Senior Principal IT Systems Security Engineer at BAE Systems in Nellis Afb, NV
Job Description This position is contingent upon contract award anticipated in December 2021. BAE Systems is seeking an IT Systems Security Engineer Senior Principal to join our team supporting the 53rd Wing Technical Support Services (53rd WTSS) contract. This contract provides the Air Force support services in the areas of software development/maintenance, network services, security, and test & evaluation. The successful candidate will serve as the lead IT Systems Security Engineer for engineering and operations. Duties will include:
Provide on-site support for Cybersecurity assessments, compliance, and validation. Perform Cybersecurity Compliance and Validations to include Cybersecurity site visits, inspections, scanning, remediation, patch compliance, and reviews. Assess organizational security posture of USSOCOM's Component Commands, TSOCs, and deployed forces and verify their compliance with DoD, DIA and USSOCOM guidance. Identify common security risks by analyzing findings, developing metrics, and trends. Validate the patching of systems, perform validation scanning using ACAS, develop Plans of Action & Milestone (POA&Ms), and report as directed by applicable policies, procedures, and regulations. Assist Component Commands, TSOCs, and deployed forces with required scanning and vulnerability management programs. Track and report to higher headquarters organizations (e.g., USCYBERCOM, DIA) compliance with applicable Cybersecurity regulations and directives. Maintain records documenting compliance with federal laws, directives, policies and procedures and provide USSOCOM, its Component Commands, TSOCs, and deployed forces. Provide POA&M for correcting or mitigating the weakness (as required) and track POA&Ms and provide status updates. Periodically review USSOCOM, Component Command, TSOC, and deployed forces' Information Security Plans and Physical Security Plans and recommend measures to safeguard classified, sensitive, and unclassified information. Identify and document that physical security elements identified to support DoD networks, systems, services and devices are in compliance with security controls for access control. Execute Information Assurance Vulnerability Management (IAVM) programs; track and report compliance with Information Assurance Vulnerability Alerts (IAVAs) and Information Assurance Vulnerability Bulletins (IAVBs). Coordinate with subordinate organizations for required reporting and compliance status. Track and report the status of POA&Ms through their completion. Execute Cybersecurity self-inspection programs; track and report on compliance and completion. Perform FISMA network and system security reviews. Perform and publish trend analyses of SIE Cybersecurity assessments, lessons learned, and recommended mitigation approaches. Provide subject matter expertise for COA development and the implementation of Cybersecurity mitigation strategies. Develop and implement required processes, procedures, and capabilities to mitigate vulnerabilities and weaknesses for software and hardware deployment. Respond to Cybersecurity Requests for Information (RFIs) from external organizations and NetOps decision makers. Required Education, Experience, & Skills BS degree in a computer or system science discipline from an accredited college or university and eight (8) to twelve (12) years of progressive, relevant experience, or and MS degree in a computer or system science discipline and seven (7) to ten (10) years of progressive experience, or a Ph.D. degree in a computer or system science discipline and two (2) to five (5) years or progressive experience. DoD 8570.01-M IAM-II certification. Must have excellent communications skill (written and oral) and interpersonal skills. Knowledge and experience with DOD IA processes and policies (e.g., CJCSM 6510.01, Incident Response and other IA policies). Experience with the US Combatant Commands (USCENTCOM/USSOCOM) is desired. This position requires the successful candidate to be able to obtain a Secret level clearance. The criteria for obtaining and holding a clearance are driven by US government requirements. You must be a US citizen to obtain a security clearance. About BAE Systems Intelligence & Security BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it's what we do at BAE Systems. Working here means using your passion and ingenuity where it counts - defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team-making a big impact on a global scale. At BAE Systems, you'll find a rewarding career that truly makes a difference. Intelligence & Security (I&S), based in McLean, Virginia, designs and delivers advanced defense, intelligence, and security solutions that support the important missions of our customers. Our pride and dedication shows in everything we do-from intelligence analysis, cyber operations and IT expertise to systems development, systems integration, and operations and maintenance services. Knowing that our work enables the U.S. military and government to recognize, manage and defeat threats inspires us to push ourselves and our technologies to new levels. At BAE Systems, we celebrate the array of skills, experiences, and perspectives our employees bring to the table. For us, differences are a source of strength. We're laser-focused on high performance, and we work hard every day to nurture an inclusive culture where all employees can innovate and thrive. Here, you will not only build your career, but you will also enjoy work-life balance, uncover new experiences, and collaborate with passionate colleagues.
Salary Range:
$100K -- $150K
Minimum Qualification
System & Network Administration, Systems Architecture & Engineering, IT SecurityEstimated Salary: $20 to $28 per hour based on qualifications.
Provide on-site support for Cybersecurity assessments, compliance, and validation. Perform Cybersecurity Compliance and Validations to include Cybersecurity site visits, inspections, scanning, remediation, patch compliance, and reviews. Assess organizational security posture of USSOCOM's Component Commands, TSOCs, and deployed forces and verify their compliance with DoD, DIA and USSOCOM guidance. Identify common security risks by analyzing findings, developing metrics, and trends. Validate the patching of systems, perform validation scanning using ACAS, develop Plans of Action & Milestone (POA&Ms), and report as directed by applicable policies, procedures, and regulations. Assist Component Commands, TSOCs, and deployed forces with required scanning and vulnerability management programs. Track and report to higher headquarters organizations (e.g., USCYBERCOM, DIA) compliance with applicable Cybersecurity regulations and directives. Maintain records documenting compliance with federal laws, directives, policies and procedures and provide USSOCOM, its Component Commands, TSOCs, and deployed forces. Provide POA&M for correcting or mitigating the weakness (as required) and track POA&Ms and provide status updates. Periodically review USSOCOM, Component Command, TSOC, and deployed forces' Information Security Plans and Physical Security Plans and recommend measures to safeguard classified, sensitive, and unclassified information. Identify and document that physical security elements identified to support DoD networks, systems, services and devices are in compliance with security controls for access control. Execute Information Assurance Vulnerability Management (IAVM) programs; track and report compliance with Information Assurance Vulnerability Alerts (IAVAs) and Information Assurance Vulnerability Bulletins (IAVBs). Coordinate with subordinate organizations for required reporting and compliance status. Track and report the status of POA&Ms through their completion. Execute Cybersecurity self-inspection programs; track and report on compliance and completion. Perform FISMA network and system security reviews. Perform and publish trend analyses of SIE Cybersecurity assessments, lessons learned, and recommended mitigation approaches. Provide subject matter expertise for COA development and the implementation of Cybersecurity mitigation strategies. Develop and implement required processes, procedures, and capabilities to mitigate vulnerabilities and weaknesses for software and hardware deployment. Respond to Cybersecurity Requests for Information (RFIs) from external organizations and NetOps decision makers. Required Education, Experience, & Skills BS degree in a computer or system science discipline from an accredited college or university and eight (8) to twelve (12) years of progressive, relevant experience, or and MS degree in a computer or system science discipline and seven (7) to ten (10) years of progressive experience, or a Ph.D. degree in a computer or system science discipline and two (2) to five (5) years or progressive experience. DoD 8570.01-M IAM-II certification. Must have excellent communications skill (written and oral) and interpersonal skills. Knowledge and experience with DOD IA processes and policies (e.g., CJCSM 6510.01, Incident Response and other IA policies). Experience with the US Combatant Commands (USCENTCOM/USSOCOM) is desired. This position requires the successful candidate to be able to obtain a Secret level clearance. The criteria for obtaining and holding a clearance are driven by US government requirements. You must be a US citizen to obtain a security clearance. About BAE Systems Intelligence & Security BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it's what we do at BAE Systems. Working here means using your passion and ingenuity where it counts - defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team-making a big impact on a global scale. At BAE Systems, you'll find a rewarding career that truly makes a difference. Intelligence & Security (I&S), based in McLean, Virginia, designs and delivers advanced defense, intelligence, and security solutions that support the important missions of our customers. Our pride and dedication shows in everything we do-from intelligence analysis, cyber operations and IT expertise to systems development, systems integration, and operations and maintenance services. Knowing that our work enables the U.S. military and government to recognize, manage and defeat threats inspires us to push ourselves and our technologies to new levels. At BAE Systems, we celebrate the array of skills, experiences, and perspectives our employees bring to the table. For us, differences are a source of strength. We're laser-focused on high performance, and we work hard every day to nurture an inclusive culture where all employees can innovate and thrive. Here, you will not only build your career, but you will also enjoy work-life balance, uncover new experiences, and collaborate with passionate colleagues.
Salary Range:
$100K -- $150K
Minimum Qualification
System & Network Administration, Systems Architecture & Engineering, IT SecurityEstimated Salary: $20 to $28 per hour based on qualifications.
|
|
 | |
