Eng II - Sys Bae Systems
San Diego, CA

Job Description

See what you're missing. Our employees work on the world's most advanced electronics - from detecting threats for F-35 pilots to illuminating the night for soldiers. Spanning air, land, sea, and space, we are developing the technology of tomorrow, delivered today. Drawing strength from our differences, we're innovating for the future. And you can, too. Our flexible work environment provides you a chance to change the world without giving up your personal life. We put our customers first - exemplified by our mission: "We Protect Those Who Protect Us®." Sound like a team you want to be a part of? Come build your career with BAE Systems.

In Command, Control, Communications, Computers, Intelligence, Surveillance, and Reconnaissance (C4ISR) solutions, you'll help develop systems that sense, control, exploit and disseminate actionable information to warfighters supporting a variety of missions.

Job Description:

BAE Systems is looking for a Cybersecurity/Information Assurance Engineer. The qualified candidate will be working on the security engineering team supporting engineering activities in a rapid development environment to support the specification, development, and application of computer security technologies, cybersecurity and information assurance management techniques to DoD and Intelligence Community systems.

Keywords: Cyber, security, vulnerability, STIG, RMF, Risk Management Framework, A&A, Assessment and Authorization

Tasks may include:

* Analyzing system requirements and architecture to assess risks, threats and vulnerabilities of the product in accordance with accepted industry, professional, and government standards to ensure security design integrity, availability, confidentiality, and regulatory compliance
* Supporting Assessment and Authorization (A&A) activities for DoD and Intelligence Systems in accordance with Risk Management Framework and ICD-503 guidelines
* Working with the Infrastructure and Engineering Staff to incorporate tools and best practices that ensure control requirements are addressed to promote a robust security posture for the communications aspects of applications in both a private on premises data centers and public cloud offerings
* Supporting the secure design, architecture, installation, configuration, hardening, and remediation for software applications to protect organizations' sensitive information for On-Prem and Cloud environments.
* Supporting the development of system security plans including, security concepts of operation, risk management matrix, security control traceability matrix, security test procedures, and plan of action and milestones
* Supporting vulnerability scans, static code scans and dynamic code scans to detect software vulnerabilities.
* Assisting in establishing and implementing a Continuous Diagnostics and Mitigation (CDM) capability within application environments to ensure integrated security controls for the System of Systems (SoS)
* Conducting vulnerability assessments to validate system compliance with DISA Security Technical Information Guidelines (STIGS)
* Supporting security test events to achieve accreditation milestones

This position may require business travel to customer locations in support of product demonstrations, software installation, and system testing.