Apply Now

Cyber Systems Engineer

San Diego, CA, USA | BAE Systems

  • Industry:
  • Position Type:
  • Functions:
  • Experience:
    7-10 years
Job Description:
55 people have viewed this job

BAE Systems is looking for a Cybersecurity/Information Assurance Engineer to work on a multi-disciplinary team in an Agile, fast-paced development environment. The qualified candidate will be working on the security engineering team supporting engineering activities in a rapid development environment to support the specification, development, and application of computer security technologies, cybersecurity and information assurance management techniques for an extensible open software framework for integration of tools capable of mission data processing in a Pivotal Cloud Foundry (PCF) environment for the DoD and/or Intelligence Community.

Keywords: Cyber, security, vulnerability, STIG, RMF, Risk Management Framework, A&A, Assessment and Authorization, threat modeling, offensive, attack vector, defense-in-depth, Agile, PCF

Tasks may include:

Performing cyber system engineering activities

Conducting Assessment and Authorization (A&A) activities for DoD and Intelligence Systems in accordance with Risk Management Framework and ICD-503 guidelines

Developing system security plans including, security concepts of operation, risk management matrix, security control traceability matrix, security test procedures, and plan of action and milestones

Coordinating vulnerability scans, static code scans and dynamic code scans to detect software vulnerabilities

Conducting and analyzing vulnerability assessments to validate system compliance with DISA Security Technical Information Guidelines (STIGS)

Identifying and implementing vulnerability resolutions and/or mitigations

Conducting security test events to achieve accreditation milestones

This position may require business travel to customer locations in support of product demonstrations, software installation, and system testing

Please note that pursuant to a government contract, this specific position requires US citizenship status

Typical Education & Experience

Typically a Bachelor of Science degree in engineering/technical discipline, and 8+ year(s) related experience or equivalent experience, training and/or certifications.

Required Skills and Education

ISC2 CISSP or equivalent certification

Experience with national Cybersecurity policies DoD or Intelligence Community A&A processes and procedures, and industry best practices

Proficient in vulnerability assessment, control allocation and risk mitigation

Experience with DISA STIGs, IAVA compliance hardening, vulnerability scans and remediation

Experience with traditional A&A tools: ACAS Nessus, HBSS, Xacta, eMASS, SCAP Scanner, Fortify, WebInspect, STIG Viewer

Ability to identify opportunities in product development, process efficiency, and new business opportunities

Team leader with a proactive attitude and the ability to be productive in a dynamic/collaborative environment

Strong interpersonal skills and the ability to effectively build and lead teams

Good mentoring skills

Demonstrated ability to work with minimal supervision

Planning and organizational skills

Strong oral and written communications skills

US Citizenship and ability to be granted a security clearance by the Federal Government

Preferred Skills and Education

Other offensive or defensive cyber security certifications (ISSAP-CISSP, ISSEP-CISSP, CCSP, CEH, OSCP, etc.)

Experience with cloud and cross domain solution accreditations

Experience with the Application Security and Development STIG

Understanding of offensive security tactics, techniques and procedures

Leadership skills (supervisory experience, building teams, building customer relationships)

Ability to negotiate effectively with higher level managers, functional managers, customers, industry partners, and teammates

Ability to support proposal and cost activities

Other companies hiring with Ivy Exec

 Company Logos