Cyber Security Product RISK Manager

Multiple Locations Available:
Arlington, VA or Herndon, VA

Airbus U.S. Space & Defense, Inc offers advanced solutions to meet the most complex U.S. defense, security, space, and intelligence requirements. Celebrating over 50 years in the US, we remain a trusted government partner, leveraging world‑class satellite, laser communication, rotor and fixed wing solutions to help our national security, defense and space focused customers meet their missions.

Airbus U.S. looks to employ a commitment driven team, dedicated to enabling our customer's mission success. We are committed to maintaining a diverse and inclusive work environment and a welcoming and engaging staff. With competitive compensation and superior employee benefits, as well as a commitment to fostering individual career growth, Airbus U.S. is the place where top talent wants to work.

Airbus US is looking for a Cyber Security Product Risk Manager who works with specialists from the Cyber, Space Engineering, and Contracts departments to ensure our products meet the applicable hardening requirements with a view that cyber risks are identified and controlled during the entire product life cycle. The products include Spacecraft and associated ancillary components.

• Responsible for the Cyber security of our products.
• Develop methodology to detect security events on hardware, including PCB analysis, and debug port detection.
• Extract and reverse engineer firmware, exploit development.
• Knowledge of Space BUS architecture, Secure boot.
• Production of System Security Plan (SSP). These artifacts include a System Security Plan (SSP), Risk Assessment Report, Security Controls Traceability Matrix, and Plans of Actions & Milestones (POA&Ms). Familiarity with the NIST 800-53 controls (as applied through CNSSI-1253).
• Working as an individual contributor representing the Cyber team within the Space engineering team to architect, implement, and execute Risk Management Framework (RMF) Cyber Security, Cyber Resilience, Cyber Survivability requirements of satellite systems, onboard computers, and flight software.
• All candidates must be capable of supporting cybersecurity assessment events where they work closely with systems administrators and other cyber personnel and engineering personnel (ISSOs, ISSMs,) to satisfactorily demonstrate that all applicable security controls are implemented within the system boundary.
• Proactively engages with Compliance and Legal to ensure adherence with all external and internal compliance and regulatory requirements.
• Establishes strategic peer-to-peer partnerships with suppliers, manufacturers, and other industry experts in order to develop new products or improve existing products while ensuring that applicable boundaries/firewalls are respected.
• Manages multiple product and capability initiatives to drive clear prioritization and direction to cross-functional teams including Cyber Security, and Space Engineering from Airbus US as well as key client representatives.
• Provides leadership and serves as the escalation point for all issues arising across functional teams in assigned work streams.
• Provide updates to senior leaders and other internal and external stakeholders on integration project statuses on a regular basis.
• Actively seeks and gathers customer/stakeholder feedback and applies is to product development as appropriate.
• Develop business opportunities through peer-to-peer relationships with industry influencers and government decision-makers.
• Other projects as assigned.

• Bachelor's Degree in STEM field (Cyber security, Electrical engineering, Aeronautical engineering, Aerospace Engineering) or equivalent experience (5 years Cybersecurity experience in the aerospace industry or military).

• Familiarity with the NIST 800-53 controls (as applied through CNSSI-1253) and Development Security operations.
• Extensive experience of RMF implementation and defensive Cyber operations.
• Minimum of 5 years Project Management experience that includes: