Do you love taking on challenges that create a positive impact? Are you passionate about empowering the future of aviation? Join our team of dynamic, intelligent, and creative engineers working across multiple functions to further the cybersecurity of wireless airborne communication systems. We are seeking a senior-level Avionics Security Systems Engineer with extensive experience in Cybersecurity, established industry and national standards, and RTCA DO guidance material. The ideal candidate is a versatile leader with the initiative to take on new problems and challenges.
This position can be onsite in El Segundo, Thousand Oaks, or Eagan, MN.
As the Avionics Security Systems Engineer, you will manage and deploy new developments in commercial aviation data security for Teledyne Controls’ airborne and ground-based products. You will serve as a Security Subject Matter Expert (SME), regularly communicating with a variety of engineering, program, and customer stakeholders. Your leadership will guide our team in designing and building hardware and software technologies that enhance the safety and security of commercial aircraft globally. This role offers autonomy and the opportunity to shape the foundational components of next-generation avionics. Imagine what you could achieve!
Essential Duties and Responsibilities include the following. Other duties may be assigned.
- Develop and implement security protocols, policies, and procedures specific to avionics systems.
- Ensure compliance with relevant industry standards and follow RTCA guidelines (e.g., DO-326A, DO-355A, DO-356A), particularly related to airworthiness security.
- Collaborate with the FAA and other relevant certification or standards bodies.
- Prepare documentation for certification processes, including compliance reports and safety assessments.
- Develop and coordinate incident response plans for avionics security breaches, ensuring timely recovery.
- Train engineering teams on security best practices and foster a security-aware culture within the organization.
- Liaise with avionics committees, industry working groups, and regulatory bodies.
- Attend industry events, conferences, and workshops to stay informed about the latest security trends and share insights.
- Lead development of security architectures, requirements, and test/analysis procedures.
- Create threat models to analyze potential security weaknesses in embedded devices and cloud-based products.
- Build the infrastructure for internal/external penetration tests and vulnerability assessments.
- Develop and implement tailored security architectures and infrastructures across multiple projects.
- Identify, test, and deploy new security technology.
- Provides input into systems definition, technical design, and costs for proposal preparation on new products.
- Provides technical input for customer attended design review presentations.
- Provides estimates and input into scheduling for system security statement of work.
Supervisory Responsibilities
Provides direct oversight to a team of Security engineers, from entry level personnel to senior level engineers. Responsibilities include:
- Coordinates assignment of Security personnel including assignment of duties, responsibilities, and scope of authority based on individual skill sets and availability.
- Monitors employee hours and program charging.
- Reviews trip reports and travel summaries.
- Ensures training requirements for company processes and required Security Engineering skill sets.
- Mentors Security Engineers at all levels and encourages job specific classes and training.
- Conducts Performance Reviews based on input received from the Program Managers and engineering leads where the direct reports are assigned.
- Periodically keeps employees informed of their performance and assists them in setting work goals that will increase their capabilities.
- Promotes employee development by encouraging and supporting their advancement.
- Rewarding and disciplining direct reports; addressing complaints and resolving problems.
Requirements:
To perform this job successfully, an individual must be able to perform each essential duty satisfactorily. The requirements listed herein represent the knowledge, skill, and/or ability required. Reasonable accommodations may be made to enable individuals with disabilities to perform the essential functions.
Education and/or Experience
- Bachelor's degree in Engineering (Computer Science, Computer Engineering, Cyber-Security, or similar technical field preferred) plus a minimum of 10 years of security-related experience.
- Alternatively, a minimum of 13 years of demonstrated cybersecurity experience may suffice in lieu of a technical degree
Computer Skills
Proficient with industry security tools: Vulnerability scanners, Security event logging & Monitoring Analyzers, Intrusion Detection/Prevention System (IDS/IPS) and firewall logs, System and network security audits, Anti-virus products and Central Console.
Certificates, Licenses, Registrations
Security certifications such as the Certified Information Systems Security Professional (CISSP) certification, OEM certifications like Cisco’s Cisco Certified Security Professional (CCSP) certification or Cisco’s Certified Design Expert CCDE, Linux certifications like Red Hat’s RHCE and Microsoft’s MCSE Security are preferred but not required. Certifications such as Security+ are also useful.
Other Skills and Abilities
- Strong knowledge in systems architecture as it pertains to cybersecurity.
- Experience with auditing, risk and threat analysis, contingency planning, creating security standards, and using various security tools.
- Understanding of TCP/IP, Linux, network/system intrusion techniques, firewalls and VPNs.
- Working knowledge of connected systems, security concerns and supporting infrastructures.
- Strong knowledge of network concepts including design and troubleshooting.
- Good knowledge of system design concepts and application development.
- Working knowledge of Docker security and application containerization.
- Working knowledge of security implementations in cloud environments such as AWS.
- Focused knowledge in areas of virtualization, identity and access management, Public Key Infrastructures (PKI), mutual authentication using digital certificates, and code signing and verification.
- Required – Familiarity with NIST and ISO27001 standards. Preferred – Understanding of aviation security standards and guidance.
- Extensive experience performing security and vulnerability analyses for aircraft systems in conjunction with ARINC 842 /ATA Spec 42 and RTCA DO-326A/355/356A is required.
Travel
This position may require 10% domestic and international travel.
US Person Statement
Due to the type of work at the facility and certain access restrictions, successful applicants must be a "US Person" (US Citizens, US Nationals, lawful permanent residents, asylees or refugees).
*Please note the salary range posted below is a general guideline for this job level and location. When extending an offer, a variety of factors are considered such as responsibilities of the position, relevant education and experience, certifications, knowledge and skills.