Information Assurance / Cybersecurity Analyst

Job Description
BAE Systems is seeking an experienced Information Assurance / Cybersecurity Analyst to support our work as a prime contractor on a high-profile U.S. Navy weapon system. Accuracy, integrity, subject matter expertise, and the ability to work well independently and with others are important traits we expect the successful candidate to possess and demonstrate.
This position is responsible for providing Information Assurance, Cybersecurity, and Information Management to the Navy's Strategic Systems Program Command Information Officer (CIO). This is a hybrid position that requires being on-site at Washington Navy Yard a minimum of three days per week. Tuesday and Wednesday collaboration days are uniform across the business and the third day is flexible as discussed with your manager.
As a decades long sole source partner on multiple contracts on behalf of our customer, our program has remarkable stability and is concurrently experiencing significant growth. Combined, these factors provide ample opportunity for professional growth and development for capable and talented individuals on our team.
About the program
Our organization has supported the U.S. Navy's Strategic Systems Program (SSP) continually since the program's inception in the 1950s. SSP developed the first sea-based, underwater-launched Strategic Weapon System (SWS), a defense system that is truly critical to our national security. For more than six decades, SSP has maintained and upgraded this weapon system and we have been there every step of the way. The sea-based SWS is the ultimate stealthy weapon system and as the first leg of the U.S. nuclear triad. With over 70% of our nation's nuclear arsenal its importance to maintaining world peace cannot be overstated. The development of Columbia, the most advanced nuclear-powered, nuclear-armed submarine ever designed, as well the next D5LE2 weapon system is under way and will begin to be rolled out over the next decade. The Navy projects this system to be operational through 2084, meaning the program will have a total life span of more than 120 years. This is a truly unique program and BAE Systems employees on this program understand they are part of an important legacy.
Position Description and Responsibilities:
As an Information Assurance / Cybersecurity Analyst, you will assist in conducting internal audits of enterprise IT networks, systems, applications, and security tools to ensure they adhere to Navy and DoD security policies and procedures (e.g., STIGs, CTOs, IAVMs, FRAGOs, NTDs, etc.) and applicable frameworks and regulations (e.g., NIST,FISMA, etc.). You will review DoD, DON cyber security alerts, notices, IAVMs, etc., and conduct risk assessments and discuss mitigation strategies when needed. You will review security and data/logs to respond to security incidents on SSP Enterprise systems and support the IAM/ISSM in developing Cybersecurity standards and policies. In addition, you will maintain the SSP Enterprise systems Assessment and Authorization (A&A) packages; topologies; ports, protocol, and services lists; contingency plans, disaster recovery procedures, incident response plans, and POA&Ms. As a subject matter expert, you will provide technical guidance to the IAM/ISSM, CIO, Cybersecurity Workgroup (CSWG), Program Managers (PMs), Program Management Officers (PMOs), FBM Partners, etc. on cybersecurity matters and initiatives, including researching new technologies to counter evolving threats.
Required Education, Experience, & Skills
Required Education, Experience & Skills:

• Twelve years of related professional work experience in lieu of a degree. Or, a Bachelor's degree in Cyber Security, Information Systems, Computer Science, Mathematics or related field with at least 6 years of professional work related experience.
• An Active DoD Secret clearance and ability to obtain and maintain a Tops Secret clearance.
• An IAM Level II certification as specified in the DoD 8570.
  • Or, have a SECNAV 5239 qualifying degree AND meet the requirements for an IAM II as specified in the DoD 8570 within 6 months of start date.
• Ability to obtain and maintain Common Access Card (CAC) along with badge access to the customer's facility.
• Ability to obtain and maintain a network account in good standing on the customer's network.
• Hands on working knowledge of Risk Management Framework.
• Experience preparing and reviewing RMF packages.
• Experience with information security configuration guides or DISA STIGs.
• At least three (3) years-experience supporting and/or maintaining information security technologies.
• Experience developing policies, procedures, and technical training materials.

Technical knowledge and proficiency

• Proficiency in discerning the protection needs (i.e., security controls) of information systems and networks.
• Proficiency in evaluating test plans for applicability and completeness.
• Proficiency in assessing security controls based on cybersecurity principles and tenets. (e.g.,CNSSI No. 1253, NISTSP 800-53).
• Proficiency in performing impact/risk assessments.
• Proficiency in interpreting vulnerability scanner results to identify vulnerabilities.
• Proficiency in managing client relationships, including determining client needs/requirements, managing client expectations, and demonstrating commitment to delivering quality results.
• Knowledge of cyber defense and vulnerability assessment tools and their capabilities.
• Knowledge of vulnerability information dissemination sources (e.g., alerts, advisories, errata, and bulletins).
• Knowledge and understanding of security technologies including vulnerability scanning (ACAS), firewalls, HBSS and data protection/encryption systems.
• Knowledge of information technology (IT) security principles and methods (e.g., firewalls, demilitarized zones, encryption).
• Knowledge of capabilities and applications of network equipment including routers, switches, bridges, servers, transmission media, and related hardware.
• Knowledge of business continuity and disaster recovery continuity of operations plans

Communication

• Ability to communicate effectively both orally and in writing.
• Good writing skills to document procedures, create reports, and reply to correspondence; ability to prepare and present cogent briefings.
• Excellent interpersonal skills used when interfacing, coordinating, and negotiating with colleagues, auditors, customers and vendors.

Professionalism

• Self-motivation and ability to work independently.
• Ability to exercise discretion and independent judgment and make sound decisions while complying with policies, procedures, appropriate principles and applicable state and federal laws and regulations.
• Good planning, time management and organization skills.

Pay Information
Full-Time Salary Range: $115779 - $196825
Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience.
Employee Benefits: At BAE Systems, we support our employees in all aspects of their life, including their health and financial well-being. Regular employees scheduled to work 20+ hours per week are offered: health, dental, and vision insurance; health savings accounts; a 401(k) savings plan; disability coverage; and life and accident insurance. We also have an employee assistance program, a legal plan, and other perks including discounts on things like home, auto, and pet insurance. Our leave programs include paid time off, paid holidays, as well as other types of leave, including paid parental, military, bereavement, and any applicable federal and state sick leave. Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards. Other incentives may be available based on position level and/or job specifics.
About BAE Systems Intelligence & Security
BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it's what we do at BAE Systems. Working here means using your passion and ingenuity where it counts - defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team-making a big impact on a global scale. At BAE Systems, you'll find a rewarding career that truly makes a difference.
Intelligence & Security (I&S), based in McLean, Virginia, designs and delivers advanced defense, intelligence, and security solutions that support the important missions of our customers. Our pride and dedication shows in everything we do-from intelligence analysis, cyber operations and IT expertise to systems development, systems integration, and operations and maintenance services. Knowing that our work enables the U.S. military and government to recognize, manage and defeat threats inspires us to push ourselves and our technologies to new levels.
Our Commitment to Diversity, Equity, and Inclusion:
At BAE Systems, we work hard every day to nurture an inclusive culture where employees are valued and feel like they belong. We are conscious of the need for all employees to see themselves reflected at every level of the company and know that in order to unlock the full potential of our workforce, everyone must feel confident being their best, most sincere self and be equipped to thrive. We provide impactful professional development experiences to our employees and invest in social impact partnerships to uplift communities and drive purposeful change. Here you will find significant opportunities to do meaningful work in an environment intentionally designed to be one where you will learn, grow and belong.