Skip to main content
collage of photos featuring a rocket, a plane, and a submarine

Bring your ideas
to life

Search

Find U.S. Contract Jobs

Infosec Strategy & Assurance Lead

Englewood, Colorado Job ID JR2025454380 Category Quality Post Date May. 04, 2025
Apply Now

Job Description

At Boeing, we innovate and collaborate to make the world a better place. We’re committed to fostering an environment for every teammate that’s welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.

Jeppesen Digital Aviation Services (DAS), encompassing industry-leading brands like Jeppesen and ForeFlight, provides mission-critical software solutions to the global aviation industry. Our Quality, Safety and Regulatory group is seeking an Infosec Strategy & Assurance Lead to join our team in Englewood, Colorado.

This is a crucial governance, design, and assurance role, focused on architecting an adaptable Information Security Management System (ISMS). You will tackle the challenge of understanding and integrating multiple global security frameworks (including CMMC, EU NIS-2 directive, EASA Part-IS) from various jurisdictions (US, EU and others) to meet compliance requirements for our company and products, using ISO 27001 as the foundational baseline. The goal is to operationalize, maintain and continuously improve a flexible ISMS that streamlines compliance, reduces redundancy, and minimizes manual audit efforts across operational and compliance domains.

Position Responsibilities:

  • Architect an Integrated ISMS: Operationalize, maintain, and continuously improve a flexible ISMS framework and integrated control catalogue applicable across various sites and products. The system uses ISO 27001 as its base and effectively layers controls to meet diverse jurisdictional, regulatory (e.g., EU, EASA), and product-specific Infosec requirements.
  • Drive Strategic Compliance: Monitor the global regulatory landscape, perform gap analyses, assess impacts, and develop strategic approaches for compliance. Maintain a regulatory horizon-scanning register (related to Infosec).
  • Develop Control Strategies: Translate complex regulations and standards into clear implementation patterns, acceptance criteria, and success metrics for technical control owners and platform architects.
  • Stakeholder Engagement: Engage and collaborate closely with specialist teams and business units (IT, Risk Management, Product, Quality...) to gain consensus on ISMS requirements, implementation, risk tolerance, and internal / external audit schedules.
  • Platform Strategy & ERM Collaboration: Develop and own the strategy and roadmap for key components of our compliance and risk management platform, collaborating closely with the Enterprise Risk Management (ERM) team to ensure alignment.
  • Establish Assurance & Reporting: Define Key Risk Indicators (KRIs), set maturity targets, develop reporting dashboards, and brief executives, regulators, and customers on ISMS performance and status.
  • Benchmark & Improve: Drive continuous improvement by comparing DAS's security maturity against industry peers and implementing strategic enhancements.

Basic Qualifications (Required Skills/Experience):

  • Required Education & Experience:
    • Bachelor’s degree in Information Security, Risk Management, Law, Computer Science,  Cybersecurity, or a closely related related field.
    • Minimum 5 years of experience in information security governance, risk management, compliance, or framework integration, with a clear focus on strategic design and architecture (not necessarily technical implementation).
  • Preferred Qualifications (Desired Skills/Experience)::
    • Master’s degree in a relevant field.
    • Professional certifications like CISSP, CISM, CRISC, ISO 27001 Lead Implementer, PMP, or similar, especially those focused on risk, governance, and framework integration.
  • Essential Skills & Knowledge:
    • Proven expertise in designing integrated management systems that accommodate diverse regulatory requirements from multiple jurisdictions.
    • Deep understanding of key infosec frameworks, including ISO27001, and their practical application.
    • Experience defining strategy or managing requirements for governance, risk and compliance platforms.
    • Ability to analyze complex requirements and translate them into actionable strategic design principles.
    • Strong analytical, critical thinking, and strategic problem-solving skills.
    • Excellent communication (written and verbal) and interpersonal skills, capable of engaging effectively with technical teams, senior leadership, and enterprise risk functions

Drug Free Workplace:

Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies.

Pay & Benefits:

At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent.  Elements of the Total Rewards package include competitive base pay and variable compensation opportunities. 

The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work. 

The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements.

Pay is based upon candidate experience and qualifications, as well as market and business considerations. 

Summary Pay Range: $138,550.00-$187,450.00


Applications for this position will be accepted until May. 30, 2025


Export Control Requirements: This is not an Export Control position.

Relocation

Relocation assistance is not a negotiable benefit for this position.

Visa Sponsorship

Employer will not sponsor applicants for employment visa status.

Shift

This position is for 1st shift


Equal Opportunity Employer:

Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.

Shows the full job description for sighted users
Apply Now

Your Benefits

No matter where you are in life, our benefits help prepare you for the present and the future.

  • Generous company match to your 401(k).
  • Industry-leading tuition assistance program pays your institution directly.
  • Fertility, adoption, and surrogacy benefits.
  • Up to $10,000 gift match when you support your favorite nonprofit organizations.
Explore more benefits

These programs are subject to eligibility requirements and other conditions, which may differ for employees of certain subsidiaries or business units, or union-represented employees depending on bargaining agreement terms. If this information conflicts with the program documents, the latter shall control. This material is informational only.

  • Jacob M
    We never stop growing

    Whether you’re looking to expand your knowledge or grow as a leader, our development programs are designed to help you succeed.

    Learn more

Jobs for You:

No recently viewed jobs.

View all of our available opportunities