Senior Systems Security Engineer ISSE Job
Job Description Job Attributes+
-
Job ID
114432BR
-
Job Location
Huntsville, AL 35808, US
-
Job Category
Engineering & Technology
-
Job Type
Full-Time
-
Clearance Level
Top Secret/SCI Polygraph
-
Career Level
Experienced
-
Travel
<10%
Job Description
BAE Systems is excited to offer an opportunity to support a dynamic DOJ program as an Information Systems Security Engineer (ISSE), providing mission critical support to our federal law enforcement customer. If you are looking for an opportunity to help shape the future architecture for client forensic networks, work with a very diverse team of technical professionals, and share your knowledge and experiences, then this position if for you!
This position is part of a talented technical team responsible for the ongoing development, operations and maintenance of several networked systems supporting digital forensic investigations running primarily on Windows and utilizing virtual and cloud environments. The ideal candidate must be a self-starter with strong work habits, is able to complete task independently while working as part of a team, and have demonstrated career experience as an ISSO or ISSE and with the Federal ATO process.
Some duties of the position include:
Functional Responsibilities: Senior level capabilities regarding Information system security. Knowledgeable of current Information Assurance (IA) technologies to the architecture, design, development, evaluation, and integration of applications, systems, and networks to maintain the system security posture. Develops compliancy and standardization within the customer's policies regarding various information systems. Work closely with Government customers to ensure the confidentiality, integrity, and availability of systems, applications, networks, and data through the planning, analysis, development, implementation, maintenance, and enhancement of information systems security programs; infrastructure; application; Security Assessment and Authorization (SAA), IA policy directives (PD) and guides (PG); and IA Security tools (e.g., Tenable.io, Nessus Pro, NMap, etc.). The Contractor shall:
Have excellent verbal and written communication skills to be able to accurately relate requirements and document all within the appropriate security document and/or within the RMF system and coordinate with program, other system(s), and security personnel;
Prepare documentation from templates such as, but not limited to, Configuration Management Plan (CMP), Incident Response Plan (IRP), Information System Contingency Plan (ISCP), and Plan of Action and Milestones (POA&M) to ensure compliance with customer PDs and PGs and Federal IA requirements as well as coordinate review(s) and approvals;
Must be able to discern the program policies and procedures, identify areas that need work and bring up to management for resolution;
Identify IA vulnerabilities and coordinate with the Infrastructure and Development teams to correct, mitigated or apply for an exception via the POA&M processes;
Review vulnerability (i.e., patches, updates, etc.) and compliance (i.e., Security Content Automation Protocol (SCAP) and/or Defense Information Systems Agency (DISA) Security Technical Implementation Guide (STIG)) scans on the infrastructure and applications to ensure patch and configuration compliance (on-premises and in the cloud (Azure preferred))
Prepares SAA package(s) to obtain and maintain an authority-to-operate (ATO), authority-to-test (ATT), or other SAA authority types for all systems and applications;
Attend Configuration Control Board (CCB) meetings and review all change requests for impact to the system/application security posture(s) and applicable Federal and customer PD and PG compliance requirements; and document decisions within the CMP;
Coordinate security incident and high priority compliance responses with the Enterprise Security Operations Center (ESOC);
Represent program security interests in various meetings within and outside of the program;
Schedule and conduct meetings with pertinent program personnel to address findings to determine appropriate path forward and document within the CMP and, if necessary, POA&M;
Coordinates with other system Information System Security Officers (ISSO) to ensure that their requirements for interconnection, policy and procedures are met and all documentation is provided and updated as necessary;
Ability to assess current and evolving security threats in an operational environment;
With an appropriate amount of Government PM guidance, works independently to carry out all technical requirements as directed by the Government PM, Information System Security Representative, Information System Security Manager, and Authorizing Official in a timely manner.
Required Education, Experience, & Skills Ten (10) years of experience or more assessing and documenting results for system(s), infrastructure(s) and applications (on-premises and cloud (i.e., AWS GovCloud and/or Azure GovCloud)) against NIST SP 800-53 security controls and SP 800-171 Risk Management Framework (RMF) processes.
:Bachelor of Science (B.S.) Degree in Computer Security or related field of study; (ISC)2 Information Security Certification(s) (e.g., CISSP, CAP, etc.); or in lieu of education, an additional five (5) years of relevant experience that addresses all requirements of the position.
Day to Day expectations:
- Experience working on an Agile team
- Experience working with a federal law enforcement organization
- Willingness to implement Lean principles, Agile engineering and DevSecOps
- Desire longevity on the project.
- Technical background desired, knowledge broader in scope.
- Have an understanding of taclans, basic coding, and scripts.
- Splunk and Tenable experience desired.
- Need to be able to read technical diagrams, dataflows, create workflows, read network diagrams. Understand JRC and the 6 steps of the Risk Management Framework.
- Have a team perspective, invite collaboration, the personality needs to be one of investment. Need to connect and to learn. Be function driven. They need to have an accountability to the program, be on time, personable, positive.
Preferred Education, Experience, & Skills
- Experience in a cyber-risk and compliance management system (e.g., Xacta, RiskVision, etc.);
- One (1) year experience or more configuring, performing, scheduling, reviewing, and assessing vulnerability (i.e., patches, updates, etc.) and compliance (i.e., Security Content Automation Protocol (SCAP) and/or Defense Information Systems Agency (DISA) Security Technical Implementation Guide (STIG)) scans on the infrastructure and applications to ensure patch and configuration compliance on-premises and in the cloud (Azure preferred);
- Technical background that will assist in assessing the NIST SP 800-53 security controls and gather evidence to support conclusions;
- Knowledge of operating systems, network and application security to aid implementation of information security and assurance principles;
- Knowledge of SPLUNK software and tools; and
- Knowledge of Taclane, encryption devices and COMSEC technology.
Pay Information
Full-Time Salary Range: $118504 - $201457
Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience.
Employee Benefits: At BAE Systems, we support our employees in all aspects of their life, including their health and financial well-being. Regular employees scheduled to work 20+ hours per week are offered: health, dental, and vision insurance; health savings accounts; a 401(k) savings plan; disability coverage; and life and accident insurance. We also have an employee assistance program, a legal plan, and other perks including discounts on things like home, auto, and pet insurance. Our leave programs include paid time off, paid holidays, as well as other types of leave, including paid parental, military, bereavement, and any applicable federal and state sick leave. Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards. Other incentives may be available based on position level and/or job specifics.
About BAE Systems Intelligence & Security BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it’s what we do at BAE Systems. Working here means using your passion and ingenuity where it counts – defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team—making a big impact on a global scale. At BAE Systems, you’ll find a rewarding career that truly makes a difference.
Intelligence & Security (I&S), based in McLean, Virginia, designs and delivers advanced defense, intelligence, and security solutions that support the important missions of our customers. Our pride and dedication shows in everything we do—from intelligence analysis, cyber operations and IT expertise to systems development, systems integration, and operations and maintenance services. Knowing that our work enables the U.S. military and government to recognize, manage and defeat threats inspires us to push ourselves and our technologies to new levels.
This position will be posted for at least 5 calendar days. The posting will remain active until the position is filled, or a qualified pool of candidates is identified.
Additional Information
Who We Are
You're used to protecting what matters most.
Our team has the privilege and the responsibility of knowing that the work we do really matters. Our work is vital to the armed forces personnel and major corporations who rely on us to protect, equip and support them where it counts; to the security and prosperity of the nations we serve; to our skilled and talented people; to the local communities where we are based; and to the wider community who invest in, supply and engage with us. At BAE Systems, everyone can make a difference.
We believe that a diverse workforce inspires creativity and drives innovation. We respect and value the huge variety of skills, abilities and perspectives that our people bring to our business. We celebrate our differences and aim to recruit and develop talent from all backgrounds, championing the strength that a truly inclusive and collaborative workplace gives to our company culture and performance.
Enjoy a flexible environment that values your work-life balance and helps you perform at your best.
On the job training, leadership programs, collaboration with leading experts – excellence is built into your career development whether you are just starting out as an apprentice or are an experienced professional.
We’re united by trust, camaraderie and a shared ambition to lead the world in our field. It helps that we’re nice people too.
See your contribution, making real change as breakthrough technology and intelligence solutions reshape the landscape for our customers.
What We Offer
+ Warrior Integration Program (Est. 2008)This program was created to assist in the employment, transition, education, and development of wounded warriors. Through mentoring, partnership, education, and leadership, we vow to serve our veterans in the same manner they served our country. WIP provides mission-centered work that gives wounded warriors the opportunity to contribute, providing a path for career progression.
Camo to Corporate underpins all of our military recruiting and veteran efforts. We participate in annual career workshops and partner with VA employment reps to identify opportunities for vets at BAE Systems. We’re also proud members of Joining Forces, the Veteran Jobs Mission and Hiring our Heroes - initiatives focused on helping vets and their spouses find meaningful careers.