BAE Systems

Senior Cyber Security Professional

Job posted: Oct 23, 2024
Fairborn, Ohio, United States; Ohio, Colorado, United States
  • Salary average
    -
  • Type of employment
    Full-time
  • Remote
    No

Company

BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services.

​​​​​​​

Inspired by a shared set of values, our employees are trusted, innovative, and bold in everything they do. They shine in a highly collaborative environment where everyone wants to see each other succeed – because they know the quality of our work truly matters.

Responsibilities

  • Maintain a regular and predictable work schedule.
  • Establish and maintain effective working relationships within the department, the Strategic Business Units, Strategic Capabilities Units and the Company. Interact appropriately with others in order to maintain a positive and productive work environment.
  • Perform other duties as necessary.
  • On-Site Work Environment: This position requires regular in-person engagement by working
  • Working Conditions:
  • Work is performed in an office environment, laboratory, cleanroom, or production floor.
  • #IJS
  • on-site five days each normally scheduled week in the primary work location. Travel and local commute between company campuses and other possible non-company locations may be required.
  • Responsible for supporting adherence to all aspects of a rigorous Risk Management Framework (RMF) compliance program as stipulated by NISPOM/DAAPM, JSIG, STIGs and associated NIST publications.
  • Obtain and maintain Authority to Operate (ATO) approvals for various systems by adhering to the Risk Management Framework (RMF).
  • Support cybersecurity efforts throughout the RMF process for one or more assigned programs(s) to include the development and management of System Security documentation, Plans of Action and Milestones (POA&Ms), assessing and auditing systems security controls, and continuous monitoring of controls.
  • Provide oversight for all classified systems compliance and ensure the execution of our strong self-inspection program.
  • Ensure all security certification and accreditation documents in relation to all classified systems are up to date.
  • Ensure continuous monitoring (e.g., weekly, monthly, etc.) in accordance with cognizant security authority requirements are being implemented and met.
  • Coordinate security-related activities with information security architects, senior information security officers, information system owners, common control providers, and information system security officers.

Contract

40 hours per week

Candidate requirements

  • Each higher-level degree, i.e., Master's Degree or Ph.D., may substitute for two years of experience
  • Our collaborative, cross-functional teams are committed to innovation, integrity, continual learning and strong execution
  • May substitute for two years of experience
  • Travel and local commute between company campuses and other possible non-company locations may be required
  • Related technical experience may be considered in lieu of education
  • Degree must be from a university, college, or school which is accredited by an agency recognized by the US Secretary of Education, US Department of Education
  • Experience with development and delivery of IA-related briefings and training material
  • Knowledge of new and emerging information technology (IT) and cybersecurity technologies
  • High level of personal motivation and initiative to learn and acquire new skills and adapt seamlessly to an ever-changing security environment
  • Experience with auditing and certifying compliance of various systems
  • Customer focused, excellent communicator and ability to work with limited supervision
  • Knowledge of new and emerging information technology
  • Experience with the development of core documentation including System Security Plans
  • Network security experience with knowledge of hardening network devices
  • Experience with conducting all aspects of a self-inspection
  • Working knowledge of system functions, security policies, technical security safeguards, and operational security measures
  • Experience with the review and creation of mitigation reports from compliance and vulnerability scanning tools
  • Extensive experience working with Cisco switches and firewalls
  • Ability to interface with other IA team members, other security disciplines
  • Provide oversight for all classified systems compliance and ensure the execution of our strong self-inspection program
  • Ability to assess cyber security posture for hi-tempo lab environment
  • Experience applying analytical processes to planning, design, and implementation of new and improved IS meeting business requirements of a lab environment
  • Experience with periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, file system and integrity scans to determine compliance
  • Experience with the development of core documentation including System Security Plans (SSP), Standard Operating Procedures (SOP), Plan of Actions & Milestones (POAM), Remediation Plans, and Configuration Management (CM) Plans
  • Ability to interface with other IA team members, other security disciplines (industrial security, physical security, special programs security, .), program personnel and government security representatives
  • Ability to function as an integral part of the development team to include designing and developing organizational information systems or upgrading legacy systems

Skills used at work

  • Accreditation
  • Aerospace
  • Architecture
  • Best practice
  • Best practices
  • Business units
  • Continuous monitoring
  • Engineering
  • National security
  • Risk management
  • Risk management framework
  • Secure coding
  • Security controls
  • Security engineering
  • Software
  • Software engineering
  • Work environment

Job Description

US CITIZENSHIP REQUIRED

#LI-NP1

Enhance your career as a senior cybersecurity professional with BAE Systems, Inc., supporting and protecting information systems critical to national security at one of the leading companies in Aerospace and Defense. Drive your Information Assurance (IA) career ahead through hands on application while working with seasoned professionals in a fast paced, team-based environment.

If you are looking to learn, influence, and help develop top cyber technologies, applications, and processes that protect and service our customers wherever they may be air, land, and sea come join our award-winning security family here at Space & Missions System.

Because of the need for consistent, in-person collaboration and/or the requirement to perform all work onsite due to the nature of this role, it will be performed full-time on site.

The Engineering, Science and Analysis (ESA) Strategic Capabilities Unit comprises the technical talent and organizational leadership that enables the successful delivery of high-impact discriminating technologies for our customers' missions. Our collaborative, cross-functional teams are committed to innovation, integrity, continual learning and strong execution.

What You'll Do:

  • Responsible for supporting adherence to all aspects of a rigorous Risk Management Framework (RMF) compliance program as stipulated by NISPOM/DAAPM, JSIG, STIGs and associated NIST publications.
  • Obtain and maintain Authority to Operate (ATO) approvals for various systems by adhering to the Risk Management Framework (RMF).
  • Support cybersecurity efforts throughout the RMF process for one or more assigned programs(s) to include the development and management of System Security documentation, Plans of Action and Milestones (POA&Ms), assessing and auditing systems security controls, and continuous monitoring of controls.
  • Provide oversight for all classified systems compliance and ensure the execution of our strong self-inspection program.
  • Ensure all security certification and accreditation documents in relation to all classified systems are up to date.
  • Ensure continuous monitoring (e.g., weekly, monthly, etc.) in accordance with cognizant security authority requirements are being implemented and met.
  • Coordinate security-related activities with information security architects, senior information security officers, information system owners, common control providers, and information system security officers.
  • Maintain a regular and predictable work schedule.
  • Establish and maintain effective working relationships within the department, the Strategic Business Units, Strategic Capabilities Units and the Company. Interact appropriately with others in order to maintain a positive and productive work environment.
  • Perform other duties as necessary.

On-Site Work Environment: This position requires regular in-person engagement by working

on-site five days each normally scheduled week in the primary work location. Travel and local commute between company campuses and other possible non-company locations may be required.

Working Conditions:

  • Work is performed in an office environment, laboratory, cleanroom, or production floor.

#IJS

Required Education, Experience, & Skills

  • Bachelor's degree plus 9 or more years related experience.
  • Each higher-level degree, i.e., Master's Degree or Ph.D., may substitute for two years of experience. Related technical experience may be considered in lieu of education. Degree must be from a university, college, or school which is accredited by an agency recognized by the US Secretary of Education, US Department of Education.
  • A current, active Top Secret security clearance is required.
  • High level of personal motivation and initiative to learn and acquire new skills and adapt seamlessly to an ever-changing security environment.
  • Customer focused, excellent communicator and ability to work with limited supervision.
  • Solid organizational skills.
  • Ability to interface with other IA team members, other security disciplines (industrial security, physical security, special programs security, etc.), program personnel and government security representatives.
  • Experience applying analytical processes to planning, design, and implementation of new and improved IS meeting business requirements of a lab environment.
  • Experience with the development of core documentation including System Security Plans (SSP), Standard Operating Procedures (SOP), Plan of Actions & Milestones (POAM), Remediation Plans, and Configuration Management (CM) Plans.
  • Experience with the review and creation of mitigation reports from compliance and vulnerability scanning tools (Nessus, SCAP, ACAS, SCC).
  • Experience with auditing and certifying compliance of various systems (Windows, Linux, Network Devices and peripherals).
  • Experience with development and delivery of IA-related briefings and training material.

Preferred Education, Experience, & Skills

  • 10 or more years of experience in Cyber Security and Information Assurance.
  • Additional sysadmin experience.
  • Network security experience with knowledge of hardening network devices.
  • Working knowledge of system functions, security policies, technical security safeguards, and operational security measures.
  • Translate operational requirements into technical requirements and architectures needed to meet program objectives.
  • Experience with conducting all aspects of a self-inspection.
  • Experience with periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, file system and integrity scans to determine compliance.
  • Prepared incident reports of analysis methodology and results
  • Ability to assess cyber security posture for hi-tempo lab environment.
  • Extensive experience working with Cisco switches and firewalls.
  • Cisco Certification.
  • Knowledge of new and emerging information technology (IT) and cybersecurity technologies.
  • Employ best practices when implementing security controls within an information system including software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques.
  • Ability to function as an integral part of the development team to include designing and developing organizational information systems or upgrading legacy systems.

Pay Information

Full-Time Salary Range: $115100.000 - $195700.000

Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience.

Employee Benefits: At BAE Systems, we support our employees in all aspects of their life, including their health and financial well-being. Regular employees scheduled to work 20+ hours per week are offered: health, dental, and vision insurance; health savings accounts; a 401(k) savings plan; disability coverage; and life and accident insurance. We also have an employee assistance program, a legal plan, and other perks including discounts on things like home, auto, and pet insurance. Our leave programs include paid time off, paid holidays, as well as other types of leave, including paid parental, military, bereavement, and any applicable federal and state sick leave. Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards. Other incentives may be available based on position level and/or job specifics.

About BAE Systems Space & Mission Systems

BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it's what we do at BAE Systems. Working here means using your passion and ingenuity where it counts – defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team—making a big impact on a global scale. At BAE Systems, you'll find a rewarding career that truly makes a difference.

Headquartered in Boulder, Colorado, Space & Mission Systems is a leading provider of national defense and civil space applications, advanced remote sensing, scientific and tactical systems for the U.S. Intelligence, Department of Defense and scientific communities. We continually pioneer ways to innovate spacecraft, mission payloads, optical systems, and other defense and civil capabilities. Powered by endlessly curious people with an unwavering mission focus, we continually discover ways to enable our customers to perform beyond expectation and protect what matters most.

Job posted: Oct 23, 2024

Expiration date: Oct 23, 2024