BAE Systems

Information Systems Security Officer

Job posted: Feb 06, 2025
Maryland, Illinois, United States
  • Salary average
    $140,690  -  $239,140
    per YEAR
  • Type of employment
    Full-time
  • Remote
    No

Company

BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services.

Inspired by a shared set of values, our employees are trusted, innovative, and bold in everything they do. They shine in a highly collaborative environment where everyone wants to see each other succeed – because they know the quality of our work truly matters.

Responsibilities

  • Intelligence & Security (I&S), based in McLean, Virginia, designs and delivers advanced defense, intelligence, and security solutions that support the important missions of our customers
  • Provides support for a program, organization, system, or enclave's information assurance program
  • Develop and maintain documentation for C&A in accordance with ODNI and DoD policies
  • Assists with the management of security aspects of the information system and performs day-to-day security operations of the system
  • Assist with the CM for information system security software, hardware, and firmware
  • Assist with the management of security aspects of the information system and perform day-to day security operations of the system
  • Assist in the evaluation of security solutions to ensure they meet security requirements for processing classified information
  • Assist with preparation and maintenance of documentation
  • Provide support to senior ISSOs for implementing, and enforcing information systems security policies, standards, and methodologies
  • Provides configuration management (CM) for information system security software, hardware, and firmware
  • Supports security authorization activities in compliance with National Institute of Standards and Technology Risk Management Framework
  • Administer the user identification and authentication mechanism of the Information System
  • Provide CM for security-relevant information system software, hardware, and firmware
  • Maintains operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed
  • Maintain operational security posture for an information system or program
  • Develop and update the system security plan and other IA documentation
  • Propose, coordinate, implement, and enforce information systems security policies, standards, and methodologies
  • Prepares and reviews documentation to include System Security Plans
  • Performs vulnerability/risk assessment analysis to support certification and accreditation
  • Develop system security policy and ensures compliance

Contract

40 hours per week

Candidate requirements

  • We provide impactful professional development experiences to our employees and invest in social impact partnerships to uplift communities and drive purposeful change
  • Experience is to include at least one

Skills used at work

  • Accreditation
  • Analysis
  • Authentication
  • Authorization
  • Configuration management
  • Documentation
  • Evaluation
  • Firmware
  • Hardware
  • Information assurance
  • Information system
  • Information systems
  • Management
  • Organization
  • Other
  • Risk assessment
  • Risk management
  • Risk management framework
  • Security
  • Security policy
  • Security requirements
  • Software
  • System Software
  • Systems
  • Systems security

Job Description

Provides support for a program, organization, system, or enclave's information assurance program. Provides support for proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies.

Maintains operational security posture for an information system or program to ensure information systems security policies, standards, and procedures are established and followed. Assists with the management of security aspects of the information system and performs day-to-day security operations of the system.

Evaluate security solutions to ensure they meet security requirements for processing classified information. Performs vulnerability/risk assessment analysis to support certification and accreditation. Provides configuration management (CM) for information system security software, hardware, and firmware.

Manages changes to system and assesses the security impact of those changes. Prepares and reviews documentation to include System Security Plans (SSPs), Risk Assessment Reports, Certification and Accreditation (C&A) packages, and System Requirements Traceability Matrices (SRTMs). Supports security authorization activities in compliance with National Institute of Standards and Technology Risk Management Framework (NIST RMF).

The Level 1 Information Systems Security Officer (ISSO) must possess the following capabilities:

• Provide support to senior ISSOs for implementing, and enforcing information systems security policies, standards, and methodologies

• Assist with preparation and maintenance of documentation

• Assist in the evaluation of security solutions to ensure they meet security requirements for processing classified information

• Assist with the CM for information system security software, hardware, and firmware

• Maintain records on workstations, servers, routers, firewalls, intelligent hubs , network switches, etc. to include system upgrades

• Propose, coordinate, implement, and enforce information systems security policies, standards, and methodologies

• Develop and maintain documentation for C&A in accordance with ODNI and DoD policies

• Provide CM for security-relevant information system software, hardware, and firmware

• Develop system security policy and ensures compliance

• Evaluate security solutions to ensure they meet security requirements for processing classified information

• Maintain operational security posture for an information system or program

• Provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operational IA posture for a system, program, or enclave

• Develop and update the system security plan and other IA documentation

• Assist with the management of security aspects of the information system and perform day-to day security operations of the system

• Administer the user identification and authentication mechanism of the Information System (IS)

Qualifications: Five (5) years experience as an ISSO on programs and contracts of similar scope, type, and complexity is required. Experience is to include at least one (1) of the following areas: knowledge of current security tools, hardware/software security implementation; communication protocols; and encryption techniques/tools. Bachelor's degree in Computer Science or related discipline from an accredited college or university is required. DoD 8570 compliance with IAT Level I or higher is required. Four (4) years of additional experience as an ISSO may be substituted for a bachelor's degree.

Required Education, Experience, & Skills

Qualifications: Five (5) years experience as an ISSO on programs and contracts of similar scope, type, and complexity is required. Experience is to include at least one (1) of the following areas: knowledge of current security tools, hardware/software security implementation; communication protocols; and encryption techniques/tools. Bachelor's degree in Computer Science or related discipline from an accredited college or university is required. DoD 8570 compliance with IAT Level I or higher is required. Four (4) years of additional experience as an ISSO may be substituted for a bachelor's degree.

Pay Information

Full-Time Salary Range: $140690 - $239140

Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience.

Employee Benefits: At BAE Systems, we support our employees in all aspects of their life, including their health and financial well-being. Regular employees scheduled to work 20+ hours per week are offered: health, dental, and vision insurance; health savings accounts; a 401(k) savings plan; disability coverage; and life and accident insurance. We also have an employee assistance program, a legal plan, and other perks including discounts on things like home, auto, and pet insurance. Our leave programs include paid time off, paid holidays, as well as other types of leave, including paid parental, military, bereavement, and any applicable federal and state sick leave. Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards. Other incentives may be available based on position level and/or job specifics.

About BAE Systems Intelligence & Security

BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it's what we do at BAE Systems. Working here means using your passion and ingenuity where it counts – defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team—making a big impact on a global scale. At BAE Systems, you'll find a rewarding career that truly makes a difference.

Job posted: Feb 06, 2025

Expiration date: Feb 06, 2026