BAE Systems

Mgr- Cyber

BAE Systems$100K — $130K *
Aerospace & Defense
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • Active Secret Clearance and IAM Level II certification per DoD 8570.1M
  • Relevant experience as an Information System Security Manager (ISSM) or in cybersecurity
  • Proactive learner with adaptability to changing security environments
  • Strong communication and customer service skills, able to work independently
  • Excellent organizational abilities
  • Experience with creating essential security documentation and plans
  • Familiarity with compliance and vulnerability scanning tools like Nessus and SCAP

Responsibilities

  • Support compliance with Risk Management Framework (RMF) as per NISPOM, JSIG, and NIST standards
  • Obtain and maintain Authority to Operate (ATO) approvals for systems through RMF adherence
  • Manage System Security documentation and assess security controls during the RMF process
  • Oversee compliance of classified systems and implement a self-inspection program
  • Keep security certification and accreditation documents current for classified systems
  • Implement continuous monitoring per security authority requirements
  • Coordinate security activities with various stakeholders, including security officers and system owners

Benefits

  • Full-time onsite work fosters collaboration
  • In-depth exposure to rigorous compliance and security processes
  • Opportunity to lead the information assurance program
  • Engagement with diverse security disciplines across the organization
  • Access to continuous learning and skill development in a dynamic environment
  • Experience with cutting-edge cybersecurity technologies
  • Participation in high-stakes security and compliance efforts
Full Job Description
Job Description

Inthis Cybersecurity, ISSM role you will make impacts in the following ways;
  • Responsible for supporting adherence to all aspects of a rigorous Risk Management Framework (RMF) compliance program as stipulated by NISPOM/DAAPM, JSIG, ICD 503, STIGs and associated NIST publications.
  • Obtain and maintain Authority to Operate (ATO) approvals for various systems by adhering to the Risk Management Framework (RMF).
  • Support cybersecurity efforts throughout the RMF process for one or more assigned programs(s) to include the development and management of System Security documentation, Plans of Action and Milestones (POA&Ms), assessing and auditing systems security controls, and continuous monitoring of controls.
  • Provide oversight for all classified systems compliance, and ensure the execution of our strong self-inspection program.
  • Ensure all security certification and accreditation documents in relation to all classified systems are up-to-date.
  • Ensure continuous monitoring (e.g. weekly, monthly, etc.) in accordance with cognizant security authority requirements are being implemented and met.
  • Coordinate security-related activities with information security architects, senior information security officers, information system owners, common control providers, and information system security officers

Because of the need for consistent, in-person collaboration and/or the requirement to perform all work onsite due to the nature of this particular role, it will be performed full-time on site. This means work will be conducted on location at a BAE Systems facility 100% of the time.

This position will be posted for at least 5 calendar days. The posting will remain active until the position is filled, or a qualified pool of candidates is identified.

Required Skills and Education

  • Active Secret Clearance and IAM Level II certification commensurate with DoD 8570.1M requirements
  • ISSM or relevant cybersecurity experience
  • High level of personal motivation and initiative to learn and acquire new skills, and adapt seamlessly to an ever-changing security environment
  • Customer focused, excellent communicator and ability to work with limited supervision.
  • Strong organizational skills
  • Able to interface with other IA team members, other security disciplines (industrial security, physical security, special programs security, etc.), program personnel and government security representatives.
  • Experience with the development of core documentation including System Security Plans, Standard Operating Procedures, Plan of Actions and Milestones, Remediation Plans, and Configuration Management Plans.
  • Experience with the review and creation of mitigation reports from compliance and vulnerability scanning tools (Nessus, SCAP, ACAS, SCC).
  • Experience with auditing and certifying compliance of various systems (Windows, Linux, Network Devices and peripherals).
  • Experience with development and delivery of IA-related briefings and training material.
  • Experience with compliance and vulnerability scanning tools (Nessus, SCAP, ACAS, SCC).
  • Experience with the review and creation of mitigation reports from compliance and vulnerability scanning tools (Nessus, SCAP, ACAS, SCC).


Preferred Skills and Education

  • Run and maintain the entire information assurance program for more complex efforts or area
  • Working knowledge of system functions, security policies, technical security safeguards, and operational security measures.
  • Translate operational requirements into technical requirements and architectures needed to meet program objectives
  • Experience with conducting all aspects of a self-inspection
  • Experience with periodic and on-demand system audits and vulnerability assessments, including user accounts, application access, file system and integrity scans to determine compliance
  • Prepared incident reports of analysis methodology and results
  • Knowledge of new and emerging information technology (IT) and cybersecurity technologies.
  • Employ best practices when implementing security controls within an information system including; software engineering methodologies, system/security engineering principles, secure design, secure architecture, and secure coding techniques
  • Ability to function as an integral part of the development team to include designing and developing organizational information systems or upgrading legacy systems

About BAE Systems

BAE Systems plc is a British multinational arms, security, and aerospace company. It is among the world's largest defense contractors, with over 85,000 employees and operations in over 40 countries. BAE Systems is involved in the design, development, and manufacture of a wide range of products and services, including military aircraft, naval ships, and land vehicles. The company also provides a range of cybersecurity and intelligence services. BAE Systems has a long history, dating back to the 19th century, and has been involved in many major defense projects. Visit baesystems.com for more information.
Learn more about BAE Systems
Size
90,500 employees
Industry
Founded
1997
NASDAQ

Similar Jobs

More Jobs at BAE Systems

  • BAE Systems
    Supply Chain Planner II
    $70K — $95K *
    Hudson, NH 03051 (Hillsborough County)
    Aerospace & Defense
    In-Person
  • BAE Systems
    Eng Sr - SW
    $100K — $130K *
    Manassas, VA 20110 (Manassas City County)
    Aerospace & Defense
    In-Person
  • BAE Systems
    Program Mgr II
    $100K — $130K *
    Broomfield, CO 80020 (Broomfield County)
    Aerospace & Defense
    In-Person
  • BAE Systems
    Mgr II- Security
    $90K — $120K *
    Minot Afb, ND 58704 (Ward County)
    Aerospace & Defense
    In-Person
  • BAE Systems
    Program Mgr I
    $75K — $95K *
    Malmstrom Afb, MT 59402 (Cascade County)
    Aerospace & Defense
    In-Person

More Aerospace & Defense Jobs

Find similar Mgr- Cyber jobs: