Lead Cyber-Supply Chain Risk Management Specialist

Lead Cyber-Supply Chain Risk Management Specialist The Boeing Company is seeking a Senior Cyber‑Supply Chain Risk Management Specialist (C‑SCRM) to join the Third Party Risk and Resilience team in locations including Arlington, VA; Berkeley, MO; Mesa, AZ; North Charleston, SC; Ridley Park, PA; and Seattle, WA. Position Responsibilities Maintain and evolve the enterprise C‑SCRM control framework and requirements to ensure alignment with corporate risk strategy, regulatory requirements, and industry best practices (including emerging frameworks). Lead control implementation verification and evidence collection for internal and external audits, assessments, and certification efforts (customer RFIs, supplier attestations, and third‑party assessments). Develop and maintain critical program governance documentation to operationalize the C‑SCRM lifecycle across internal and external requirements. Coordinate with procurement, legal, engineering, compliance, security, and supply chain teams to operationalize C‑SCRM controls across the supplier lifecycle. Support mapping and traceability of policies/controls to the organization’s control frameworks and to external standards and assessment frameworks. Prepare and present evidence packages and narratives for audit, certification, and customer‑facing activities; own remediation tracking and closure. Participate in supplier risk assessments, continuous monitoring activities, and incident/issue management across the supplier ecosystem. Drive integration of C‑SCRM controls into Governance, Risk, and Compliance (GRC) processes and platforms—especially issue management and remediation workflows. Provide subject‑matter guidance on secure software supply chain practices (e.g., Software Bill of Materials (SBOMs) and build/release controls) and supplier software assurance expectations. Basic Qualifications (Required Skills/Experience) 5+ years of experience working in risk management, governance, and regulatory requirements related to cybersecurity with a specific focus on business outcomes and service delivery. 3+ years of experience with cybersecurity and regulatory frameworks including NIST 800‑53, NIST 800‑171, CMMC, ISO, GDPR, ITAR, or similar frameworks. 3+ years of experience with developing and managing governance and/or leading process improvement. 3+ years of experience supporting internal and external audits, customer RFIs, certifications, and assessment programs; proven ability to prepare evidence packages and present to auditors/customers. 1+ years of experience with Governance, Risk and Compliance (GRC), Information Technology (IT) Audit, Information Security, Vulnerability Management, and Compliance. Preferred Qualifications (Desired Skills/Experience) Experience with managing multiple concurrent activities and driving cross‑functional coordination to closure. Experience with emerging standards relevant to aerospace/airworthiness and supply chain (e.g., EASA Part IS) and the ability to interpret applicability to C‑SCRM programs. Experience with written and verbal communication skills; ability to translate technical control evidence into clear audit narratives and stakeholder briefings. Experience with vendor/supplier risk management processes and tools; familiarity with continuous monitoring and threat intelligence feeds as applied to supply chain risk. Experience with aerospace, defense, or other highly regulated industries. Experience with automated evidence collection tools, GRC platforms, or supply chain risk monitoring tools. Experience with securing software supply chain practices. Experience with supplier security contract language and operationalizing contractual obligations into workstreams. Certifications such as CISSP, CISM, CISA, or equivalent. Other Requirements Conflict of Interest: Successful candidates must satisfy the Company’s Conflict of Interest (COI) assessment process. Drug Free Workplace: Boeing is a Drug Free Workplace; post‑offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria are met as outlined in company policies. Shift: Shift 1 (United States of America) Safety Sensitive: This is not a Safety Sensitive Position. Security Clearance: This position does not require a Security Clearance. Visa Sponsorship: Employer will not sponsor applicants for employment visa status. Export Control Requirement: This position must meet U.S. export control compliance requirements. A “U.S. Person” as defined by 22 C.F.R. §120.62 is required; “U.S. Person” includes U.S. Citizen, U.S. National, lawful permanent resident, refugee, or asylee. Pay & Benefits At Boeing, we strive to deliver a Total Rewards package that includes competitive base pay and variable compensation opportunities. Eligible employees may enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance, and paid or unpaid time away from work. The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements. Pay is based upon candidate experience and qualifications, as well as market and business considerations. Summary pay range: $130,900 – $189,750. EEO Statement Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law. EEO is the law. Boeing EEO Policy. Request an Accommodation. Applicant Privacy. Boeing Participates in E—Verify (English) and E—Verify (Spanish). Right to Work Statement (English) and (Spanish). This site is for current Boeing Subsidiary Employees. If you are not a current Boeing Subsidiary Employee, you should not apply at this site. Please navigate to jobs.Boeing.com to apply to open positions for external applicants. If you are a direct Boeing employee please navigate to "Find Jobs" in Workday. #J-18808-Ljbffr Boeing