Apply on Employer Site

BAE Systems · 1 month ago

IT Security Spec Sr Prin II

Annapolis Junction Maryland

Full-time

Onsite

Senior Level, Lead/Staff

$147K/yr - $249K/yr

10+ years exp

BAE Systems is an international defense, aerospace, and security company focused on delivering advanced technology solutions. The Senior Information System Security Officer (ISSO) will support a large software development program, implementing security policies, analyzing threats, and ensuring compliance with security standards.

AerospaceManufacturingMilitaryNational SecurityNavigation

No H1B

Security Clearance Required

U.S. Citizen Only

Responsibilities

Provide support for implementing and enforcing information systems security policies, standards, and methodologies

Assist in the evaluation of security solutions to ensure they meet security requirements for processing multiple types of information

Assist with the Configuration Management for information system security software, hardware, and firmware

Analyze threats and develop and implement best practice methodologies for incident detection, reporting, and vulnerability remediation

Maintain records on workstations, servers, routers, firewalls, intelligent hubs, network switches, etc. to include system upgrades

Evaluate security solutions to ensure they meet security requirements for processing information

Maintain operational security posture for information systems

Provide support to the Information System Security Manager (ISSM) for maintaining the appropriate operational IA posture for a system/program/enclave

Develop and maintain documentation for Certification & Accreditation in accordance with specified policies

Develop and update system security plans and other IA documentation

Provide support for Information Assurance Vulnerability Alerts (IAVAs) management (initiating IAVA responses and system security scans, completing remediation, extending IAVA patches and security updates to designated sites, etc.)

Provide CM for security-relevant information system software, hardware, and firmware

Develop system security policy and ensure compliance

Administer the user identification and authentication mechanisms of the Information System

Qualification

Information Systems SecurityIAVA ManagementSecurity Documentation ManagementSecurity Policy DevelopmentSecurity Tools ProficiencyIncident Detection MethodologiesSelf-InitiativeInterpersonal SkillsTeam Player

Required

Must have at least 10 years of experience as ISSO working independently, and/or on teams maintaining secure information system operations in isolated, connected and standalone environments

Must have at least 5 years of experience using tools to support IAVA management

Must have at least 5 years of experience using tools to support the preparation, maintenance, and management of SSPs and other security related documentation

Demonstrated knowledge of and experience with several of the following: current security tools; hardware/software security implementation; communication protocols; encryption techniques/tools

In-depth experience completing security evaluations of software systems or architectures to ensure they meet security requirements

In-depth experience proposing, coordinating, implementing, and enforcing information systems security policies, standards, and methodologies, preferably on a large software or IT program

Demonstrated experience performing day-to-day security operations of large, complicated information and information processing systems

Must be committed to developing and adhering to best practices

Must possess a high level of self-initiative and must be a solutions-oriented team player

Must have excellent interpersonal skills