Cyber Security Engineer

Company: BAE Systems ( Learn More )

General Information
US-VA-Reston
N/A
Not Specified
Full-Time
Not Specified
Not Specified
False
False
Job Description Job Description BAE Systems is looking for a Cybersecurity/Information Assurance Engineer. The qualified candidate will be working on the security engineering team supporting engineering activities in a rapid development environment to support the specification, development, and application of computer security technologies, cybersecurity and information assurance management techniques to DOD and Intelligence Community systems.

Tasks may include:
  • Supporting Assessment and Authorization activities for DOD and Intelligence Systems in accordance with Risk Management Framework and ICD-503 guidelines
  • Investigating and evaluating existing technologies and proposing approaches for implementing security architectures
  • Analyzing and implementing security controls
  • Translating security requirements into technical requirements
  • Working with engineering teams to design defense in depth techniques into security architectures
  • Participating in security technical exchange meetings to register systems with security stakeholders
  • Preparing system security plans including, security concepts of operation, risk management matrix, security control traceability matrix, security test procedures, and plan of action and milestones
  • Performing vulnerability assessments to validate system compliance with DISA Security Technical Information Guidelines (STIGS)
  • Conducting vulnerability scans, static code scans and dynamic code scans to detect software vulnerabilities
  • Participating in security test events to achieve accreditation milestones
  • Working with program teams to identify, remediate or justify security findings
  • Maintaining and reporting ongoing security accreditation activities as required.
  • This position may require business travel to customer locations in support of product demonstrations, software installation, and system testing.
    Typical Education & Experience Typically a Bachelor's Degree and 2 years work experience or equivalent experienceRequired Skills and Education
  • Knowledge, training, or experience in Cyber Operations
  • Experience conducting and assessing vulnerability scans and vulnerability remediation
  • Technical documentation development
  • Achieving and maintaining DISA STIG and IAVA compliance
  • Knowledge of federal and national Cybersecurity policies, IA standard security principles, standards and industry best practices
  • Knowledge of Information Assurance and Information Operations technologies and development activities
  • Knowledge of Trusted operating systems and environments
  • Motivated self-starter
  • Excellent problem solving skills, judgment, and analytical capability, along with follow-up and monitoring skills
  • Strong communication skills (oral and written), and presentation skills
  • Team player with a proactive attitude and the ability to be productive in a dynamic/collaborative environment
  • Strong interpersonal, organization, and teambuilding skills
  • Ability to assist with other traditional systems engineering tasks such as CONOPS, requirements, and systems level testing
  • Preferred Skills and Education
  • Experience in DoD and Intelligence Community assessment and authorization processes and procedures
  • Experience selecting and implementing security countermeasures
  • Knowledge of Offensive architecting and security practices and techniques
  • Intrusion detection and prevention systems (IDS/IPS), log analysis, malware analysis, network traffic flow and packet analysis
  • Secure coding experience using C, C++ or Java
  • Understanding of security technologies and concepts, experience in design and implementation of secure network solutions including DMZs and web portals
  • Practical experience hardening IT systems in compliance with STE/STIG guidelines
  • Familiarity with security products such as HBSS, ACAS, Nessus, HP Fortify and Web Inspect
  • Cross Domain Solution (CDS) concepts, technologies and solutions
  • Anti-tamper policies and procedures
  • CompTia Security + certified or other equivalent computing environment or security certification
  • ISC2 CISSP certified
  • DODI 8570.1-M Compliance at IAT Level I certification
  • OSCP, OSWP, OSCE,OSEE, CEH, CCNA, Unix and Microsoft administration
  • About BAE Systems Electronic Systems BAE Systems is a premier global defense and security company with approximately 90,000 employees delivering a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support and services.
    The Electronic Systems (ES) sector spans the commercial and defense electronics markets with a broad portfolio of mission-critical electronic systems, including flight and engine controls; electronic warfare and night vision systems; surveillance and reconnaissance sensors; secure networked communications equipment; geospatial imagery intelligence products and systems; mission management; and power-and energy-management systems. Headquartered in Nashua, New Hampshire, ES employs approximately 13,000 people globally, with engineering and manufacturing functions primarily in the United States, United Kingdom, and Israel. Equal Opportunity Employer/Females/Minorities/Veterans/Disabled/Sexual Orientation/Gender Identity/Gender Expression
    Job Requirements