Lead a team delivering policy-as-code guardrails across multi-cloud and Kubernetes environments. Own policy lifecycle, Terraform/IaC controls, admission controllers, continuous compliance automation, drift detection, AI-assisted policy tooling, and threat modeling. Mentor engineers, set engineering standards, manage contractors, and collaborate cross-functionally to ensure secure, automated cloud platforms.
Job Description
At Boeing, we innovate and collaborate to make the world a better place. We're committed to fostering an environment for every teammate that's welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.
The Boeing Company is looking for a Cloud Security Manager to join the team in Seattle, WA; North Charleston, SC; Chicago, IL; El Segundo, CA; Mesa, AZ; Berkeley, MO; or Hazelwood, MO.
We're looking for a Cloud Security & Policy-as-Code Manager to lead a team of approximately 20 engineers and contractors. This team translates security, regulatory, and compliance requirements into automated, enforceable guardrails across multi-cloud and Kubernetes environments. This isn't a compliance management role - it's a technical leadership position. You'll own the platform and the people that build, test, and deploy security policies as code. You'll guide AI-powered policy tooling, drive threat modeling, and ensure your team delivers reliable guardrails at scale. You set direction, remove blockers, and provide architectural guidance so delivery teams can move quickly while meeting their security obligations. This role reports to the Sr Manager of Cloud Platform & Developer Experience.
Position Responsibilities:
Basic Qualifications (Required Skills/Experience):
Preferred Qualifications (Desired Skills/Experience):
Conflict Of Interest:
Successful Candidates for this job must satisfy the Company's Conflict Of Interest (COI) assessment process.
Drug Free Workplace:
Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies.
Pay & Benefits:
At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base pay and variable compensation opportunities.
The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.
The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements.
Pay is based upon candidate experience and qualifications, as well as market and business considerations.
Summary pay range: $161,500 - $233,450
Applications for this position will be accepted until Jul. 10, 2026
Export Control Requirements:
This position must meet U.S. export control compliance requirements. To meet U.S. export control compliance requirements, a "U.S. Person" as defined by 22 C.F.R. §120.62 is required. "U.S. Person" includes U.S. Citizen, U.S. National, lawful permanent resident, refugee, or asylee.
Export Control Details:
US based job, US Person required
Relocation
Relocation assistance is not a negotiable benefit for this position.
Visa Sponsorship
Employer will not sponsor applicants for employment visa status.
Shift
This position is for 1st shift
Equal Opportunity Employer:
Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.
#BI-Hybrid
At Boeing, we innovate and collaborate to make the world a better place. We're committed to fostering an environment for every teammate that's welcoming, respectful and inclusive, with great opportunity for professional growth. Find your future with us.
The Boeing Company is looking for a Cloud Security Manager to join the team in Seattle, WA; North Charleston, SC; Chicago, IL; El Segundo, CA; Mesa, AZ; Berkeley, MO; or Hazelwood, MO.
We're looking for a Cloud Security & Policy-as-Code Manager to lead a team of approximately 20 engineers and contractors. This team translates security, regulatory, and compliance requirements into automated, enforceable guardrails across multi-cloud and Kubernetes environments. This isn't a compliance management role - it's a technical leadership position. You'll own the platform and the people that build, test, and deploy security policies as code. You'll guide AI-powered policy tooling, drive threat modeling, and ensure your team delivers reliable guardrails at scale. You set direction, remove blockers, and provide architectural guidance so delivery teams can move quickly while meeting their security obligations. This role reports to the Sr Manager of Cloud Platform & Developer Experience.
Position Responsibilities:
- Cloud Environments: AWS Commercial; AWS GovCloud; Azure Commercial; Azure Government; Google Cloud Platform (GCP)
- Policy-as-Code development & lifecycle: Authoring, testing, versioning, staged rollout, and deprecation across all environments
- Admission control: Kubernetes and cloud-native policy enforcement
- Terraform guardrails: Preventive controls integrated into Infrastructure as Code (IaC) pipelines
- Encryption & key management enforcement: Automated data protection controls across providers
- Continuous compliance automation: Evidence collection, attestations, and remediation workflows
- Security posture reporting: Coverage, violation trends, and compliance status
- Drift detection: Automated identification of configuration gaps and misalignment against the policy repository
- Policy & Guardrails: Define and operate a unified guardrail framework across all five cloud environments using policy-as-code, admission controllers, and Terraform guardrails. Drive continuous compliance automation that reduces manual audit effort through automated evidence collection and reporting. Own drift detection, automated daily comparison of active cloud configurations against the policy repository, flagging gaps and triggering remediation
- AI-Assisted Policy Engineering: Guide the development of AI-assisted policy generation using large language models to propose policies, identify control gaps, and draft Merge Requests with rationale. Oversee Large Language Model (LLM) regression testing to validate accuracy when models are upgraded or swapped. Establish monitoring for new Cloud Service Provider (CSP) service releases and documentation changes that triggers automated policy gap analysis
- Threat Modeling: Lead threat modeling for new platform capabilities, multi-cloud integrations, and Artificial Intelligence (AI) tooling. Own Threat Model Review (TMR) approvals for system changes. Maintain and extend threat models as new CSP integrations and AI components are introduced
- People & Delivery: Lead, mentor, and grow a team spanning policy engineering, AI/ML tooling, and security automation. Set engineering standards by code review, testing coverage, CI/CD quality gates, and documentation norms. Build a culture where policies are treated as production software. Manage contractor relationships, capacity planning, and delivery across multiple workstreams. Collaborate cross-functionally with Cloud Foundations, Platform Acceleration, DevEx, Runtime SRE, and Enterprise Security
Basic Qualifications (Required Skills/Experience):
- 5+ years experience with Development Operations (DevOps) and/or Development Security Operations (DevSecOps)
- 5+ years experience leading or managing integrated or technical projects or teams across multiple computing platforms and organizations
- 3+ years experience implementing Policy As Code (Azure Policy, OPA/Gatekeeper, Rego, or equivalent)
- 3+ years experience with Infrastructure as Code tools such as Terraform, AWS CloudFormation, or ARM templates
Preferred Qualifications (Desired Skills/Experience):
- Experience automating security and compliance controls in IaC and CI/CD pipelines (Terraform policy checks, pre-commit scanning, pipeline gates
- Coding proficiency (Python, Go, or similar) - enough to review PRs, guide architecture, and contribute when needed
- Experience with IaC (Terraform, Pulumi, or similar) and integrating policy checks into CI/CD
- Experience establishing or overseeing automated testing for security controls
- Multi-cloud experience across AWS (Commercial + GovCloud), Azure (Commercial + Government), and GCP
- Experience with AI/LLM capabilities and limitations; ability to guide teams building AI-assisted tooling
- Experience with threat modeling methodologies (STRIDE, PASTA, or equivalent) and leading threat model reviews
- Experience guiding teams that build AI-assisted developer tools or code generation pipelines with validation layers
- Experience with LLM evaluation techniques, output validation, and confidence scoring
- Experience with compliance frameworks (NIST, FedRAMP, SOC2) enough to translate requirements into code, not to run GRC programs
- Experience managing mixed teams of FTEs and contractors
- Background in Kubernetes security, admission controllers, and runtime policy enforcement
Conflict Of Interest:
Successful Candidates for this job must satisfy the Company's Conflict Of Interest (COI) assessment process.
Drug Free Workplace:
Boeing is a Drug Free Workplace where post offer applicants and employees are subject to testing for marijuana, cocaine, opioids, amphetamines, PCP, and alcohol when criteria is met as outlined in our policies.
Pay & Benefits:
At Boeing, we strive to deliver a Total Rewards package that will attract, engage and retain the top talent. Elements of the Total Rewards package include competitive base pay and variable compensation opportunities.
The Boeing Company also provides eligible employees with an opportunity to enroll in a variety of benefit programs, generally including health insurance, flexible spending accounts, health savings accounts, retirement savings plans, life and disability insurance programs, and a number of programs that provide for both paid and unpaid time away from work.
The specific programs and options available to any given employee may vary depending on eligibility factors such as geographic location, date of hire, and the applicability of collective bargaining agreements.
Pay is based upon candidate experience and qualifications, as well as market and business considerations.
Summary pay range: $161,500 - $233,450
Applications for this position will be accepted until Jul. 10, 2026
Export Control Requirements:
This position must meet U.S. export control compliance requirements. To meet U.S. export control compliance requirements, a "U.S. Person" as defined by 22 C.F.R. §120.62 is required. "U.S. Person" includes U.S. Citizen, U.S. National, lawful permanent resident, refugee, or asylee.
Export Control Details:
US based job, US Person required
Relocation
Relocation assistance is not a negotiable benefit for this position.
Visa Sponsorship
Employer will not sponsor applicants for employment visa status.
Shift
This position is for 1st shift
Equal Opportunity Employer:
Boeing is an Equal Opportunity Employer. Employment decisions are made without regard to race, color, religion, national origin, gender, sexual orientation, gender identity, age, physical or mental disability, genetic factors, military/veteran status or other characteristics protected by law.
#BI-Hybrid
Similar Jobs at Boeing
Aerospace • Information Technology • Software • Cybersecurity • Design • Defense • Manufacturing
Serve as strategic partner to the VP of Supply Chain Stability, manage cross-functional initiatives, design operating rhythms, drive process improvement, prepare executive communications, lead change efforts, and enable alignment across supply chain teams and external partners to improve execution and stability.
Aerospace • Information Technology • Software • Cybersecurity • Design • Defense • Manufacturing
Perform airplane-level systems safety engineering: analyze system-of-systems effects, document safety analyses and hazard mitigations, validate safety and airworthiness, support tests/inspections/simulations, and maintain safety tools and processes to ensure regulatory compliance.
Top Skills:
14 Cfr Part 25.1309Fault Tree Analysis (Fta)Functional Hazard Assessment (Fha)Root Cause And Corrective Action (Rcca)Sae Arp-4754Sae Arp-4761Safety Assessment Report (Sar)System Safety Risk Assessment
Aerospace • Information Technology • Software • Cybersecurity • Design • Defense • Manufacturing
Support supplier/product quality by reviewing nonconformances, performing root-cause analysis, validating corrective actions, conducting product/process audits, and recommending dispositions and process improvements under general supervision.
Top Skills:
Non-Conformance Report (Ncr) ProcessesQuality Management System (Qms)Root Cause Corrective Action (Rcca)
What you need to know about the NYC Tech Scene
As the undisputed financial capital of the world, New York City is an epicenter of startup funding activity. The city has a thriving fintech scene and is a major player in verticals ranging from AI to biotech, cybersecurity and digital media. It also has universities like NYU, Columbia and Cornell Tech attracting students and researchers from across the globe, providing the ecosystem with a constant influx of world-class talent. And its East Coast location and three international airports make it a perfect spot for European companies establishing a foothold in the United States.
Key Facts About NYC Tech
- Number of Tech Workers: 549,200; 6% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Capgemini, Bloomberg, IBM, Spotify
- Key Industries: Artificial intelligence, Fintech
- Funding Landscape: $25.5 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Greycroft, Thrive Capital, Union Square Ventures, FirstMark Capital, Tiger Global Management, Tribeca Venture Partners, Insight Partners, Two Sigma Ventures
- Research Centers and Universities: Columbia University, New York University, Fordham University, CUNY, AI Now Institute, Flatiron Institute, C.N. Yang Institute for Theoretical Physics, NASA Space Radiation Laboratory
.jpg)
