Cybersecurity RMF SME

Company: BAE Systems Plc
Location: Albuquerque
Posted on: March 17, 2023

Job Description:

Job Description The Engineering, Development, Integration and Sustainment (EDIS) contract is for Contract Support Services (CSS) providing engineering, development, integration, test, and sustainment of the Research and Development Space and Missile Operations (RDSMO) program Ground System Enterprise (GSE) in support of the United States Space Force (USSF) and Space Systems Command (SSC to look at how to make the nation's national security space enterprise more resilient. The SSC Innovation and Prototyping Directorate (SSC/SZI) at Kirtland Air Force Base, NM, supports the USSF RDSMO program requirements. The SSC/SZI mission is to operate and sustain an affordable GSE for R&D and demonstration missions; to develop innovative solutions to reduce Operations & Maintenance costs; to provide a test bed to prove out emerging concepts; to build and support ground system instantiations, to integrate operational missions (major weapon systems) into the GSE, to integrate and sustain cyber defense, and to remain a viable choice for all new ground satellite operations command and control. In addition, SSC/SZI operates experimental and demonstration satellites, and fixed and mobile satellite ground systems. SSC/SZI provides a collaborative partnership between developmental, test and operational units to seamlessly develop and rapidly field new capabilities, standardize satellite operations and exploit core competencies/strengths. SSC/SZI coordinates with SSC/SDTF to support the SSC and EGS initiatives, as well as other Department of Defense (DoD) activities. As initial capabilities are demonstrated for operational missions, those capabilities are expected to transfer to operational sustainment processes, procedures, and funding lines. The SSC/SZI vision is to create an innovative and collaborative R&D/demo GSE for use in all USSF R&D/demo missions as well as all future operational ground programs under the EGS and SSC initiatives. SSC/SZI is the USSF focal point and center of expertise for DoD experimental and demonstration space and missile operations supporting space and missile R&D efforts and conducting space and missile Developmental Test and Evaluation (DT&E) and Initial Operational Test and Evaluation (IOT&E) activities. We are seeking a Risk Management Framework (RMF) subject matter expert to support our Space Systems Command (SSC) customer in Albuquerque, New Mexico. We want you to join our qualified and diverse team of professionals where you can apply your talents to take our team to new levels of performance. This position primarily supports collateral Top Secret and below programs performing all aspects of DoD RMF activities. The successful candidate possesses experience ranging from documenting, implementing, and assessing security controls to performing system monitoring and compliance assessment activities. We need a team player who enjoys expanding and sharing their knowledge and training others. You will be involved in all aspects of cybersecurity operations and will partner with program/site leads as well as government staff and mission partners to maintain an effective information security program. Job Duties/Responsibilities: * Lead and work as part of an integrated team to develop and maintain RMF body of evidence documentation (e.g., System Security Plan, Security Controls Traceability Matrix, Plan of Action and Milestones, etc.) using Enterprise Mission Assurance Support Service (eMASS) and/or Microsoft products such as Word, Excel, PowerPoint, and Visio * Maintain repositories of all body of evidence documentation for systems under your purview and ensure they are accessible only to properly authorized individuals * Develop and execute security control assessment procedures to verify conformance with control requirements as part of ongoing continuous monitoring and authorization assessment activities * Work in close coordination with system administrators and other cyber team members to ensure systems are operated, maintained, and disposed of in accordance with applicable security policies and procedures and notify the ISSO/ISSM when changes occur that might impact system authorization posture * Ensure all security-related vulnerabilities and deficiencies are documented in the Plan of Action and Milestones (POA&M) * Ensure the development and implementation of an effective information security education, training, and awareness program * Ensure configuration management policies and procedures for authorizing use of hardware/software on a system are followed and coordinate any additions, changes or modifications to hardware, software, or firmware with the ISSO/ISSM prior to the addition, change or modification Required Education, Experience, & Skills Required Experience: * Bachelor's degree in Computer Science, Cybersecurity or other related field and nine (9) years or more experience, or Master's degree and seven (7) years or more experience * Active Top Secret security clearance and ability to obtain SCI * Five (5) years of experience working in information assurance or cybersecurity roles supporting classified DoD environments * DoD 8570 IAM Level II or higher baseline certification (CISSP preferred) * Additional training and/or certifications may be required within 6 months of hire * Acceptable baseline certifications can be found at https://public.cyber.mil/cw/cwmp/dod-approved-8570-baseline-certifications/ * Strong working knowledge of NIST 800-53 controls and RMF * Experience analyzing and interpreting outputs of various endpoint security, vulnerability, and enumeration tools (e.g., Tenable Nessus, Security Center, SolarWinds, EndPoint Security Solutions, Vulnerator, SCAP Compliance Checker) Preferred Education, Experience, & Skills Required Experience: * Bachelor's degree in Computer Science, Cybersecurity or other related field and nine (9) years or more experience, or Master's degree and seven (7) years or more experience * Active Top Secret security clearance and ability to obtain SCI * Five (5) years of experience working in information assurance or cybersecurity roles supporting classified DoD environments * DoD 8570 IAM Level II or higher baseline certification (CISSP preferred) * Additional training and/or certifications may be required within 6 months of hire * Acceptable baseline certifications can be found at https://public.cyber.mil/cw/cwmp/dod-approved-8570-baseline-certifications/ * Strong working knowledge of NIST 800-53 controls and RMF * Experience analyzing and interpreting outputs of various endpoint security, vulnerability, and enumeration tools (e.g., Tenable Nessus, Security Center, SolarWinds, EndPoint Security Solutions, Vulnerator, SCAP Compliance Checker) About BAE Systems Intelligence & Security BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it's what we do at BAE Systems. Working here means using your passion and ingenuity where it counts - defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team-making a big impact on a global scale. At BAE Systems, you'll find a rewarding career that truly makes a difference. Intelligence & Security (I&S), based in McLean, Virginia, designs and delivers advanced defense, intelligence, and security solutions that support the important missions of our customers. Our pride and dedication shows in everything we do-from intelligence analysis, cyber operations and IT expertise to systems development, systems integration, and operations and maintenance services. Knowing that our work enables the U.S. military and government to recognize, manage and defeat threats inspires us to push ourselves and our technologies to new levels. Our Commitment to Diversity, Equity, and Inclusion: At BAE Systems, we work hard every day to nurture an inclusive culture where employees are valued and feel like they belong. We are conscious of the need for all employees to see themselves reflected at every level of the company and know that in order to unlock the full potential of our workforce, everyone must feel confident being their best, most sincere self and be equipped to thrive. We provide impactful professional development experiences to our employees and invest in social impact partnerships to uplift communities and drive purposeful change. Here you will find significant opportunities to do meaningful work in an environment intentionally designed to be one where you will learn, grow and belong.

Keywords: BAE Systems Plc, Albuquerque , Cybersecurity RMF SME, Other , Albuquerque, New Mexico