Logo
BAE Systems

Principal Cybersecurity Systems Engineer

BAE Systems, UT, United States

Job Description

BAE Systems is seeking an exceptional, Principal Cybersecurity Analyst for an exciting opportunity to support the Air Force (AF) acquisition of the next generation Intercontinental Ballistic Missile (ICBM).

Why BAE Systems? BAE Systems is the third largest defense contractor in the world with an exceptional, mission-focused culture. The 1200+ BAE Systems employees and sub-contractors located at Hill AF Base, UT are closely aligned to the US AF Nuclear Weapons Center. We support the Center in sustaining the existing LGM-30 Minuteman III (MMIII) weapon system and acquiring its replacement, the LGM-35A Sentinel. We are a uniquely-valued mission partner delivering daily technical excellence and innovative solutions to our government customers. BAE Systems has earned accolades as a “Top Workplace” in UT based on employee feedback for 3 consecutive years, earning special distinction for providing a healthy work-life balance for our valued employees.

Why Sentinel? The Sentinel Program (formerly Ground Based Strategic Deterrent) is an enormous and complex “Mega-Project” modernizing the entire ICBM weapon system deployed across tens of thousands of square miles in five states. Without any doubt, Sentinel is one of the DoD’s most important acquisition efforts for the next decade, if not longer. It includes a complete refurbishment of hundreds of aging MMIII ICBM facilities to secure and support a newly designed, technologically advanced ballistic missile. It will also provide an entirely new command and control system as well as a vast array of required support equipment specifically engineered to operate and sustain the new weapon system over the decades ahead.

This position works with the Information System Security Manager (ISSM), System Program Managers (PM), and Authorizing Official (AO) representatives providing cybersecurity analytical services and/or products to ensure the development and operation of safe, secure, and effective systems as part of the deployed ICBM weapon system. The cybersecurity analyst will support the program office to conduct accurate systems and cyber threat analysis associated with a wide range of information technology, data systems, software, and operational technology required for the functional performance and cyber defense capabilities of the weapon system.

The specific responsibilities of this position include, but are not limited to:

  • Serves as a cybersecurity analyst to provide technical consult to the weapon system ISSM, AO, PM, Information System Owner (ISO) and the various weapon system product design teams.
  • Support the Program Office to prioritize cyber threats and advise of protective mitigations/solutions.
  • Conduct offensive architecture analysis and design of defense-in-depth solutions.
  • Coordinate and negotiate with customers AOs and system development teams.
  • Perform analysis and evaluation to design, implement, test and field secure systems, networks, and architectures.
  • Lead the development of system security plans including, security concepts of operation (SECONOP), risk management matrix, security control traceability matrix, security test procedures, and plan of action and milestones.
  • Analyze vulnerability assessments to validate system compliance with cyber requirements, RMF controls, and DISA Security Technical Information Guidelines (STIGS).
  • Advise and participate with security test event teams to achieve cyber requirement validation and verification for system accreditation milestones.
  • Verify and validate vulnerability resolutions and/or mitigations.
  • Analyze static code scans and dynamic code scans to detect software vulnerabilities.
  • Review all technical changes to determine security relevance.
  • Advise and develop program technical publications such as Systems Engineering Plans (SEP), Technical Plans, Analyses and Reports, Risk Assessments, SECONOP, Program Protection Plan, Anti-Tamper Plan, Cybersecurity Strategy, Technology Development Strategies, Test Plans, procedures, reports, System Security Plans and related documentation.
  • Support proposal activities, developing innovative cyber solutions and developing accurate cost estimates.

Required Education, Experience, & Skills

  • 7 years of progressive technical experience in cybersecurity or IT; or 5 years with Master of Science Degree in a Computer/Electrical Engineering, Cybersecurity or Information Systems related field of study.
  • Able to obtain a U.S. Government Top Secret/SCI security clearance.
  • At least 5 years progressive responsibility in providing technical guidance to leadership.
  • Previous experience as an ISSO using the RMF (or DIACAP).
  • DoD 8570 IAT level 2 compliance or higher certification required (Security +, CCNA-Security, GICSP, GSEC, or SSCP) or ability to obtain such within 6 months of being hired.
  • Experience or knowledge of cybersecurity, networks, system components, system protocols, COTS technology, and software development.
  • Experience developing external customer relationships and ability to communicate cybersecurity concepts and requirements with senior leaders.
  • Effective organizational, time management, and communications skills (written and verbal).
  • Able to work independently, demonstrate strong initiative, and organize daily tasks with minimal supervision.
  • Strong communication skills (oral and written) commensurate with expected mid- to senior-level civilian and military participants from various U.S. Government agencies.

Preferred Education, Experience, & Skills

  • Knowledge and/or experience with government acquisition program and involved with System Security Engineering and or Program Protection methodologies and practices.
  • Experience with Cyber Threat Intelligence review and analysis supporting program risks.
  • Conducting Cyber threat table tops events with cyber red/blue team engagement on system penetration and mitigation tactics, techniques, and protocols (TTPs).
  • DoD 8570 IAT level 3, IAM level 2 or IASAE level 2+ certification (CISSP-ISSAP/ISSEP, CCSP), or equivalent.
  • Software security analysis: DevSecOps pipeline development and execution.
  • Hybrid cloud based architecture and security engineering (containerization and orchestration of security functions and services across on prem and cloud architectures).
  • Operational technology and embedded systems security related configurations and cyber testing/risk assessments (SCADA, Industrial Control Systems, and/or Real-Time OS).

Pay Information

Full-Time Salary Range: $94728 - $161038

Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience.

Employee Benefits

At BAE Systems, we support our employees in all aspects of their life, including their health and financial well-being. Regular employees scheduled to work 20+ hours per week are offered: health, dental, and vision insurance; health savings accounts; a 401(k) savings plan; disability coverage; and life and accident insurance. We also have an employee assistance program, a legal plan, and other perks including discounts on things like home, auto, and pet insurance. Our leave programs include paid time off, paid holidays, as well as other types of leave, including paid parental, military, bereavement, and any applicable federal and state sick leave.

About BAE Systems Intelligence & Security

BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services.

Our Commitment to Diversity, Equity, and Inclusion:

At BAE Systems, we work hard every day to nurture an inclusive culture where employees are valued and feel like they belong. We are conscious of the need for all employees to see themselves reflected at every level of the company and know that in order to unlock the full potential of our workforce, everyone must feel confident being their best, most sincere self and be equipped to thrive.

#J-18808-Ljbffr