Cybersecurity Analyst [REMOTE

Job Description
As a Cyber Analyst Senior Principal, you will play a critical role in driving internal cyber security reviews to support corporate-wide compliance initiatives. This opportunity is part of our Compliant Operations team.
In this role, you'll provide critical expertise in cybersecurity standards, cloud security, and risk mitigation, ensuring sustainable compliance across the organization. Your day-to-day will involve evaluating and validating compliant solutions, assessing and mitigating risks, and driving improvements in control management to protect our systems and data. By joining our team, you'll embark on a rewarding job that challenges you to make a tangible impact on our cyber security posture.
Position Responsibilities include, but not limited to:

• Lead internal cybersecurity IT design and artifact reviews to support corporate-wide Cyber Security compliance initiatives.
• Evaluate proposed solutions for IT deficiencies, verify, and validate final solution artifacts included in Sector information system/environment Plan of Action and Milestones (POAMs) and Return-to-Green (RTGs).
• Conduct reviews, evaluations, and provide input on proposed solutions and final artifacts to ensure adherence to key control domains based on BAE Systems Cyber Security Standards, policies, and directives at an enterprise level.
• Evaluate Exception requests to Policy/Standard IT Security (e.g., Blocked Sites, DVD, USB)
• Evaluate Internet-exposed Services/Certification & Accreditation (C&A) and Cloud Service Providers (CSP) requests
• Help define common workflows, automations, templates, inheritable cyber services, and execution of value streams that enable sustainable compliance across the enterprise.
• Assess the design and operational effectiveness of IT controls and identify exposure to risk.
• Facilitate compliance reviews to increase awareness and knowledge of compliance requirements and identify opportunities to streamline or improve the control environment without increasing overall risk.
• Communicate complex technical issues in simplified terms to relevant teams and stakeholders.
• Provide guidance to remediate identified security and control risks.
• Stay up to date with the latest industry trends in cybersecurity and apply them to the enterprise as applicable.

#LI-KK1
#LI-REMOTE
Required Education, Experience, & Skills

• Bachelor's Degree and 8 years work experience
• At least 8 years of experience in information technology auditing, combined audit/IT audit, or relevant information security or information technology roles, with a focus on cyber security standards, architecture requirements, and cybersecurity standards.
• Well-rounded IT audit experience with a strong understanding of information security frameworks and IT audit methodologies.
• Exception handling skills to manage and resolve complex IT and cybersecurity issues.
• Ability to synthesize complex information into actionable insights.
• Strong attention to detail with an analytical mind on IT processes and outstanding problem-solving skills.
• Expertise in cybersecurity standards, cloud security, and risk mitigation.
• Experience with continuous process improvement, innovative governance, risk and compliance solutions.
• Solid understanding of information security frameworks and IT audit methodologies.
• Proficient with a broad knowledge of IT operations and technologies such as Network Infrastructure technologies (WAN/MAN/LAN), Cybersecurity, Active Directory, Backup & Recovery, Data Center, Operating Systems, Virtualization Services, SDLC and Change Management.
• IT application experience (SAP, Oracle, PeopleSoft and Costpoint).
• 5 years of audit project management experience.
• Data Analysis experience, with the ability to apply analytical skills to drive insights and recommendations
• Understanding of industry standards including ISO27001, ISO 20K, NIST 800-53, 800-171

Preferred Education, Experience, & Skills

• Certified Information Systems Auditor (CISA)
• Certified Information Systems Security Professional (CISSP)
• Certified Information Security Manager (CISM)
• Certificate of Cloud Security Knowledge (CCSK)
• Experience with cloud security platforms, such as AWS.
• Experience with cybersecurity threat intelligence and incident response

Pay Information
Full-Time Salary Range: $108787 - $184937
Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience.
Employee Benefits: At BAE Systems, we support our employees in all aspects of their life, including their health and financial well-being. Regular employees scheduled to work 20+ hours per week are offered: health, dental, and vision insurance; health savings accounts; a 401(k) savings plan; disability coverage; and life and accident insurance. We also have an employee assistance program, a legal plan, and other perks including discounts on things like home, auto, and pet insurance. Our leave programs include paid time off, paid holidays, as well as other types of leave, including paid parental, military, bereavement, and any applicable federal and state sick leave. Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards. Other incentives may be available based on position level and/or job specifics.
About BAE Systems, Inc.
BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it's what we do at BAE Systems. Working here means using your passion and ingenuity where it counts - defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team-making a big impact on a global scale. At BAE Systems, you'll find a rewarding career that truly makes a difference.
This position will be posted for at least 5 calendar days. The posting will remain active until the position is filled, or a qualified pool of candidates is identified.