Graduate Product Security Engineer in Bristol

At Boeing, we innovate and collaborate to make the world a better place. We're committed to fostering an environment for every teammate that's welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us. We're looking for a Graduate Product Security Engineer here at Boeing to join our growing team in Bristol and help shape the future of integrating security and resiliency across our products and services.

Product security engineering is a cross-cutting engineering function and a critical element of designing, delivering, and maintaining Boeing products and services. Our mission is to influence designs and implement security solutions that protect product integrity. You will join a highly energised team which is committed to staying ahead of evolving cyber threats, developing effective security measures, consistent standards, practices, and tools. As a Product Security Engineer, you will support our vision to be the trusted global leader in product security engineering, contributing to product safety, integrity, and assurance across cyber‑contested environments.

You will work with a multidisciplinary, enterprise‑wide community to learn and apply best practices, tools, and solutions that protect complex systems, including IT, embedded, and non‑IT environments. This role provides an opportunity to gain hands‑on experience solving security challenges, contribute to security engineering practices, and help strengthen the resilience of Boeing's commercial and defence offerings.

Key Responsibilities

• Assists with the identification and support of product security requirements and architectures to meet certification and customer requirements.
• Participates in design and build activities to help integrate security features into products and services.
• Applies cybersecurity risk analysis techniques and supports threat assessments by collecting and documenting likelihood, impact, and mitigation information.
• Contributes to security assessments and audits to help identify vulnerabilities and recommend mitigations.
• Supports integration of security practices across the product lifecycle through collaboration with cross‑functional teams.
• Communicates product security implications to internal stakeholders.
• Supports Senior PSEs in coordinating activities with governments, customers, suppliers, and industry to identify risks and help improve program and interfacing‑system security standards and requirements.
• Gathers and applies cyber‑threat intelligence findings to inform product security activities.
• Participates in research and development tasks aligned to PSE goals and objectives and assists with basic R&D activities.
• Performs assigned system analysis and trade studies to help define technical concepts and proposed security solutions.
• Helps develop and improve tools, processes, and efficiencies to increase team productivity.
• Participates in program boards and reviews: collects data, prepares briefings, documents action items, and facilitates cross‑team collaboration.
• Monitors emerging threats, vulnerabilities, and security technologies and reports findings to the team to improve product security posture.
• Assists with ensuring security of equipment, tools, data, networks, and resources used for product design, development, build, test, storage, delivery, operations, and support.
• Responds to assigned security‑related requests and documents outcomes for review by senior engineers.
• Supports advisement activities by assisting with preparation of materials that describe security and certification considerations for customers, including potential consequences of modifying products and services.
• The ability to obtain UK Security Clearance.

Required Skills and Experience

• Hands‑on coursework, internships, or practical experience in one or more of the following areas:

• Cybersecurity and security risk / threat assessment
• Security design and analysis
• Network security architecture
• Embedded systems security and cyber‑physical systems
• Systems hardening and security control implementation
• Cryptography and PKI
• Security testing and evaluation
• Trusted computing & anti‑tamper engineering
• Aircraft communications standards & protocols (ARINC 400, 600, 800 series etc.)
• Secure Software Development Lifecycle (SDLC)

Preferred Qualifications

• Understanding of Concept of Operations (ConOps), requirements development, and use‑case definition.
• Exposure to risk assessment and management, including threat modelling and vulnerability analysis for networked and embedded systems.
• Familiarity with cybersecurity audits & investigations and security incident response practices.
• Aware of malware analysis, attack surface reduction, and security analysis techniques.
• Knowledge or interest in DevSecOps principles and practices.
• Familiarity with common networking and computing protocols and architectures (TCP/IP, OSI, UDP, serial/parallel communications, bus architectures).
• Understanding of hardware and software integration processes and secure‑by‑design principles.
• Familiarity with relevant standards and frameworks, including:

• RTCA/EUROCAE: DO‑326B/ED‑202B, DO‑356A/ED‑203A
• NIST: Risk Management Framework and SPs 800‑30, 800‑53, 800‑160
• ISO/IEC: 27001/27002, 62443
• DEFSTAN: 05‑138, 05‑139

Typical Education & Experience

• Level 1: Typically 0‑2 years' related work experience or an equivalent combination of technical education and experience.
• Education - Bachelor's degree or equivalent in Engineering, Engineering Technology (includes Manufacturing Engineering Technology), Computer Science, Engineering Data Science, Mathematics, Physics, or Chemistry.
• One or more early‑career security certifications are desirable, including but not limited to: CompTIA Security+, (ISC)² Certified in Cybersecurity, entry‑level Cisco certifications, or similar.

Relocation

This position does not offer relocation assistance. Candidates must be resident of the Bristol area or relocate at their own expense.

Benefits

• Competitive salary and annual incentive plans
• Continuous learning: you'll develop the approach and skills to navigate whatever comes next
• Success as defined by you: we provide the tools and flexibility so you can make a meaningful impact, your way
• Diverse and inclusive culture: you'll be embraced for who you are and empowered to use your voice
• 23 days plus UK public holidays and a winter break between Christmas and New Year
• Pension plan with 10% employer contribution
• Company‑paid BUPA medical plan
• Short‑term sickness: 100% pay for the first 26 weeks
• Long‑term sickness: 66.67% of annual salary from the 27th week
• Annual salary life insurance
• Learning Together programme to support your ongoing personal and career development
• Access to Boeing's wellbeing programmes, tools, and incentives
• Parental leave options available

Additional Information

• Export Control Requirements: this is not an export control position.
• Security Clearance: this position requires the ability to obtain United Kingdom Security Check.
• Visa Sponsorship: the employer will not sponsor applicants for employment visa status.
• Shift: not a shift worker (United Kingdom).
• Other appropriate background, experience and qualifications may be deemed acceptable.
• Applications for this position will be accepted until Jun. 30, 2026.

Equal Opportunity Employer

We are an equal opportunity employer. We do not accept unlawful discrimination in our recruitment or employment practices on any grounds including but not limited to race, color, ethnicity, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military and veteran status, or other characteristics covered by applicable law. We have teams in more than 65 countries, and each person plays a role in helping us become one of the world's most innovative, diverse and inclusive companies. We are a Disability‑Confident committed employer and welcome applications from candidates with disabilities. Applicants are encouraged to share with our recruitment team any accommodations required during the recruitment process. Accommodations may include but are not limited to: conducting interviews in accessible locations that accommodate mobility needs, encouraging candidates to bring and use existing assistive technology such as screen readers, and offering flexible interview formats such as virtual or phone interviews.