ISSM - Cybersecurity Senior Principal Analyst


Job Description
BAE Systems is seeking a senior Information System Security Manager (ISSM) to support the Air Force's Ground Based Strategic Deterrent (GBSD) program. This is a long-term sustainment and acquisition program which is anticipated to remain operational until 2075.

This position works with Information System Security Officers (ISSO), Program Managers (PM), and Authorizing Official (AO) representatives to obtain and maintain Authority to Operate (ATO) approvals for various ICBM weapon subsystems and supporting IT systems by adhering to the Risk Management Framework (RMF). This includes system categorization and control identification, implementation, and assessment. This position is responsible for cybersecurity efforts throughout the RMF for one or more assigned programs(s) to include the development of System Security Plans, resolution of Plans of Action and Milestones (POA&Ms), review of system audits, and monitoring of corrective actions.

This position provides the opportunity to exercise, develop, and hone communication, customer relationship, and leadership skills while working with a close-knit fun-loving team of other cybersecurity professionals.

The successful candidate will be energetic, self-motivated, and have the ability to adapt to a fast-paced environment with the desire to make a difference. Knowledge and experience working with the DoD's Cybersecurity processes, DIACAP and/or the Risk Management Framework (RMF) is required.

Responsibilities include:
  • Serves as cybersecurity technical advisor, consultant, and primary point of contact to the Authorizing Official (AO), Program Manager (PM), and Information System Owner (ISO)
  • Fulfills the ISSM responsibilities defined in DoD Instructions 8500.01 and 8510.01, AFI17-101 Risk Management Framework (RMF) for the Air Force Information Technology (IT), and the "DoD Program Manager's Guidebook for Integrating the Cybersecurity Risk Management Framework (RMF) into the System Acquisition Lifecycle"
  • Ensure cybersecurity is integrated throughout the lifecycle of IT systems; this includes the development and review of cybersecurity-related artifacts, including System Security Plans, Cyber Security Strategies, Cybersecurity Impact Assessments, policies, plans, and procedures
  • Perform or review Security Impact Assessments for configuration changes and facilitate approval or disapproval of changes with the AO and PM
  • Support, coordinate, and continuously monitor system security posture and ensure adverse events are formally handled and reported to the AO
This position requires an active final Secret clearance upon hire date. The clearance "investigation close date" must be within the last 6 calendar years from the hire date. The applicant must also be able to maintain their security clearance for the position. An active Top Secret clearance is preferred.

Recognized as a Top Workplace in Utah for three years in a row. Join an extraordinary company culture and the winning team to success this year and for years to come.

Required Education, Experience, & Skills
  • Previous experience as an ISSM using the RMF (or DIACAP) or experience as an ISSO and now ready to assume ISSM responsibilities.
  • CISSP or equivalent certification per DoD Directive 8570.1 or ability to obtain such within 6 months of being hired
  • Bachelor's Degree (typically Cybersecurity, Computer Science, Information Technologies, etc.) and 8 or more years cybersecurity or IT work experience (education requirement may be waived for equivalent experience)
  • Experience or knowledge of cybersecurity, networks, system components, system protocols, COTS technology, and software development
  • Experience developing external customer relationships and ability to communicate cybersecurity concepts and requirements with senior leaders
  • Effective organizational, time management, and communications skills (written and verbal)
  • This position requires an active final Secret clearance upon hire date. The clearance "investigation close date" must be within the last 6 calendar years from the hire date. The applicant must also be able to maintain their security clearance for the position.


Preferred Education, Experience, & Skills
  • 10+ years experience in Cybersecurity and/or Information Assurance; 6-8 years experience using RMF
  • Experience as ISSO/ISSM, cybersecurity assessments, and risk and control assessments
  • Bachelor's degree (or equivalent combination of education and experience) in Cybersecurity or Information Technology related fields
  • Although a Secret clearance is required, a Top Secret clearance is preferred.
  • ​​​General understanding of computer networks, hardware, databases, applications, security components, computer operations, and operating system maintenance
  • Understanding of the DoD environment and familiarity with the DoD Acquisition System
  • The ability to mediate differing perspectives and develop consensus relating to cybersecurity principles and regulations; ability to build bridges across organizational boundaries, and the ability to communicate with technical and non-technical leaders across large complex organizations
  • An individual with high integrity, strong work ethic and initiative, and capable of building strong, trusting relationships


About BAE Systems Intelligence & Security
BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it's what we do at BAE Systems. Working here means using your passion and ingenuity where it counts - defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team-making a big impact on a global scale. At BAE Systems, you'll find a rewarding career that truly makes a difference.

Intelligence & Security (I&S), based in McLean, Virginia, designs and delivers advanced defense, intelligence, and security solutions that support the important missions of our customers. Our pride and dedication shows in everything we do-from intelligence analysis, cyber operations and IT expertise to systems development, systems integration, and operations and maintenance services. Knowing that our work enables the U.S. military and government to recognize, manage and defeat threats inspires us to push ourselves and our technologies to new levels.

At BAE Systems, we celebrate the array of skills, experiences, and perspectives our employees bring to the table. For us, differences are a source of strength. We're laser-focused on high performance, and we work hard every day to nurture an inclusive culture where all employees can innovate and thrive. Here, you will not only build your career, but you will also enjoy work-life balance, uncover new experiences, and collaborate with passionate colleagues.