Cybersecurity Threat Investigator

BAE Systems•Merrimack, NH

7d•$132,962 - $226,035•Onsite

About The Position

In this Cybersecurity Threat Investigator opportunity you will make impacts in the following ways; Actively participate in the evaluation and recommendation of new cybersecurity investigative tools, automation activities, and security tools, techniques, and technologies to ensure they align with IT & Security’s strategy and modernization initiatives. Conduct various types of investigations including but not limited to mishandling of classified material, theft of property, vandalism, workplace violence and other investigations as required Multitask and oversee multiple investigations while collaborating across multiple functional and program teams. Write detailed reports for senior leaders as well as government partners detailing events and outcomes of investigative activities. Conduct trend analysis of investigations and outcomes Maintain databases associated with investigations, investigation lifecycle and disposition Partner with various U.S. Government agencies in counterintelligence investigations Adherence to all aspects of a rigorous Risk Managed Framework (RMF) compliance program as stipulated by NISPOM/DAAG, JSIG, ICD 503, STIGs and associated NIST publications. Advance standardization, automation, and resilience capabilities across the organization while aligning with business priorities and risk tolerance Travel to other BAE sites for major incident investigations as required (less than 10%) Liaison with Federal and Local Law Enforcement partners to include the FBI, Air Force OSI, NCIS, DoD, and intelligence agencies on matters related to investigations, counterintelligence, suspicious activity and potential threats to the security posture of the ES Sector

Requirements

IAM Level III certification commensurate with DoD 8570.1M requirements, and an active Secret Clearance
High level of personal motivation and initiative to learn and acquire new skills, and adapt seamlessly to an ever-changing security environment
Customer focused, excellent communicator and ability to work with limited supervision.
Strong organizational skills
Strong background in information technology with a clear understanding of the challenges of cybersecurity
Experience developing, implementing, updating and enforcing companywide information assurance policies and procedures
Implementation of Incident Response Plans and subsequent experience with addressing cyber related investigations/incidents.
Demonstrated experience in investigations, including investigation life cycle
Demonstrated ability to work across multiple organizations, agencies internally and externally
Experience working with U.S. Government agencies with oversight of Cleared Defense Contractors
Experience with database management of investigative files, employee investigative history, and chain of custody
Interpersonal, organizational, written and verbal communication skills
Familiarity with security management software, such as SIMS and government databases such as DISS (Defense Information Security System). Knowledge of business software: Excel, Word, PowerPoint, Office, etc.
Minumum of a High School Diploma

Nice To Haves

Bachelors Degree or above with a study inherent in a forensics relevant discipline
Previous counterintelligence background and/or law enforcement experience
Experience with forensic tools, multi-faceted investigations using unique tools
Extensive experience conducting interviews
Experienced knowledge of system functions, security policies, technical security safeguards, and operational security measures.
In-depth knowledge/expertise with one or more of the following tools: Splunk, Nessus, other Security Information and Event Management (SIEM) Tools
Experience with incident response plan development and implementation
Experience with overseeing accuracy and completion of investigative reports

Responsibilities

Actively participate in the evaluation and recommendation of new cybersecurity investigative tools, automation activities, and security tools, techniques, and technologies to ensure they align with IT & Security’s strategy and modernization initiatives.
Conduct various types of investigations including but not limited to mishandling of classified material, theft of property, vandalism, workplace violence and other investigations as required
Multitask and oversee multiple investigations while collaborating across multiple functional and program teams.
Write detailed reports for senior leaders as well as government partners detailing events and outcomes of investigative activities.
Conduct trend analysis of investigations and outcomes
Maintain databases associated with investigations, investigation lifecycle and disposition
Partner with various U.S. Government agencies in counterintelligence investigations
Adherence to all aspects of a rigorous Risk Managed Framework (RMF) compliance program as stipulated by NISPOM/DAAG, JSIG, ICD 503, STIGs and associated NIST publications.
Advance standardization, automation, and resilience capabilities across the organization while aligning with business priorities and risk tolerance
Travel to other BAE sites for major incident investigations as required (less than 10%)
Liaison with Federal and Local Law Enforcement partners to include the FBI, Air Force OSI, NCIS, DoD, and intelligence agencies on matters related to investigations, counterintelligence, suspicious activity and potential threats to the security posture of the ES Sector