Senior Cyber System Engineer

Job Description
BAE Systems is looking for a Cybersecurity/Information Assurance Engineer. The qualified candidate will be working on the security engineering team supporting engineering activities in a rapid development environment to support the specification, development, and application of computer security technologies, cybersecurity and information assurance management techniques to DoD and Intelligence Community systems.

Tasks may include:

  • Leading cyber system engineering teams
  • Leading Assessment and Authorization (A&A) activities for DoD and Intelligence Systems in accordance with Risk Management Framework and ICD-503 guidelines
  • Supporting offensive architecture analysis and design of defense-in-depth solutions
  • Developing and assessing system security plans including, security concepts of operation, risk management matrix, security control traceability matrix, security test procedures, and plan of action and milestones
  • Conducting and analyzing vulnerability assessments to validate system compliance with RMF controls and DISA Security Technical Information Guidelines (STIGS)
  • Analyzing static code scans and dynamic code scans to validate Application Security and Development STIG compliance
  • Leading and coordinating security test event teams to achieve accreditation milestones
  • Verifying and validating vulnerability resolutions and/or mitigations
  • Supporting proposal and cost estimate activitiesThis position may require business travel to customer locations in support of product demonstrations, software installation, and system testing.

Keywords: Cyber, security, vulnerability, STIG, RMF, Risk Management Framework, A&A, Assessment and Authorization, threat modeling, offensive, attack vector, defense-in-depth

Typical Education & Experience
Typically a Bachelor's Degree and 8 years work experience or equivalent experience

Required Skills and Education
  • ISC2 CISSP or equivalent certification
  • Extensive experience with traditional A&A tools: ACAS Nessus, HBSS, Xacta, eMASS, SCAP Scanner, Fortify, WebInspect, STIG Viewer
  • Demonstrated expertise in national Cybersecurity policies, DoD or Intelligence Community A&A processes and procedures and industry best practices on complex systems
  • Expertise in vulnerability assessment, control allocation and risk mitigation
  • Understanding of offensive security tactics, techniques and procedures
  • Ability to negotiate effectively with higher level managers, functional managers, customers, industry partners, and teammates
  • Demonstrated leadership skills (supervisory experience, building teams, building customer relationships)
  • Ability to support proposal and cost activities
  • Strong interpersonal skills and the ability to effectively build and lead teams
  • Strong mentoring skills
  • Good planning and organizational skills
  • Strong oral and written communications skills
Preferred Skills and Education
  • Other cyber certifications (ISSAP-CISSP, ISSEP-CISSP, CCSP, CEH, OSCP, etc.)
  • Experience with Cyber Failure Mode, Effects, and Criticality Analysis (FMECA)
  • Experience writing proposals with innovative cost effective solutions
  • Experience with offensive architecting, threat modeling and attack vector analysis
  • Experience with cloud and cross domain solution accreditations
  • Working knowledge of Earned Value Management System (EVMS) systems and Project management tools such as Cost Performance Index (CPI) and Integrated Master Schedule (IMS)
About BAE Systems Electronic Systems
BAE Systems Electronic Systems is the global innovator behind game-changing defense and commercial electronics. Exploiting every electron, we push the limits of what is possible, giving our customers the edge and our employees opportunities to change the world. Our products and capabilities can be found everywhere - from the depths of the ocean to the far reaches of space. At our core are more than 14,000 highly talented Electronic Systems employees with the brightest minds in the industry, we make an impact - for our customers and the communities we serve.

Back to top