Offensive Security Engineer
U.S. Bank
Corporate Product Cybersecurity Governance & Incident Response Leader – Secret Clearance Required
RTX
full-time
Posted on:
Location Type: Remote
Location: Remote • Massachusetts • 🇺🇸 United States
Visit company websiteSalary
💰 $176,000 - $352,000 per year
Job Level
Senior
Tech Stack
Cyber Security
About the role
- Oversight and implementation of Product Cybersecurity processes and work instructions at the Enterprise level as they relate to risk management and incident response frameworks
- Partner with key stakeholders across business units and functions on Product Cybersecurity related risks and incident response.
- Lead the development and implementation of risk and incident response policies, procedures, and standards.
- Collaborate with corporate organizations on the identification of industry and company trends related to incidents and threats.
- Drive operations according to government standards and regulations.
- Lead and partner with stakeholders to develop, communicate, and execute product cybersecurity crisis management plans and playbooks.
- Coordinate and lead product cybersecurity incident tabletops, process and procedure testing and corrective actions.
- Conduct incident after action reviews to identify strengths, improvement opportunities and track corrective actions.
- Develop metrics programs to track status, trends, and effectiveness of product cybersecurity risk management and incidents on programs.
Requirements
- Requires a University Degree or equivalent experience and a minimum 14 years of experience, or an Advanced Degree and a minimum 12 years experience.
- 12+ years in product development of commercial and/or defense products.
- 5 + years experience developing and implementing cybersecurity requirements derived from NIST 800-53 and the Risk Management Framework, for the Department of Defense, FAA, or Intelligence Community.
- Experience leading teams of 5-10 people and managing cost and schedule for cross-company initiatives.
- Experience in implementing security risk management activities such as those found in the Secure Software Development Lifecycle (SSDLC) framework.
- Active and transferable U.S. government issued security clearance is required prior to start date.
- U.S. citizenship is required, as only U.S. citizens are eligible for a security clearance.
Benefits
- medical
- dental
- vision
- life insurance
- short-term disability
- long-term disability
- 401(k) match
- flexible spending accounts
- flexible work schedules
- employee assistance program
- Employee Scholar Program
- parental leave
- paid time off
- holidays
Applicant Tracking System Keywords
Tip: use these terms in your resume and cover letter to boost ATS matches.
Hard skills
cybersecurityrisk managementincident responseNIST 800-53Secure Software Development Lifecyclemetrics developmentpolicy developmentprocedure testingcorrective actionsproduct development
Soft skills
leadershipcollaborationcommunicationstakeholder managementteam managementproblem-solvingstrategic planningcrisis managementanalytical thinkingprocess improvement
Certifications
U.S. government issued security clearance
