Job Information
BAE Systems Cyber Security, Senior Information Systems Security Officer (ISSO) in Merrimack, New Hampshire
Job Description
Continue your career as a cybersecurity professional with BAE Systems, supporting and protecting information systems critical to national security at one of the leading companies in Aerospace and Defense. Develop your Information Assurance (IA) career through hands on application, work with seasoned professionals, and a training and development plan designed to grow your skills in a fast paced, team-based environment.
If you are looking to learn, influence, and help develop top cyber technologies, applications, and processes that protect and service our customers wherever they may be air, land, and sea come join our award-winning security family here at Electronic Systems (ES).
Responsible for supporting adherence to all aspects of a rigorous Risk Managed Framework (RMF) compliance program as stipulated by NISPOM/DAAPM, JSIG, ICD 503, STIGs and associated NIST publications.
Support the Information System Security Manager in obtaining and maintaining Authority to Operate (ATO) approvals for various systems by adhering to the Risk Management Framework (RMF). This position supports cybersecurity efforts throughout the RMF process for one or more assigned programs(s) to include supporting the development and management of System Security documentation, Plans of Action and Milestones (POA&Ms), assessing and auditing systems security controls, and continuous monitoring of controls.
Because of the need for consistent, in-person collaboration and/or the requirement to perform all work onsite due to the nature of this particular role, it will be performed full-time on site. This means work will be conducted on location at a BAE Systems facility 100% of the time.
Required Education, Experience, & Skills
IAM Level I certification commensurate with DoD 8570.1M requirements (or ability to obtain certification within 6 months)
ISSO or relevant cybersecurity experience
High level of personal motivation and initiative to learn and acquire new skills, and adapt seamlessly to an ever-changing security environment.
Customer focused, excellent communicator and ability to work with limited supervision.
Strong organizational skills
Able to interface with other IA team members, other security disciplines (industrial security, physical security, special programs security, etc.), program personnel and government security representatives.
Support the ISSM to ensure all security certification and accreditation documents in relation to all classified systems are up-to-date.
Ensure continuous monitoring (e.g. weekly, monthly, etc.) in accordance with cognizant security authority requirements are being implemented and met.
Experience with compliance and vulnerability scanning tools (Nessus, SCAP, ACAS, SCC).
Experience with validating compliance of various systems (Windows, Linux, Network Devices and peripherals).
Experience with IA configuration management and change request processes.
Experience with conducting regular audits to ensure that systems are being operated securely, and information systems security policies and procedures are being implemented as defined in security plans.
Secret Clearance Required
Preferred Education, Experience, & Skills
Working knowledge of system functions, security policies, technical security safeguards, and operational security measures.
Experience with the review and creation of mitigation reports from compliance and vulnerability scanning tools (Nessus, SCAP, ACAS, SCC).
Experience with the preparation for Assessment and Authorization s (A&A)
Experience with the development of core documentation including System Security Plans, Standard Operating Procedures, Plan of Actions and Milestones, Remediation Plans, and Configuration Management Plans.
Experience with development and delivery of IA-related briefings and training material.
Experience in conducting routine investigations of information systems security violations and incidents, reporting as necessary to management
Ability to translate operational requirements into technical requirements and architectures needed to meet program objectives
Experience with conducting all aspects of a self-inspection
Experience with periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, file system and integrity scans to determine compliance
Prepares incident reports of analysis methodology and results
Knowledge of new and emerging information technology (IT) and cybersecurity technologies.
Pay Information
Full-Time Salary Range: $92290 - $156860
Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience.
Employee Benefits: At BAE Systems, we support our employees in all aspects of their life, including their health and financial well-being. Regular employees scheduled to work 20 hours per week are offered: health, dental, and vision insurance; health savings accounts; a 401(k) savings plan; disability coverage; and life and accident insurance. We also have an employee assistance program, a legal plan, and other perks including discounts on things like home, auto, and pet insurance. Our leave programs include paid time off, paid holidays, as well as other types of leave, including paid parental, military, bereavement, and any applicable federal and state sick leave. Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards. Other incentives may be available based on position level and/or job specifics.
Cyber Security, Senior Information Systems Security Officer (ISSO)
106749BR
EEO Career Site Equal Opportunity Employer. Minorities . females . veterans . individuals with disabilities . sexual orientation . gender identity . gender expression