IT Security Spec Sr Prin
Apply NowCompany: BAE Systems
Location: Sterling, VA 20164
Description:
Job Description
This BAE Systems program supports our federal customer who plays a key role in providing direct cybersecurity engineering support. This program provides systems and security engineering and integration support to specific Government-sponsored projects, pilots and prototypes. This includes solution planning and engineering, defining security requirements, target architecture, interoperability and integration, system testing, Verification and Validation, Modeling and Simulation, studies and analysis, post-deployment security validation (PDSV), and project risk management. As part of this team, you will contribute to the engineering of current and emerging cybersecurity systems, policies, and processes to enforce standards and identify vulnerabilities and capability gaps and reduce cybersecurity risk of our customer networks.
The ST&E team is expected to have knowledge and extensive experience in networking, systems management, programming and tool development, the UNIX (different variants) operating system, the Microsoft Windows (different variants) operating system, security analyst tools and techniques, and system design and architecture is necessary to identify required modifications, determine innovative solutions, and to recommend sound security measures.
**This position is eligible for maximum telework (>50%) for applicants residing in the National Capital Region (DC, MD, VA).**
**This position's office location can be either Sterling, VA, or Rockville, MD.**
Required Skills and Education
2 years experience performing source code analysis (Checknarx)
Experience in Red Team (preferable) or Blue Team penetration testing a MUST HAVE. At least three years within LINUX environment a MUST. Incumbent should have engineering management experience and be willing to manage.
Kali Linux + custom made tools/fuzzing (must have)
Metasploit
Burpsuite;
Nmap;
Wireshark;
Jenkins/CloudBees
GitHub
Artifactory
JIRA
Burp Suite Pro
Tenable Security Center
Nessus
Twistlock
Acunetix
Visual Studio
Eclipse
PyCharm
Core Impact
About BAE Systems Intelligence & Security
BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it's what we do at BAE Systems. Working here means using your passion and ingenuity where it counts - defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team-making a big impact on a global scale. At BAE Systems, you'll find a rewarding career that truly makes a difference.
Intelligence & Security (I&S), based in McLean, Virginia, designs and delivers advanced defense, intelligence, and security solutions that support the important missions of our customers. Our pride and dedication shows in everything we do-from intelligence analysis, cyber operations and IT expertise to systems development, systems integration, and operations and maintenance services. Knowing that our work enables the U.S. military and government to recognize, manage and defeat threats inspires us to push ourselves and our technologies to new levels.
Our Commitment to Diversity, Equity, and Inclusion:
At BAE Systems, we work hard every day to nurture an inclusive culture where employees are valued and feel like they belong. We are conscious of the need for all employees to see themselves reflected at every level of the company and know that in order to unlock the full potential of our workforce, everyone must feel confident being their best, most sincere self and be equipped to thrive. We provide impactful professional development experiences to our employees and invest in social impact partnerships to uplift communities and drive purposeful change. Here you will find significant opportunities to do meaningful work in an environment intentionally designed to be one where you will learn, grow and belong.
Preferred Skills and Education
Deep understanding of the methodology associated with penetration testing, such as creating Rules of Behavior, selection of pen testing team, and have a developed tool kit.
Cloud experience a plus! (AWS or Azure)
ANY OF THE BELOW CREDENTIALS ARE A PLUS!
Licensed Penetration Tester (LPT) Master
Offensive Security Certified Professional (OSCP)
Certified Ethical Hacker (CEH)
IACRB Certified Expert Penetration Tester (CEPT)
IACRB Certified Expert Penetration Tester (CPT)
Certified Red Team Operations Professional (CRTOP)
CompTIA's PenTest+
GIAC Exploit Researcher and Advanced Penetration Tester (GXPN); and/or
GIAC Penetration Tester (GPEN)
Hack the Box Certified Penetration Testing Specialist (CPTS)
EEO Career Site
Equal Opportunity Employer. Minorities . females . veterans . individuals with disabilities . sexual orientation . gender identity . gender expression
This BAE Systems program supports our federal customer who plays a key role in providing direct cybersecurity engineering support. This program provides systems and security engineering and integration support to specific Government-sponsored projects, pilots and prototypes. This includes solution planning and engineering, defining security requirements, target architecture, interoperability and integration, system testing, Verification and Validation, Modeling and Simulation, studies and analysis, post-deployment security validation (PDSV), and project risk management. As part of this team, you will contribute to the engineering of current and emerging cybersecurity systems, policies, and processes to enforce standards and identify vulnerabilities and capability gaps and reduce cybersecurity risk of our customer networks.
The ST&E team is expected to have knowledge and extensive experience in networking, systems management, programming and tool development, the UNIX (different variants) operating system, the Microsoft Windows (different variants) operating system, security analyst tools and techniques, and system design and architecture is necessary to identify required modifications, determine innovative solutions, and to recommend sound security measures.
**This position is eligible for maximum telework (>50%) for applicants residing in the National Capital Region (DC, MD, VA).**
**This position's office location can be either Sterling, VA, or Rockville, MD.**
Required Skills and Education
2 years experience performing source code analysis (Checknarx)
Experience in Red Team (preferable) or Blue Team penetration testing a MUST HAVE. At least three years within LINUX environment a MUST. Incumbent should have engineering management experience and be willing to manage.
Kali Linux + custom made tools/fuzzing (must have)
Metasploit
Burpsuite;
Nmap;
Wireshark;
Jenkins/CloudBees
GitHub
Artifactory
JIRA
Burp Suite Pro
Tenable Security Center
Nessus
Twistlock
Acunetix
Visual Studio
Eclipse
PyCharm
Core Impact
About BAE Systems Intelligence & Security
BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it's what we do at BAE Systems. Working here means using your passion and ingenuity where it counts - defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team-making a big impact on a global scale. At BAE Systems, you'll find a rewarding career that truly makes a difference.
Intelligence & Security (I&S), based in McLean, Virginia, designs and delivers advanced defense, intelligence, and security solutions that support the important missions of our customers. Our pride and dedication shows in everything we do-from intelligence analysis, cyber operations and IT expertise to systems development, systems integration, and operations and maintenance services. Knowing that our work enables the U.S. military and government to recognize, manage and defeat threats inspires us to push ourselves and our technologies to new levels.
Our Commitment to Diversity, Equity, and Inclusion:
At BAE Systems, we work hard every day to nurture an inclusive culture where employees are valued and feel like they belong. We are conscious of the need for all employees to see themselves reflected at every level of the company and know that in order to unlock the full potential of our workforce, everyone must feel confident being their best, most sincere self and be equipped to thrive. We provide impactful professional development experiences to our employees and invest in social impact partnerships to uplift communities and drive purposeful change. Here you will find significant opportunities to do meaningful work in an environment intentionally designed to be one where you will learn, grow and belong.
Preferred Skills and Education
Deep understanding of the methodology associated with penetration testing, such as creating Rules of Behavior, selection of pen testing team, and have a developed tool kit.
Cloud experience a plus! (AWS or Azure)
ANY OF THE BELOW CREDENTIALS ARE A PLUS!
Licensed Penetration Tester (LPT) Master
Offensive Security Certified Professional (OSCP)
Certified Ethical Hacker (CEH)
IACRB Certified Expert Penetration Tester (CEPT)
IACRB Certified Expert Penetration Tester (CPT)
Certified Red Team Operations Professional (CRTOP)
CompTIA's PenTest+
GIAC Exploit Researcher and Advanced Penetration Tester (GXPN); and/or
GIAC Penetration Tester (GPEN)
Hack the Box Certified Penetration Testing Specialist (CPTS)
EEO Career Site
Equal Opportunity Employer. Minorities . females . veterans . individuals with disabilities . sexual orientation . gender identity . gender expression