced Degree in a related field and minimum 3 years of experience or in absence of a degree, 9 years of relevant experience
  • U.S. Person (U.S. citizen, permanent resident, refugee or asylee) or eligible to obtain necessary export authorizations required.
  • https://www.ecfr.gov/current/title-22/chapter-I/subchapter-M/part-120/subpart-C/section-120.62
  • Embedded software development experience in Linux OS environment
  • Experience coding in C, C++ or Python
  • Networking experience - Layer 2 / Layer 3 / Layer 4 protocols

Preferred Qualifications:

  • Experience creating and analyzing Threat Models and Data Flow Diagrams
  • Analysis of system and application security design and architecture
  • Conducting system and application vulnerability assessments
  • Data/network security implementations with Linux OS
  • Understanding tailoring and hardening of Linux OS
  • System and Application Penetration Testing experience
  • Hands-on experience with static code analysis and collaborating with developers to resolve findings
  • Creating System & Application Fuzzing / Resiliency Tests
  • SELinux Policy Development
  • Experience with Public Key Infrastructure (PKI) device certificate management
  • Experience or knowledge of RTCA DO-326A / DO-356A

Collins Aerospace, a Raytheon Technologies company, is a leader in technologically advanced and intelligent solutions for the global aerospace and defense industry. Collins Aerospace has the capabilities, comprehensive portfolio, and expertise to solve customers’ toughest challenges and to meet the demands of a rapidly evolving global market.

Our Avionics team advances flight deck solutions, airborne communications, vision systems, sensors and fire protection for commercial and military customers around the world. That means we’re helping people reach their destination safely and keeping pilots, passengers, flight crews, airlines, airports and military personnel connected and informed. And we’re providing industry-leading fire protection and safety systems that our customers can count on when it matters most. Are you ready to learn from the most knowledgeable experts in the industry, develop the technologies of tomorrow and reach new heights in your career? Join our Avionics team today.

Collins Aerospace Diversity & Inclusion Statement:

Diversity drives innovation; inclusion drives success. We believe a multitude of approaches and ideas enable us to deliver the best results for our workforce, workplace, and customers. We are committed to fostering a culture where all employees can share their passions and ideas so we can tackle the toughest challenges in our industry and pave new paths to limitless possibility.

WE ARE REDEFINING AEROSPACE.

  • Please consider the following role type definitions as you apply for this role.

Onsite: Employees who are working in Onsite roles will work primarily onsite. This includes all production and maintenance employees, as they are essential to the development of our products.

Hybrid: Employees who are working in Hybrid roles will work regularly both onsite and offsite. Ratio of time working onsite will be determined in partnership with your leader.

Remote: Employees who are working in Remote roles will work primarily offsite (from home). An employee may be expected to travel to the site location as needed.

Regardless of your role type, collaboration and innovation are critical to our business and all employees will have access to digital tools so they can work with colleagues around the world – and access to Collins sites when their work requires in-person meetings.

Some of our competitive benefits package includes:

  • Medical, dental, and vision insurance
  • Three weeks of vacation for newly hired employees
  • Generous 401(k) plan that includes employer matching funds and separate employer retirement contribution, including a Lifetime Income Strategy option
  • Tuition reimbursement program
  • Student Loan Repayment Program
  • Life insurance and disability coverage
  • Optional coverages you can buy: pet insurance, home and auto insurance, additional life and accident insurance, critical illness insurance, group legal, ID theft protection
  • Birth, adoption, parental leave benefits
  • Ovia Health, fertility, and family planning
  • Adoption Assistance
  • Autism Benefit
  • Employee Assistance Plan, including up to 10 free counseling sessions
  • Healthy You Incentives, wellness rewards program
  • Doctor on Demand, virtual doctor visits
  • Bright Horizons, child and elder care services
  • Teladoc Medical Experts, second opinion program
  • And more!

Nothing matters more to Collins Aerospace than our strong ethical and safety commitments. As such, all U.S. positions require a background check, which may include a drug screen.

Note:

  • Background check and drug screen required (every external new hire in the U.S.)
  • Drug Screen only performed on re-hires who have been gone for more than 1 year

At Collins, the paths we pave together lead to limitless possibility. And the bonds we form – with our customers and with each other - propel us all higher, again and again.

Apply now and be part of the team that’s redefining aerospace, every day.

The salary range for this role is 75,000 USD - 161,000 USD; however, Raytheon Technologies considers several factors when extending an offer, including but not limited to, the role and associated responsibilities, a candidate’s work experience, education/training, and key skills. Raytheon Technologies is An Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability or veteran status, age or any other federally protected class.

Privacy Policy and Terms:

Click on this link to read the Policy and Terms