Company Name:

BAE Systems


Endicott, NY

Approximate Salary:

Not Specified

Date Posted:

July 1, 2019

Cyber Security Systems Engineer

Job Description
Cyber Security Systems Engineer

You don't see it, but it's there. Our employees work on the world's most advanced electronics from saving emissions in the City of Lights to powering the Mars Rover to protecting the F-35 fighter jet. At Electronic Systems, you'll be among the brightest minds, working on the aerospace and defense industry's most difficult problems. Drawing strength from our differences, we're innovating for the future. And you can, too.
Our flexible work environment provides you a chance to change the world without giving up your personal life. We put our customers first exemplified by our missions: We Protect Those Who Protect Us and We Innovate For Those Who Move The WorldTM. Sound like a team you want to be a part of? Come build your career with us.
Engineers at our Endicott NY location support the following two Business Area's
Controls & Avionics Solutions (CAS):
In Controls & Avionics Solutions, you will have the opportunity to help define and develop the next generation of avionics whether it is fly-by-wire flight controls, full authority digital engine controls, or power management.

Power & Propulsion Solutions (PPS):
In Power & Propulsion Solutions, we're involved with everything from providing efficient, power management on military vehicles to developing eco-friendly, hybrid and electric systems for the commercial world. Be part of a team that is helping to keep the air we breathe much cleaner.


BAE Systems is looking for a Cyber Security/Information Assurance Engineer. The qualified candidate will be working on the security engineering team supporting engineering activities in a rapid development environment to support the specification, development, and application of computer security technologies, cyber security and information assurance management techniques to DoD and Intelligence Community systems.

Keywords: Cyber, security, vulnerability, STIG, RMF, Risk Management Framework, A&A, Assessment and Authorization

Tasks may include:

  • Conducting system patching and hardening activities
  • Supporting Assessment and Authorization (A&A) activities for DoD and Intelligence Systems in accordance with Risk Management Framework and ICD-503 guidelines
  • Supporting the development of system security plans including, security concepts of operation, risk management matrix, security control traceability matrix, security test procedures, and plan of action and milestones
  • Conducting vulnerability scans, static code scans and dynamic code scans to detect software vulnerabilities
  • Conducting vulnerability assessments to validate system compliance with DISA Security Technical Information Guidelines (STIGS)
  • Supporting security test events to achieve accreditation milestones
This position may require business travel to customer locations in support of product demonstrations, software installation, and system testing.

Typical Education & Experience
Typically a Bachelor's Degree and 4 years work experience or equivalent experience

Required Skills and Education
Required Skills
  • US Citizenship and ability to be granted a security clearance by the Federal Government
  • Bachelor's, Master's, or PhD Degree in Computer Engineering, Electrical Engineering, Computer Science, Information Technology or other related technical field

Preferred Skills and Education

Preferred Education and Experience
  • Bachelor's, Master's, or PhD Degree in Computer Engineering, Electrical Engineering, Computer Science, Information Technology or other related technical field
  • BS with 7+ Years of Experience, MS/PhD with 5+ Years' Experienc
Experience in any the following areas are a plus
  • CompTIA Security+ certification or equivalent certification
  • Understanding of national Cybersecurity policies, IA standard security principles, standards and industry best practices
  • Experience in vulnerability assessment, control allocation, and risk mitigation
  • Experience in DoD or Intelligence Community A&A processes, procedures, and artifacts
  • Experience with DISA STIGs and/or IAVA compliance hardening
  • Experience with traditional A&A tools: ACAS Nessus, HBSS, Xacta, eMASS, STIG Viewer
  • Ability to assist with other traditional systems engineering tasks such as CONOPS, requirements, and system level testing
  • Technical documentation development
  • Team player with a proactive attitude and the ability to be productive in a dynamic/collaborative environment
  • Strong oral and written communications skills
  • Motivated self-starter with good problem solving skills, judgment, and analytical capability
  • ISC2 CISSP certification or equivalent certification
  • Experience with static and dynamic code analyzers
  • Understanding of offensive security principles
  • Leadership and mentoring skills
  • Planning and organization skills
  • Cyber Security for Embedded Systems
  • Experience in a Safety Critical or Functional Safety Real Time Embedded Electronics Industry such as:
    • Aerospace, Military, Medical, Automotive, Industrial / Energy / Nuclear, Internet of Things (IoT)
  • Experience with Safety Critical or Functional Safety industry standards such as:
    • DO-178B, DO-178C, IEC 62304, IEC 62368, IEC 61508, ISO 26262

About BAE Systems Electronic Systems
BAE Systems Electronic Systems is the global innovator behind game-changing defense and commercial electronics. Exploiting every electron, we push the limits of what is possible, giving our customers the edge and our employees opportunities to change the world. Our products and capabilities can be found everywhere from the depths of the ocean to the far reaches of space. At our core are more than 14,000 highly talented Electronic Systems employees with the brightest minds in the industry, we make an impact for our customers and the communities we serve.

Apply Now