Job Description
BAE Systems, a topten prime contractor to the U.S. Department of Defense, enables the U.S. government to transform data into intelligence and provides engineering, integration and sustainment support for critical military platforms and systems. Intelligence & Security provides services and products to the Department of Defense, the government, federal law enforcement officials, and troops deployed around the world.
At BAE Systems, we promote a strong, collaborative culture and provide our employees with the tools, skills and training they need to succeed. We are all about trust, camaraderie and a shared ambition to lead the world in defense technologies and national security services. We offer flexible work environment to support the balance in your life and keep you performing at your best. Be a part of a company that is part of the community; driven to improve our future and protect our freedom.
We are seeking an experienced and motivated Information Systems Security Officer (ISSO) to protect and defend our NSS classified SIPRNET environment. As an Information Systems Security Officer (ISSO), you will work alongside senior security leadership and SOC analysts to implement the Risk Management Framework, manage system security plans, coordinate vulnerability management, and provide strategic guidance on resource acquisition, risklevel advisory, securityarchitecture input, and policy governance. This multifaceted position combines programlevel security strategy, compliance oversight, incidentresponse coordination, and handson security operations across our Windows Server2022 domain infrastructure, Windows11 Enterprise workstations, Cisco networking equipment, Palo Alto firewalls, and enterprise security tools, offering excellent opportunities to develop expertise across multiple cybersecurity disciplines while supporting critical defense operations.
Required Education, Experience, & Skills
Associate's degree in Cybersecurity, Computer Science, Information Technology, or related field and minimum 4 years of experience in cybersecurity, IT security, or related field, or equivalent military experience
Current SECRET clearance
Current CompTIA Security CE certification (minimum)
DoD 8570.01M IAT Level II/III certification (CISSP, CISM, GCIH, GCFA, or equivalent)
Advanced platformspecific certification (Splunk Power User/Admin, Cisco CCNA Security/CyberOps, Palo Alto PCNSA/PCCSA) or demonstrated willingness to acquire
Basic understanding of Windows Server 2016/2019/2022 domain environments and Active Directory administration
Foundational knowledge of Windows 11 Enterprise management and security features
Basic experience with SIEM platforms (Splunk preferred) or strong willingness to learn log analysis and correlation
Understanding of network security principles with Cisco networking equipment (routers, switches, firewalls)
Basic knowledge of vulnerability scanning concepts, preferably with Tenable Nessus or similar tools
Familiarity with endpoint security solutions and malware detection/prevention systems with Trellix ENS/ESS or similar tools
Understanding of incident response principles and digital forensics concepts in Windows environments
Knowledge of basic STIG compliance requirements and DoD security baselines for Windows systems
Basic understanding of NIST Cybersecurity Framework, DoD RMF, and SIPRNET connectivity requirements
Familiarity with patch management processes and WSUS deployment concepts
Strong analytical and critical thinking skills with attention to detail in log analysis and event correlation
Excellent written and verbal communication skills for technical documentation and security briefings
Ability to work both independently and collaboratively in highpressure SOC environments
Flexibility to work rotating shifts including evenings, weekends, and holidays as operational needs require
Preferred Education, Experience, & Skills
Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field and minimum 2 years of experience in cybersecurity, IT security, or related field, or equivalent military experience
Military experience in cybersecurity, signals intelligence, or communications fields (25B,35N, 17C, 35S)
Advanced DoD 8570.01M IAT Level III certification (CISSP concentrations, GSEC, GCIH, GCFA) or equivalent
Advanced platformspecific certification (Splunk Power User/Admin, Cisco CCNP Security, Palo Alto PCNSE) or equivalent
4 years of experience in SOC operations, incident response, or vulnerability management preferably with enterprise security tools
Experience with Splunk Enterprise for log analysis, dashboard creation, and correlation rule development
Exposure to Tenable Nessus or ACAS vulnerability scanning and results analysis
Experience with Windows Server administration, Group Policy, and enterprise domain management
Experience with Palo Alto Networks firewall administration or similar nextgeneration firewall platforms
Knowledge of Trellix (formerly McAfee) endpoint security products or similar EDR/EPP solutions
Understanding of WSUS patch management and Windows update deployment in enterprise environments
Scripting experience (PowerShell, Python, Bash) for security automation tasks
Understanding of digital forensics tools and procedures (EnCase, FTK, Volatility, SANS SIFT)
Experience with penetration testing tools (Metasploit, Burp Suite, Nmap) in controlled environments
Understanding of network packet analysis using Wireshark for security investigations
Exposure to DoD PKI implementation and certificate lifecycle management
Previous experience supporting classified networks or SIPRNET connectivity requirements
Understanding of CNSS policies and NSS classification handling procedures
Experience with DISA STIG implementation and compliance validation tools
Knowledge of regulatory compliance requirements (FISMA, NIST SP 80053, DoD 8500 series)
Experience with threat modeling and risk assessment methodologies for classified environments
Pay Information
Full-Time Salary Range: $79365 - $134921
Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience.
Employee Benefits: At BAE Systems, we support our employees in all aspects of their life, including their health and financial well-being. Regular employees scheduled to work 20 hours per week are offered: health, dental, and vision insurance; health savings accounts; a 401(k) savings plan; disability coverage; and life and accident insurance. We also have an employee assistance program, a legal plan, and other perks including discounts on things like home, auto, and pet insurance. Our leave programs include paid time off, paid holidays, as well as other types of leave, including paid parental, military, bereavement, and any applicable federal and state sick leave. Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards. Other incentives may be available based on position level and/or job specifics.
Information Systems Security Officer (ISSO)
123534BR
EEO Career Site Equal Opportunity Employer. Minorities . females . veterans . individuals with disabilities . sexual orientation . gender identity . gender expression
