Cybersecurity Engineer

BAE Systems is looking for a Cybersecurity/Information Assurance Engineer. The qualified candidate will be working on the security engineering team supporting engineering activities in a rapid development environment to support the specification, development, and application of computer security technologies, cybersecurity and information assurance management techniques to DOD and Intelligence Community systems.

Tasks may include:

  • Conducting Assessment and Authorization activities for DOD and Intelligence Systems in accordance with Risk Management Framework and ICD-503 guidelines
  • Investigating and evaluating existing technologies and proposing approaches for implementing security architectures
  • Translating security requirements into technical requirements and architectures needed to develop these technologies
  • Analyzing and implementing security controls
  • Conducting security technical exchange meetings to register systems with security stakeholders
  • Preparing and proofing system security plans including, security concepts of operation, risk management matrix, security control traceability matrix, security test procedures, and plan of action and milestones
  • Performing vulnerability assessments to validate system compliance with DISA Security Technical Information Guidelines (STIGS)
  • Conducting vulnerability scans, static code scans and dynamic code scans
  • Conducting security test events to achieve accreditation milestones
  • Working with program teams to identify, remediate or justify security findings
  • Maintaining and reporting ongoing security accreditation activities as required.

This position may require business travel to customer locations in support of product demonstrations, software installation, and system testing. Minimum Education and Experience Bachelor’s Degree and 8 years work experience or equivalent experience Required Skills and Education

  • Experience in DoD and Intelligence Community assessment and authorization processes and procedures
  • Experience configuring and accrediting trusted operating systems and environments
  • Experience with security policy definition and refinement
  • Technical documentation development
  • Achieving and maintaining DISA STIG and IAVA compliance
  • Experience with federal and national Cybersecurity policies, IA standard security principles, standards and industry best practices
  • Knowledge of Information Assurance and Information Operations technologies and development activities
  • Experience selecting and implementing security countermeasures
  • Experience conducting and assessing vulnerability scans and vulnerability remediation
  • Motivated self-starter
  • Excellent problem solving skills, judgment, and analytical capability, along with follow-up and monitoring skills
  • Strong communication skills (oral and written), and presentation skills
  • Team player with a proactive attitude and the ability to be productive in a dynamic/collaborative environment
  • Strong interpersonal, organization, and teambuilding skills
  • Ability to assist with other traditional systems engineering tasks such as CONOPS, requirements, and systems level testing
  • CompTia Security + certified
  • ISC2 CISSP certified

Preferred Skills and Education · Conducting Penetration and Exploitation events

  • Offensive architecting and security practices and techniques
  • Intrusion detection and prevention systems (IDS/IPS), log analysis, malware analysis, network traffic flow and packet analysis
  • Secure coding experience using C, C++ or Java
  • Understanding of security technologies and concepts, experience in design and implementation of secure network solutions including DMZs and web portals
  • Practical experience hardening IT systems in compliance with STE/STIG guidelines
  • Familiarity security products such as HBSS, ACAS, Nessus, HP Fortify and Web Inspect
  • Cross Domain Solution (CDS) concepts, technologies and solutions
  • Program Protection Plans
  • Proposal development
  • Cybersecurity cost estimating
  • DODI 8570.1-M Compliance at IAT Level I certification
  • OSCP, OSWP, OSCE,OSEE, CEH, CCNA, Unix and Microsoft administration About BAE Systems Electronic Systems BAE Systems is a premier global defense and security company with approximately 90,000 employees delivering a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support and services.

The Electronic Systems (ES) sector spans the commercial and defense electronics markets with a broad portfolio of mission-critical electronic systems, including flight and engine controls; electronic warfare and night vision systems; surveillance and reconnaissance sensors; secure networked communications equipment; geospatial imagery intelligence products and systems; mission management; and power-and energy-management systems. Headquartered in Nashua, New Hampshire, ES employs approximately 13,000 people globally, with engineering and manufacturing functions primarily in the United States, United Kingdom, and Israel. Equal Opportunity Employer/Females/Minorities/Veterans/Disabled/Sexual Orientation/Gender Identity/Gender Expression EEO Career Site Equal Opportunity Employer. Minorities . females . veterans . individuals with disabilities . sexual orientation . gender identity . gender expression

Back to top