Cybersecurity Analyst - Sr ISSO or ISSM

    • Roy, UT

Job Description

BAE Systems is seeking a Cybersecurity Analyst to serve as an Information System Security Officer (ISSO) or Information System Security Manager (ISSM) to support the Air Force's Inter-Continental Ballistic Missile (ICBM) weapon system and the Ground Based Strategic Deterrent (GBSD) program. These are long-term sustainment and acquisition programs which are anticipated to remain operational until 2075.

This position will work with (or as) the ISSM to obtain and maintain Authority to Operate (ATO) approvals for various ICBM weapon subsystems and supporting IT systems by adhering to the Risk Management Framework (RMF). This includes system categorization and control identification, implementation, and assessment. This position supports cybersecurity efforts throughout the RMF for one or more assigned programs(s) to include the development of System Security Plans, development and resolution of Plans of Action and Milestones (POA&Ms), assessing and auditing systems security controls, and monitoring of corrective actions.

This position provides the opportunity to develop and hone communication and customer relationship skills while working with a close-knit fun-loving team of other cybersecurity professionals.

The successful candidate will be energetic, self-motivated, and have the ability to adapt to a fast-paced environment with the desire to make a difference. Knowledge and experience with the DoD's Cybersecurity processes (DIACAP and/or the Risk Management Framework (RMF)) is a plus.

Responsibilities include:

  • Fulfills the ISSO responsibilities defined in DoD Instructions 8500.01 and 8510.01, AFI17-101 Risk Management Framework (RMF) for the Air Force Information Technology (IT), and the "DoD Program Manager's Guidebook for Integrating the Cybersecurity Risk Management Framework (RMF) into the System Acquisition Lifecycle"
  • Under direction of the ISSM, performs duties as an Information System Security Officer (ISSO) as defined in DoD Instructions 8500.01 and 8510.01, AFI17-101 Risk Management Framework (RMF) for the Air Force Information Technology (IT), and the "DoD Program Manager's Guidebook for Integrating the Cybersecurity Risk Management Framework (RMF) into the System Acquisition Lifecycle"
  • Supports efforts to integrate cybersecurity throughout the lifecycle of IT systems; this includes the development and review of cybersecurity-related artifacts, including System Security Plans, Cyber Security Strategies, Cybersecurity Impact Assessments, policies, plans, and procedures
  • Continually assesses activities and controls to secure information. Assess gaps in security and identify solutions to mitigate risk, including business processes, technical controls, and policy improvements
  • Assist in the development of security policies, plans, and procedures to meet government regulations and industry best practices
  • Build collaborative internal relationships with program and project teams, as well as external relationships with customers, regulatory bodies, other agencies and business partners
The applicant must be able to obtain and maintain a Top Secret clearance. An active Secret or Top Secret clearance is preferred but not required.

Recognized as a Top Workplace in Utah for two years in a row. Join an extraordinary company culture and the winning team to success on ISC this year and for years to come.

Required Skills and Education
  • Bachelor's Degree (typically Computer Science, Information Technologies, etc.); education requirement may be waived for equivalent experience
  • 10+ years Cyber/IT-related work or equivalent experience (2 years may be waived for qualified candidates)
  • Security+ or equivalent certification per DoD Directive 8570.1 or ability to obtain such within 6 months of being hired
  • Knowledge of cybersecurity, networks, components, system protocols, COTS technology, and software development
  • Demonstrated ability to effectively communicate (writing and verbal skills) at a level commensurate with this senior position
Preferred Skills and Education
  • ISSO or relevant cybersecurity experience; 6-8 years experience using RMF
  • Experience with security evaluations, risk and control assessments
  • Understanding of the DoD environment and familiarity with government agency reviews and audits
  • The ability to mediate differing perspectives and develop consensus relating to cybersecurity principles and regulations
  • An individual with high integrity, strong work ethic and initiative, and capable of building strong, trusting relationships
  • An active security clearance with the clearance "investigation close date" within the last 6 calendar years from the hire date is preferred.
About BAE Systems Intelligence & Security
BAE Systems Intelligence & Security, based in McLean, Virginia, designs and delivers advanced defense, intelligence, and security solutions that support the important missions of our customers. Our pride and dedication shows in everything we do-from intelligence analysis, cyber operations and IT expertise to systems development, systems integration, and operations and maintenance services. Knowing that our work enables the U.S. military and government to recognize, manage and defeat threats inspires us to push ourselves and our technologies to new levels. That's BAE Systems. That's Inspired Work.

Equal Opportunity Employer/Females/Minorities/Veterans/Disabled/Sexual Orientation/Gender Identity/Gender Expression. To see Inspired Work in action, visit and follow us on Facebook:

BAE Systems builds and optimizes technology that revolutionizes defense around the world.

BAE Systems Company Image

Back to top