Product Systems Security Engineer

Rolls-Royce is a leading company known for its innovation and commitment to safety and reliability. They are seeking a Product Systems Security Engineer to secure products against various security threats and contribute throughout the product lifecycle, from concept to production. The role involves collaboration with cross-functional teams and requires a strong background in systems security engineering.

Responsibilities

• Contribute to the Secure Cyber Resilient Engineering (SCRE) of our products, applying technical knowledge and providing technical direction as required throughout the product lifecycle: architecture, requirements, design, build, test, production, operations, and support
• Frequently, these activities will be done in a digital environment using Model Based Engineering tools
• Contribute to the development, implementation, documentation, and maintenance of policies, procedures, associated guidelines, tools and training
• Contribute to the security life cycle activities (concept through release) including regulatory certification/qualification (ie - The Risk Management Framework, ED-202A / DO-326A, Secure By Design, IEC 62443, etc)
• Collaborate with government, customers, suppliers, and industry experts to meet system and program requirements
• Provide feedback on systems security and resilience good practice and help disseminate the techniques, policies, procedures, and knowledge across the business
• Able to work across and communicate with multiple business functions (ie - Software, hardware, maintenance, manufacturing, corporate)

Skills

• Bachelor's degree in a relevant engineering discipline (Electrical, Software, Controls, Systems, Cybersecurity) with 1+ years of experience, OR Master's degree in a relevant engineering discipline (Electrical, Software, Controls, Systems, Cybersecurity), OR JD/PhD
• Must be a U.S. citizen with the ability to obtain and maintain a US DoD security clearance
• 1+ years of experience working in Product Security Engineering on real-time cyber-physical embedded systems (ie - aviation systems, software defined vehicles, medical devices, weapon systems, etc) OR 2+ years of experience working in a related Engineering role (ie - Systems Engineering, Software Engineering, Electronics Engineering, Manufacturing Engineering, etc)
• Familiarity with Systems Engineering on complex systems and excellent systems thinking aptitude: the ability to understand complex system boundaries, interactions, and interdependencies across multiple abstraction layers throughout the system's entire lifecycle
• Knowledge of embedded systems and the technical skills required to develop, implement, and secure such cyber-physical systems
• Experience or interest in cybersecurity and cyber threats (ie - designing secure products, systems, and applications; intrusion detection; digital forensics; system recovery; risk assessment tools and methods; security solutions, policies, standards, and procedures, etc.)
• Knowledge and/or experience in applying Product Security policies and standards to the engineering of cyber-physical systems such as NIST SP 800-160, DO-326, UK Secure By Design, IEC 62443, the Risk Management Framework (RMF), and DoDI 5000.83
• Excellent communications skills: able to influence without authority and describe complex ideas simply and succinctly to non-technical people

Benefits

• Bonus
• Employee support assistance
• Employee discounts
• Health
• Dental
• Vision
• Disability
• Life and accidental death & dismemberment insurance
• Flexible spending account
• Health savings account
• 401(k) retirement savings plan with a company match
• Employee Assistance Program
• Paid Time Off
• Certain paid holidays
• Paid parental and family care leave
• Tuition reimbursement
• Long-term incentive plan

Company Overview