Key skills
Software licensingSoftware cybersecurity principlesSoftware development lifecycleAutomated toolingSecurity auditsCollaboration with stakeholderscommunicationCommunicationCollaboration
About this role
Boeing is a leading aerospace company committed to innovation and collaboration. They are seeking an Open Source Security Compliance Engineer to support their Open Source Program Office, focusing on evaluating and mitigating security risks associated with open-source software and ensuring compliance across the enterprise.
Responsibilities:
- Operationalize the open-source policy and process through automation
- Independently investigate, analyze, and resolve licensing issues, driving for business-based outcomes
- Automate Software Composition Analysis (SCA) through a combination of COTS, open source, and in-house tooling. Conduct trade studies and work with Product Owners to meet requirements for a broad range of stakeholders
- Manage the configuration and output of dependency scanners, triage critical open-source software vulnerabilities, and ensure timely remediation with development teams
- Translate approved legal/license policies into code-based checks and automated tooling to prevent incompatible license usage in new projects
- Engineer and maintain security and license scanning tools; enforce compliance by ensuring automated build failures upon policy violation
- Document all automated processes and serve as the technical liaison, transferring security analysis into scalable, repeatable engineering practices across the enterprise
- Collaborate with the Product Owner on the backlog and technical roadmap
- Seek out additional automation opportunities
- Track and improve KPIs
Requirements:
- 1+ years' experience with software licensing and knowledge of issues with the use of third party and open-source software
- 2+ years' experience in the application of software cybersecurity principles and techniques
- 3+ years' experience in software development lifecycle
- Ability to obtain a U.S. Security Clearance for which the U.S. Government requires U.S. Citizenship
- Bachelor of Science degree from an accredited course of study in engineering, engineering technology (includes manufacturing engineering technology), chemistry, physics, mathematics, data science, or computer science
- Ability to independently make and execute Software product level licensing decisions
- Ability to interact effectively with Legal, Ethics, and Program Management
- Previous experience performing license assessments and working licensing issues
- Excellent communication skills, both verbal and written