MQ-28 Senior Product Security Engineer | Brisbane

MQ-28 Senior Product Security Engineer

Posted on 17-Nov-2025
Application Close Date: 01-Dec-2025
Location:
Brisbane
Category:
Engineering / Technical
Position Type:
Permanent
Job Reference:
BOE/1881979BNE
Attachments:
Note clipNo File Attached
Share This:

About Us

Do you aspire to help build something better? Would you like to work for a company that employs the best talent to develop and deliver world class capabilities and systems to protect Australia and its national interests? Would you like to work on cutting edge projects? Then we would like to talk to you.  

As an equal opportunity employer that promotes a diverse and safe workplace environment, one of the country's leading and preferred defence partners, Boeing Defence Australia (BDA) is now recruiting a Senior Software Engineer with an interest in Cyber security and/or compliance to support the MQ-28 Program in Brisbane.

The Opportunity

We are seeking a senior software engineer with experience implementing secure software development and cyber security best practice controls. Your role will be to translate industry standard security frameworks (ISM, NIST 800-53) and best practices into pragmatic secure development architecture, processes and technical controls. Your role will enable Engineering teams in delivering secure-by-design development through threat modelling, automation, specialist tooling implementation and developer coaching.

The successful candidate will have superb stakeholder engagement skills, comprehensive experience working as a software engineer, knowledge of solution design practices, knowledge of cyber security frameworks and experience with implementation in either a defence or Operational Technology context.

The role is based at Boeing's head office at 123 Albert St, Brisbane CBD.

Key responsibilities

  • Provide hands-on guidance, training and mentoring to software engineers across various MQ-28 Integrated Product Teams (IPS) on secure coding, remediation, secure CI/CD practices and policy-as-code enforcement.
  • Design and implement DevSecOps controls aligned to ISM and NIST SP 800-53 across CI/CD on-prem development and cloud environments.
  • Create developer-facing templates, checklists, pipeline snippets and documentation that reduce friction for ISM/NIST compliance.
  • Provide advice on designs and reference implementations for automated security testing: SAST, DAST, SCA/SBOM, secrets scanning, container image scanning, and runtime checks.
  • Contribute to threat modelling, secure design and architecture reviews, and targeted code reviews for high-risk components.
  • Instrument telemetry, logging and evidence collection to support audits, continuous compliance and incident response.
  • Participate in vulnerability triage, risk assessment and cross-team remediation coordination.
  • Advocate continuous improvement of the secure SDLC and uptake of security automation across the Program.

Required skills & experience

  • A Tertiary degree qualification in an engineering or related technical discipline.
  • Senior-level software engineering experience with 5+ years overall and proven track record in application security or DevSecOps.
  • Hands-on experience with GitLab CI, Python-based tooling and automation.
  • Familiar with SAST/DAST/SCA tools, secrets detection, container scanning, and SBOM generation.
  • Strong scripting and automation skills (Python preferred).
  • Familiar with cyber security frameworks such as ISM and/or NIST SP 800-53 series.
  • Excellent communicator, capable of coaching and influencing engineering teams.
  • NV1 security clearance with the ability to transition to an NV2 clearance. 

Desirable

  • Prior experience in government, defence or other regulated environments implementing ISM controls.
  • Certifications such as CISSP, CSSLP, or Certified DevSecOps are a plus.
  • Experience with container orchestration (Kubernetes) and runtime security solutions.
  • Experience with AWS (or other cloud platforms) and implementing cloud security controls.
  • Experience with IaC (Terraform, CloudFormation) and policy-as-code techniques.

Ability to obtain a Security Clearance - The preferred applicant will be required to successfully undergo the security clearance vetting process for NEGATIVE VETTING level 1. The preferred applicant MUST be willing to disclose all relevant and required information and MUST have lived in Australia, or have a checkable background, for at least the preceding Ten years

Benefits

  • Flexible working options
  • Study assistance
  • Salary packaging
  • Employee Incentive Program
  • Global opportunities

We are committed to building a diverse and inclusive workplace. Female applicants, people of Aboriginal or Torres Strait Island descent and ex-defence personnel are encouraged to apply.

If you are ready to join an innovative industry leader and would like to register your interest in working for Boeing, please click Apply Now.

Email friend Job 1Email a friend Print this jobPrint job Go back to job resultsBack to Job Results

Search Tips

Close


Powered by Springboard
View cookie preferences Please click here to view your cookie settings preferences for this site.