Apply on Employer Site

BAE Systems, Inc. · 1 week ago

Information Security Systems Engineer - Expert

Herndon, VA

Full-time

Hybrid

Senior Level, Lead/Staff

$147K/yr - $249K/yr

11+ years exp

BAE Systems, a top-ten prime contractor to the U.S. Department of Defense, is seeking experienced Cyber Security Engineers to support a key government customer. The role involves delivering engineering services for network infrastructure and sophisticated enterprise computing infrastructure, including multi-Cloud services and virtualized applications.

Defense & Space

No H1B

U.S. Citizen Only

Responsibilities

Implementation and validation of security controls that support the Risk Management Framework (RMF) and ICD 503 Security Accreditation

Developing architecture documentation and Systems Security Plans (SSP) to support Accreditation and Authorization (A&A) reviews

POA&M development and implementation

Coordinating with customer security organizations to achieve Authority to Operate (ATO)

Knowledge of the complex environment involving shared networks and multiple security enclaves

Engineering for Cyber engineering and integration services including security, authentication, identity management, authorization, and access control engineering

Self-starter able to work independently and build relationships with technical reps across divisions, comfortable with cyber security and able to brief issues to the customer

Over 5 years of experience working on Government Agency enterprise infrastructure and engineering programs

Qualification

Risk Management FrameworkSystems Security PlansCyber security engineeringCloud security controlsCISSPAWS Certified Security SpecialtyNessus / Rapid7SplunkSQL securitySoft skills

Required

Minimum of 11 years' experience with a Bachelor's Degree. Other degrees will be considered with the year's experience adjusted to accommodate

Implementation and validation of security controls that support the Risk Management Framework (RMF) and ICD 503 Security Accreditation

Developing architecture documentation and Systems Security Plans (SSP) to support Accreditation and Authorization (A&A) reviews

POA&M development and implementation

Coordinating with customer security organizations to achieve Authority to Operate (ATO)

Knowledge of the complex environment involving shared networks and multiple security enclaves

Engineering for Cyber engineering and integration services including security, authentication, identity management, authorization, and access control engineering

Self-starter able to work independently and build relationships with technical reps across divisions, comfortable with cyber security and able to brief issues to the customer

Over 5 years of experience working on Government Agency enterprise infrastructure and engineering programs

Preferred

Nessus / Rapid7

Security Development and Operations (SecDevOps)

Various security tools and processes such as Splunk, Nessus Security Center, WebInspect, Xacta

Cloud security controls and implementation

STIG compliance and vulnerability management

CISSP

AWS Certified Security Specialty

Microsoft Office365

Experience in one or more software products associated with cyber system engineering for data analytics including SQL security, TANIUM Endpoint Management Software, Powershell, MacAfee, App Blocker, Splunk ITSI

Experience with one or more software development environments supporting commercial or open source tools including but not limited to: Linux, Python, C, Bash Scripting, Perl, SQL, Splunk Phantom, UBA, and UIPath

Experience in one or more cloud computing services and technologies including but not limited to: AWS/C2S, Microsoft Azure, Nutanix, VMware