×
Apply for Jobs Apply for Jobs Post a Job Post a Job Local Jobs Home
Register Here to Apply for Jobs or Post Jobs. X
More jobs:
Cybersecurity Information Security Data Security

Senior Cyber-Supply Chain Risk Management Specialist

Job in Arlington, Arlington County, Virginia, 22201, USA
Listing for: The Boeing Company
Full Time position
Listed on 2026-06-26
Job specializations:
  • IT/Tech
    Cybersecurity, Information Security, Data Security
Salary/Wage Range or Industry Benchmark: 161500 - 233450 USD Yearly USD 161500.00 233450.00 YEAR
Job Description & How to Apply Below

Senior Cyber-Supply Chain Risk Management Specialist (C-SCRM)

Locations:
Arlington, VA;
Berkeley, MO;
Mesa, AZ;
North Charleston, SC;
Ridley Park, PA;
Seattle, WA.

Position Responsibilities
  • Maintain and evolve the enterprise C-SCRM control framework and requirements to ensure alignment with corporate risk strategy, regulatory requirements, and industry best practices (including emerging frameworks).
  • Lead control implementation verification and evidence collection for internal and external audits, assessments, and certification efforts (Customer Request For Information (RFIs), supplier attestations, and third‑party assessments).
  • Develop and maintain critical program governance documentation to operationalize the C‑SCRM lifecycle across internal and external requirements.
  • Coordinate with procurement, legal, engineering, compliance, security, and supply chain teams to operationalize C‑SCRM controls across the supplier lifecycle.
  • Support mapping and traceability of policies/controls to the organization’s control frameworks and to external standards and assessment frameworks.
  • Prepare and present evidence packages and narratives for audit, certification, and customer‑facing activities; own remediation tracking and closure.
  • Participate in supplier risk assessments, continuous monitoring activities, and incident/issue management across the supplier ecosystem.
  • Drive integration of C‑SCRM controls into Governance, Risk, and Compliance (GRC) processes and platforms—especially issue management and remediation workflows.
  • Provide subject‑matter guidance on secure software supply chain practices (e.g., Software Bill of Materials (SBOMs), and build/release controls) and supplier software assurance expectations.
Basic Qualifications (Required Skills/Experience)
  • 10+ years of experience working in risk management, governance, and regulatory requirements related to cybersecurity with a specific focus on business outcomes and service delivery.
  • 5+ years of experience with cybersecurity and regulatory frameworks including NIST 800‑53, NIST 800‑171, CMMC, ISO, GDPR, ITAR or similar frameworks.
  • 5+ years of experience with developing and managing governance and/or leading process improvement.
  • 3+ years of experience supporting internal and external audits, customer RFIs, certifications, and assessment programs; proven ability to prepare evidence packages and present to auditors/customers.
  • 3+ years of experience with Governance, Risk and Compliance (GRC), Information Technology (IT) Audit, Information Security, Vulnerability Management, and Compliance.
Preferred Qualifications (Desired Skills/Experience)
  • Experience with managing multiple concurrent activities and driving cross‑functional coordination to closure.
  • Experience with emerging standards relevant to aerospace/airworthiness and supply chain (e.g., EASA Part IS) and the ability to interpret applicability to C‑SCRM programs.
  • Experience with written and verbal communication skills; ability to translate technical control evidence into clear audit narratives and stakeholder briefings.
  • Experience with vendor/supplier risk management processes and tools; familiarity with continuous monitoring and threat intelligence feeds as applied to supply chain risk.
  • Experience with aerospace, defense, or other highly regulated industries.
  • Experience with automated evidence collection tools, GRC platforms, or supply chain risk monitoring tools.
  • Experience with securing software supply chain practices.
  • Experience with supplier security contract language and operationalizing contractual obligations into work streams.
  • Certifications such as CISSP, CISM, CISA, or equivalent.
Conflict of Interest

Successful candidates for this job must satisfy the Company’s Conflict of Interest (COI) assessment process.

Drug Free Workplace

Boeing is a Drug Free Workplace where post‑offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria are met as outlined in our policies.

Pay & Benefits

At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base…

Position Requirements
10+ Years work experience
To View & Apply for jobs on this site that accept applications from your location or country, tap the button below to make a Search.
(If this job is in fact in your jurisdiction, then you may be using a Proxy or VPN to access this site, and to progress further, you should change your connectivity to another mobile device or PC).
 
 
 
Search for further Jobs Here:
(Try combinations for better Results! Or enter less keywords for broader Results)
Location
Increase/decrease your Search Radius (miles)
0
200
Filters
Education Level
Experience Level (years)
Posted in last:
Salary
Advanced Search