Associate Vulnerability Assessments & Infrastructure Specialist – Vulnerability & Attack Surface Management
Boeing
full-time
Posted on:
Location Type: Hybrid
Location: Kent • Arizona • California • United States
Visit company websiteExplore more
Salary
💰 $93,500 - $135,700 per year
About the role
- Operate and optimize enterprise vulnerability assessment platforms and AppSec integrations to identify, validate, and prioritize security findings across infrastructure and applications
- Perform technical exploitability analysis and business-impact assessments
- Translate findings into prioritized, operationally feasible remediation actions for engineering, IT, and operations teams
- Contribute to development and operationalization of assessment playbooks, scanning standards, and AppSec scanning pipelines
- Execute enterprise processes for scheduled and emergent vulnerability assessments, including infrastructure and application discovery
- Configure, tune, and maintain vulnerability scanning platforms and AppSec integrations
- Investigate findings to distinguish true positives from false positives
- Correlate vulnerability scanner output with threat intelligence to produce contextualized risk ratings and remediation priorities
- Create remediation plans and coordinate fixes with system owners and application teams
- Track remediation burndown, SLAs, and closure
Requirements
- 1+ years of experience with vulnerability scanning concepts and best practices
- 1+ years of experience with Linux and/or Windows Security
- 1+ years of experience troubleshooting foundational networking issues (TCP/IP, DNS, routing, firewalls)
- Active Security+, Certified Information Systems Security Professional (CISSP), or vendor/tool-specific certifications preferred
- 3+ years of experience analyzing vulnerability findings, triage true vs false positives, and identify environmental limitations or compensating controls desired
- 3+ years of experience managing scan configurations, credentials, schedules, and assessment scope within large or distributed environments desired
- Experience with application security (SAST/DAST/SCA) desired
- Experience integrating vulnerability management with AppSec pipelines and DevSecOps tools desired
- Experience with Boeing subsidiaries, mission domains, and supply chain considerations desired
- Experience with vulnerability risk rating methodologies and threat intelligence correlation desired
- Experience with cloud environments and cloud-native scanning challenges desired
- Experience with regulated or compliance-driven environments and supporting audit or risk frameworks desired
Benefits
- Health insurance
- Flexible spending accounts
- Health savings accounts
- Retirement savings plans
- Life and disability insurance programs
- Paid time off
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard Skills & Tools
vulnerability assessmentexploitability analysisremediation planningvulnerability scanningnetwork troubleshootingapplication securityDevSecOpsthreat intelligence correlationcloud environmentsrisk rating methodologies
Soft Skills
communicationcollaborationproblem-solvingorganizational skillsanalytical skills
Certifications
Security+Certified Information Systems Security Professional (CISSP)