Cybersecurity Analyst

Cybersecurity Analyst at BAE Systems USA

Lensa promotes jobs on behalf of its direct clients. This job is promoted for BAE Systems USA. As a Cybersecurity Analyst, you will play a critical role in driving internal cybersecurity reviews to support corporate-wide compliance initiatives, as part of our Compliant Operations team.

In this role, you'll provide critical expertise in cybersecurity standards, cloud security, and risk mitigation, ensuring sustainable compliance across the organization. Your day-to-day will involve evaluating and validating compliant solutions, assessing and mitigating risks, and driving improvements in control management to protect our systems and data. By joining our team, you'll embark on a rewarding job that challenges you to make a tangible impact on our cyber security posture.

Position Responsibilities

• Lead internal cybersecurity IT design and artifact reviews for corporate-wide Cyber Security compliance.
• Evaluate proposed solutions for IT deficiencies, verify, and validate final solution artifacts in POAMs and RTGs.
• Conduct reviews and provide input on proposed solutions and final artifacts to ensure adherence to BAE Systems Cyber Security Standards.
• Evaluate Exception requests to Policy/Standard IT Security (e.g., Blocked Sites, DVD, USB).
• Evaluate Internet-exposed Services/Certification & Accreditation (C&A) and Cloud Service Providers (CSP) requests.
• Help define common workflows, automations, templates, and inheritable cyber services for sustainable compliance.
• Assess the design and operational effectiveness of IT controls and identify exposure to risk.
• Facilitate compliance reviews to increase awareness and identify opportunities to streamline or improve the control environment.
• Communicate complex technical issues in simplified terms to relevant teams and stakeholders.
• Provide guidance to remediate identified security and control risks.
• Stay up to date with the latest industry trends in cybersecurity and apply them to the enterprise.

Required Qualifications

• Bachelor's Degree and 8 years work experience.
• At least 8 years in IT auditing, information security, or IT roles focusing on cybersecurity standards, architecture, and risk.
• Well-rounded IT audit experience with strong understanding of information security frameworks and IT audit methodologies.
• Exception handling skills to manage and resolve complex IT and cybersecurity issues.
• Ability to synthesize complex information into actionable insights.
• Strong attention to detail, analytical mind on IT processes, and outstanding problem-solving skills.
• Expertise in cybersecurity standards, cloud security, and risk mitigation.
• Experience with continuous process improvement, innovative governance, risk and compliance solutions.
• Proficient with broad knowledge of IT operations and technologies (Network Infrastructure, Cybersecurity, Active Directory, Backup & Recovery, Data Center, Operating Systems, Virtualization Services, SDLC and Change Management).
• IT application experience (SAP, Oracle, PeopleSoft and Costpoint).
• 5 years of audit project management experience.
• Data Analysis experience, with the ability to apply analytical skills to drive insights and recommendations.
• Understanding of industry standards including ISO27001, ISO 20K, NIST 800-53, 800-171.

Preferred Qualifications

• Certified Information Systems Auditor (CISA).
• Certified Information Systems Security Professional (CISSP).
• Certified Information Security Manager (CISM).
• Certificate of Cloud Security Knowledge (CCSK).
• Experience with cloud security platforms, such as AWS.
• Experience with cybersecurity threat intelligence and incident response.

Pay Information

Full-Time Salary Range: $108,787 - $184,937. Individual salaries are determined by various factors including business considerations, local market conditions, internal equity, and candidate qualifications.

Employee Benefits

BAE Systems supports employees with health, dental, vision, health savings accounts, 401(k), disability, and life insurance. Perks include an employee assistance program, legal plan, and discounts. Leave programs include paid time off, holidays, parental, military, and sick leave. Employees may participate in recognition programs; other incentives may be available.

Key skills/competency

• Cybersecurity Compliance
• Risk Mitigation
• IT Audit
• Cloud Security
• Information Security Frameworks
• Network Infrastructure
• Data Analysis
• Project Management
• NIST 800-53
• ISO27001