Job Information
BAE Systems Senior Information Systems Security Officer (ISSO) in Sterling, Virginia
Job Description
This BAE Systems program supports our federal customer who plays a key role in providing direct cybersecurity engineering support. This program provides systems and security engineering and integration support to specific Government-sponsored projects, pilots and prototypes. This includes solution planning and engineering, defining security requirements, target architecture, interoperability and integration, system testing, Verification and Validation, Modeling and Simulation, studies and analysis, post-deployment security validation (PDSV), and project risk management. As part of this effort, you will serve as an Information Systems Security Officer who will support the Agile Release Trains (ART) in defining security requirements, translating RMF related governance and policies as well as supporting the reduction of cybersecurity risks to our customer's environments.
As an Information Systems Security Officer (ISSO), your responsibilities will include:
Managing all aspects of an organization's information security system, for classified and unclassified systems, including researching, testing, training and implementing programs designed to safeguard sensitive information from any possible breaches.
Understanding the Risk Management Framework (RMF), and how risk management is executed, what risk means, and how to analyze it.
Spearheading Authority to Operate (ATO) and/or Authority to Proceed (ATP) efforts while making independent recommendations to Government Leads during these processes.
Conducting risk analysis from vulnerability and compliance scans, pen testing results, or other audit activity.
Creating written works to include but not limited to Plan of Action and Milestones, System Security Plans, System Specific Policies and Procedures, Configuration Management Plans, Contingency Plans and Test Results, Business Impact Analyses, and Security Impact Analyses.
Participating in Agile Planning Events to provide technical input.
* This position can be based out of Sterling, VA, Rockville, MD, or Pensacola, FL. This position is eligible for maximum telework (>50%). *
Required Education, Experience, & Skills
Bachelor's Degree and 7 years work experience or equivalent experience
Or 10 years related work experience, to include:
Experience executing the NIST Risk Management Framework
Documenting System Security Plans to include security control implementation statements
Supporting the security assessment and authorization (or ATO) process
Analyze testing results from scans, audits, penetration tests, or other test efforts to determine risk levels
Continuous Monitoring and maintaining the security posture of IT systems
Preferred Education, Experience, & Skills
Preferred Education, Experience, & Skills:
Cyber program experience within federal customer space a plus!
Certifications such as CISSP, CCSP, AWS Certified Cloud Practitioner, CISA, CAP highly desired
Pay Information
Full-Time Salary Range: $126610 - $215270
Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience.
Employee Benefits: At BAE Systems, we support our employees in all aspects of their life, including their health and financial well-being. Regular employees scheduled to work 20 hours per week are offered: health, dental, and vision insurance; health savings accounts; a 401(k) savings plan; disability coverage; and life and accident insurance. We also have an employee assistance program, a legal plan, and other perks including discounts on things like home, auto, and pet insurance. Our leave programs include paid time off, paid holidays, as well as other types of leave, including paid parental, military, bereavement, and any applicable federal and state sick leave. Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards. Other incentives may be available based on position level and/or job specifics.
Senior Information Systems Security Officer (ISSO)
106454BR
EEO Career Site Equal Opportunity Employer. Minorities . females . veterans . individuals with disabilities . sexual orientation . gender identity . gender expression