Job Description

See what you re missing. Our employees work on the world s most advanced electronics from detecting threats for F-35 pilots to illuminating the night for soldiers. Spanning air, land, sea, and space, we are developing the technology of tomorrow, delivered today. Drawing strength from our differences, we re innovating for the future. And you can, too.

Our flexible work environment provides you a chance to change the world without giving up your personal life. We put our customers first exemplified by our mission: We Protect Those Who Protect Us. Sound like a team you want to be a part of? Come build your career with BAE Systems.

In Countermeasure & Electromagnetic Attack Solutions (CEMA), we provide next-generation threat detection and countermeasure solutions to provide unparalleled electronic warfare capabilities to enhance mission survivability.

BAE Systems is looking for a Senior Cyber Architect. The qualified candidate will be working on and possibly leading security engineering teams supporting cybersecurity engineering activities in a rapid development environment to support the specification, development, and application of computer security technologies, cybersecurity and information assurance management techniques to DoD systems.

Tasks may include:

• Leading systems engineering teams

• Leading Assessment and Authorization (A&A) activities for DoD Systems in accordance with Risk Management Framework

• Supporting traditional systems engineering tasks such as CONOPS, requirements development and allocation, cyber design engineering, cyber implementation engineering, verification and Validation, and continuous monitoring efforts during deployment, Operations and Sustainment

• Supporting offensive architecture analysis and design of defense-in-depth solutions

• Supporting Development Security Operations (DevSecOps) integration

• Developing and assessing system security plans including, security concepts of operation, risk management matrix, security control traceability matrix, security test procedures, and plan of action and milestones

• Conducting and analyzing vulnerability assessments to validate system compliance with RMF controls and DISA Security Technical Information Guidelines (STIG)

• Analyzing static code scans and dynamic code scans to validate Application Security and Development STIG compliance

This position may require business travel to customer locations in support of customer meetings, product demonstration, Integration and/or systems testing.

Because of the need for intermittent in-person collaboration and/or the requirement to perform a portion of work onsite, this position will be considered hybrid. This means work will be conducted on location at a BAE Systems facility as well as remotely, when applicable.

• Please note that pursuant to a government contract, this specific position requires US citizenship status*

Keywords: Cyber, security, vulnerability, STIG, RMF, Risk Management Framework, A&A, Assessment and Authorization, threat modeling, offensive, attack vector, defense-in-depth, DevSecOps, DSO, CI/CD, Pipeline, Containerization, AWS Cloud, Kubernetes, MBSE, Attack Vector, Attack Surface, Resilience, Survivability

Required Education, Experience, & Skills

Required Education:

• Bachelor of Science degree in a Cyber, Systems, Software, Electrical, Mechanical or similarly related engineering/technical discipline, and 12 year(s) related experience or equivalent experience, training and/or certifications.

Required Skills:

• ISC2 CISSP or equivalent certification

• Strong engineering skills, interpersonal skills, and the ability to effectively build and lead teams

• Extensive experience with traditional A&A tools: ACAS Nessus, SCAP Scanner, STIG Viewer

• Demonstrated expertise in national Cybersecurity policies, DoD A&A processes and procedures and industry best practices on complex systems

• Expertise in vulnerability assessment, control allocation and risk mitigation

• US Citizen with an active Top Secret security clearance (ability to obtain TS/SCI)

Preferred Education, Experience, & Skills

• Other cyber certifications (CISSP-ISSAP, CISSP-ISSEP, CCSP, CEH, OSCP, etc.)

• Top Secret/SCI security clearance by the Federal Government

• Understanding of offensive security tactics, techniques and procedures

• Experience with Cyber Failure Mode, Effects, and Criticality Analysis (FMECA)

• Experience writing proposals with innovative cost-effective solutions

• Experience with Open Container Initiative (OCI) including Platform One, Iron Bank and Repo One

• Experience with offensive architecting, threat modeling and attack vector analysis

• Experience with cloud and cross domain solution accreditations

• Ability to negotiate effectively with higher level managers, functional managers, customers, industry partners, and teammates

• Demonstrated leadership skills (supervisory experience, building teams, building customer relationships)

• Ability to support proposal and cost activities

• Working knowledge of Earned Value Management System (EVMS) systems and Project management tools such as Cost Performance Index (CPI) and Integrated Master Schedule (IMS)

• Experience with leading and coordinating security test events to achieve accreditation milestones

• Experience with verifying and validating vulnerability resolutions and/or mitigations

• Experience with supporting proposal and cost estimate activities

• Experience with Attack and Threat modeling

• Strong mentoring skills

• Good planning and organizational skills

• Strong oral and written communications skills

Pay Information

Full-Time Salary Range: $126610 - $215270

Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience.

Employee Benefits: At BAE Systems, we support our employees in all aspects of their life, including their health and financial well-being. Regular employees scheduled to work 20 hours per week are offered: health, dental, and vision insurance; health savings accounts; a 401(k) savings plan; disability coverage; and life and accident insurance. We also have an employee assistance program, a legal plan, and other perks including discounts on things like home, auto, and pet insurance. Our leave programs include paid time off, paid holidays, as well as other types of leave, including paid parental, military, bereavement, and any applicable federal and state sick leave. Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards. Other incentives may be available based on position level and/or job specifics.

Senior Systems Engineer / Cyber Architect - Hybrid

104412BR

EEO Career Site Equal Opportunity Employer. Minorities . females . veterans . individuals with disabilities . sexual orientation . gender identity . gender expression