Job Description

Enterprise Cloud Cybersecurity and Compliance Analyst Boeing is looking for a talented Enterprise Cloud Compliance analyst that will help orchestrate compliance strategy, requirements, and deliverables, as they relate to Boeing Commercial and Government Cloud programs supporting our customers. You will support the effort and be responsible for understanding security and compliance standards for Boeing and the Industry and ensuring they are implemented and maintained in the Boeing Enterprise Cloud with an overall goal of moving compliance beyond a checklist and driving compliance and governance as code. Job Responsibilities . Support the development and deployment of enterprise cybersecurity for all aspects of the Boeing Enterprise Cloud (Currently: Azure, AWS, and Google) ensure they meet Boeing Enterprise requirements, policies, standards, guidelines and procedures. . Coordinate with relevant security and compliance stakeholders to gather and understand specific external cloud service provider and industry compliance requirements . Provide guidance and coaching to support application teams hosted in the enterprise cloud environment. . Develop and publish local security and compliance guidance for cloud environments based on coordinated direction with security and compliance leadership . Compliance of SAFe Large Solution Team Scope . Define, communicate and sustain compliance guidance for onboarding applications . Actively partner with the Enterprise Cloud leadership team to sustain and maintain the Information Security Management System (ISMS), which supports compliance with industry certifications (ISO 27001:2022). . Lead cybersecurity assessments and audits both in terms of controls and risks. Prepares, reviews, and presents technical reports and briefings. Identifies root causes, prioritizes threats and consults on/implements corrective action in the following areas: . ISO Certifications (ISO 27001, ISO 27017, ISO 27018) . National Institute of Standards and Technology (NIST) Compliance . PCI Certifications . Explores new and evolving cybersecurity related learning, methods and best practices both within the Boeing Enterprise and across the industry. . Author Compliance related policies specific to the Enterprise Cloud team derived from Boeing Enterprise and/or industry policy and guidance. . Manage and Maintain Corporate compliance Score card for Enterprise Cloud Environments Basic Qualifications (Required Skills and Experience) . 3+ years\' experience in a cloud computing environment such as: Amazon EC2, Google Cloud Platform, Microsoft Azure. . 3+ years\' experience with understanding and deploying compliance from the National Institute of Standards and Technology (NIST) . 3+ years\' experience with ISO Certifications . Experience in team building, leading cross-functional teams, motivating and engaging team member, and inspiring work groups through daily interactions . Experience with Scaled Agile Framework or Agile Methodologies Preferred Qualifications (Desired Skills and Experience) . Certified Information Systems Security Professional (CISSP) . Knowledge of Non US (Sovereign Cloud) requirements Typical Education Technical bachelor\'s degree and typically 13 or more years\' related work experience or a Master\'s degree with typically 12 or more years\' or a PhD degree or an equivalent combination of education and experience. A technical degree is defined as any four year degree, or greater, in a mathematic, scientific or information technology field of study. Drug Free Workplace: . Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies. . Additional Information: . All information provided will be checked and may be verified. . Please apply as soon as possible for this role as recruitment may commence before the end date. Export Control Requirements: Not an export control position Equal Opportunity Employer: We are an equal opportunity employer. We do not accept unlawful discrimination in our recruitment or employment practices on any grounds including but not limited to color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military and veteran status, or other characteristics covered by applicable law. We have teams in more than 65 countries, and each person plays a role in helping us become one of the world\'s most innovative, diverse and inclusive companies. Applicants are encouraged to share with our recruitment team any accommodations required during the recruitment process.

foundit