IT Security Spec Sr Prin II

Requisition Number

113565BR

What You'll Get to Do as a Security Engineer:

Design and specify the security architecture of a portfolio of services to support a broad range of customer needs, performance profiles, and data ranges.

Design and specify the security implementation for a multi-tenant development platform and automated delivery pipeline using a combination of AWS services, Serverless frameworks, Kubernetes and containerization approaches, and microservice design patterns.

Collaborate with customers and team members as part of an Agile lifecycle to gather, understand, and refine platform and application security requirements in accordance with DHS 4300a, RMF, and security best practices.

Oversee and design the hardening, security, and accreditation of a multitenant development platform and service portfolio.You’ll Bring These Qualifications:

BS degree with 5+ years of experience.

Must be a U.S. Citizen for a Public Trust clearance.

Independent with a mindset toward continuous learning, a drive for self-study and enrichment, and resourcefulness.

Strong communication skills and customer-facing level of polish.

Able to coordinate across multiple sets of enterprise- and C-level stakeholders to communicate solution design, security controls, and control implementations.

Coordinate RMF lifecycle activities and artifacts including PIA, PTA, ATO, and tabletop exercises

Able to mentor team members and set direction for security practices, technical scanning and assessments, and required technical expertise.

Able to collaborate with federal and contractor security staff to produce system security plan documentation, including specification and documentation of FISMA control implementations

Active CISSP, CEH, CCSP, or CISM certification

Job Posting Title

Security Engineer

Job Family

IT Security

Travel Percentage

<10%

Clearance Level – Must be able to obtain for position

Public Trust

Shift

1st Shift

Regular or Temporary

Regular

Typical Education and Experience

Typically a Bachelor's Degree and 10 years work experience or equivalent experience

Required Skills and Education

5+ Years of experience across the following:

Federal application security practices including OWASP, Zero-trust principles, encryption at rest and in transit

Bachelor's Degree

Certifications

Automated software delivery in a CI/CD environment using Jenkins, Gitlab CI, or similar

FISMA High security system controls and constraints

Full system accreditation using FISMA, RMF, NIST controls, DHS 4300a, and FedRAMP frameworks

Security considerations related to web application security, including CSRF, XSS, injection, and other attack mechanisms

Experience with the following technology domains in a production system environment:

One or more of: Kubernetes, AWS EKS, AWS Fargate, Red Hat OpenShift

One or more of: Serverless Framework deployed on AWS, AWS Lambda with AWS API Gateway

One or more of: Terraform, AWS CloudFormation

All of: Nessus, Fortify, AppDetective, Splunk

Preferred Skills and Education

AWS certified architect professional, AWS certified DevOps professional

Experience with OpenSCAP, DISA STIGs

About BAE Systems Intelligence & Security

BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it’s what we do at BAE Systems. Working here means using your passion and ingenuity where it counts – defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team—making a big impact on a global scale. At BAE Systems, you’ll find a rewarding career that truly makes a difference.

Intelligence & Security (I&S), based in McLean, Virginia, designs and delivers advanced defense, intelligence, and security solutions that support the important missions of our customers. Our pride and dedication shows in everything we do—from intelligence analysis, cyber operations and IT expertise to systems development, systems integration, and operations and maintenance services. Knowing that our work enables the U.S. military and government to recognize, manage and defeat threats inspires us to push ourselves and our technologies to new levels.

Our Commitment to Diversity, Equity, and Inclusion:

At BAE Systems, we work hard every day to nurture an inclusive culture where employees are valued and feel like they belong. We are conscious of the need for all employees to see themselves reflected at every level of the company and know that in order to unlock the full potential of our workforce, everyone must feel confident being their best, most sincere self and be equipped to thrive. We provide impactful professional development experiences to our employees and invest in social impact partnerships to uplift communities and drive purposeful change. Here you will find significant opportunities to do meaningful work in an environment intentionally designed to be one where you will learn, grow and belong.

Department

0FF006_Homeland FEMA

Company

TST_BAE Systems Tech Sols&Svcs Inc

Posting Requirements

Internal/External

Job Category

Other Professionals

U.S. Person Required

Yes

Business Area

Intelligence Solutions (I&S)

Salary Max Point

232210

Salary Min Point

136620

Union Job

None

Recruiter

Chase Phillips