Intermediate Cybersecurity Engineer

Job Description
BAE Systems, a top-ten prime contractor to the U.S. Department of Defense, enables the U.S. government to transform data into intelligence and provides engineering, integration and sustainment support for critical military platforms and systems. Intelligence & Security provides services and products to the Department of Defense, the government, federal law enforcement officials, and troops deployed around the world.
At BAE Systems, we promote a strong, collaborative culture and provide our employees with the tools, skills and training they need to succeed. We are all about trust, camaraderie and a shared ambition to lead the world in defense technologies and national security services. We offer flexible work environment to support the balance in your life and keep you performing at your best. Be a part of a company that is part of the community; driven to improve our future and protect our freedom.
We are seeking an experienced and motivated Cybersecurity Engineer to help protect and defend our NSS classified SIPRNET environment. As an Intermediate Cybersecurity Engineer, you will work alongside cybersecurity staff to monitor, detect, analyze, and respond to cyber threats targeting our Windows Server 2022 domain infrastructure and Windows 11 Enterprise workstations within a highly secure, classified network environment.This multi-faceted position combines cyber threat analysis, incident response, and vulnerability assessment responsibilities across our Cisco networking infrastructure, Palo Alto firewall, and enterprise security tools, offering excellent opportunities to develop expertise across multiple cybersecurity disciplines while supporting critical defense operations.
Required Education, Experience, & Skills

• Associate's degree in Cybersecurity, Computer Science, Information Technology, or related field and minimum 4 years of experience in cybersecurity, IT security, or related field, or equivalent military experience
• Current SECRET clearance
• Current CompTIA Security+ CE certification
• Basic cybersecurity certification (Network+, CySA+, or equivalent) demonstrating security analysis fundamentals
• Basic understanding of Windows Server 2016/2019/2022 domain environments and Active Directory administration
• Foundational knowledge of Windows 11 Enterprise management and security features
• Basic experience with SIEM platforms (Splunk preferred) or strong willingness to learn log analysis and correlation
• Understanding of network security principles with Cisco networking equipment (routers, switches, firewalls)
• Basic knowledge of vulnerability scanning concepts, preferably with Tenable Nessus or similar tools
• Familiarity with endpoint security solutions and malware detection/prevention systems with Trellix ENS/ESS or similar tools
• Understanding of incident response principles and digital forensics concepts in Windows environments
• Knowledge of basic STIG compliance requirements and DoD security baselines for Windows systems
• Basic understanding of NIST Cybersecurity Framework, DoD RMF, and SIPRNET connectivity requirements
• Familiarity with patch management processes and WSUS deployment concepts
• Strong analytical and critical thinking skills with attention to detail in log analysis and event correlation
• Excellent written and verbal communication skills for technical documentation and security briefings
• Ability to work both independently and collaboratively in high-pressure SOC environments
• Flexibility to work rotating shifts including evenings, weekends, and holidays as operational needs require

Preferred Education, Experience, & Skills

• Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or related field and minimum 2 years of experience in cybersecurity, IT security, or related field, or equivalent military experience
• Military experience in cybersecurity, signals intelligence, or communications fields (25B,35N, 17C, 35S)
• Advanced DoD 8570.01-M IAT Level II/III certification (GCIH, GCFA, CISSP)
• Advanced platform-specific certification (Splunk Power User, Admin), Cisco security certifications (CCNA Security, CyberOps), or Palo Alto certifications (PCNSA, PCCSA)
• Advanced GIAC certification (GSEC, GCIH,GCED, GNFA, GCFA) or incident response certification)
• 4 years of experience in SOC operations, incident response, or vulnerability management preferably with enterprise security tools
• Basic experience with Splunk Enterprise for log analysis, dashboard creation, andcorrelation rule development
• Exposure to Tenable Nessus or ACAS vulnerability scanning and results analysis
• Experience with Windows Server administration, Group Policy, and enterprise domain management
• Basic understanding of Cisco networking equipment configuration and log analysis (ISR,Catalyst switches)
• Experience with Palo Alto Networks firewall administration or similar next-generation firewall platforms
• Knowledge of Trellix (formerly McAfee) endpoint security products or similar EDR/EPP solutions
• Understanding of WSUS patch management and Windows update deployment in enterprise environments
• Basic scripting experience (PowerShell, Python, Bash) for security automation tasks
• Understanding of digital forensics tools and procedures (EnCase, FTK, Volatility, SANS SIFT)
• Experience with penetration testing tools (Metasploit, Burp Suite, Nmap) in controlled environments
• Basic understanding of network packet analysis using Wireshark for security investigations
• Exposure to DoD PKI implementation and certificate lifecycle management
• Previous experience supporting classified networks or SIPRNET connectivity requirements
• Understanding of CNSS policies and NSS classification handling procedures
• Experience with DISA STIG implementation and compliance validation tools
• Knowledge of regulatory compliance requirements (FISMA, NIST SP 800-53, DoD 8500 series)
• Experience with threat modeling and risk assessment methodologies for classified environments

Pay Information
Full-Time Salary Range: $77809 - $132275
Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience.
Employee Benefits: At BAE Systems, we support our employees in all aspects of their life, including their health and financial well-being. Regular employees scheduled to work 20+ hours per week are offered: health, dental, and vision insurance; health savings accounts; a 401(k) savings plan; disability coverage; and life and accident insurance. We also have an employee assistance program, a legal plan, and other perks including discounts on things like home, auto, and pet insurance. Our leave programs include paid time off, paid holidays, as well as other types of leave, including paid parental, military, bereavement, and any applicable federal and state sick leave. Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards. Other incentives may be available based on position level and/or job specifics.
About BAE Systems Intelligence & Security
BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it's what we do at BAE Systems. Working here means using your passion and ingenuity where it counts - defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team-making a big impact on a global scale. At BAE Systems, you'll find a rewarding career that truly makes a difference.
Intelligence & Security (I&S), based in McLean, Virginia, designs and delivers advanced defense, intelligence, and security solutions that support the important missions of our customers. Our pride and dedication shows in everything we do-from intelligence analysis, cyber operations and IT expertise to systems development, systems integration, and operations and maintenance services. Knowing that our work enables the U.S. military and government to recognize, manage and defeat threats inspires us to push ourselves and our technologies to new levels.
This position will be posted for at least 5 calendar days. The posting will remain active until the position is filled, or a qualified pool of candidates is identified.