Lead Cyber Analyst (Onsite)

About the position

BAE Systems, one of the world's largest defense contractors and a stable Fortune 500 Company, is hiring a Lead Cyber Analyst for our chemical manufacturing facility in Radford, VA. The Cyber Analyst is responsible for working with cybersecurity professionals to operate network security tools on an Operational Technologies (OT) network and provide timely reporting and remediation of identified threats. Assess, configure, and operate the following capabilities: Network Management and Monitoring; Security Incident handling; Incident Management; Threat Analysis; Near Real Time Operations support; Cybersecurity Compliance tracking and reporting; Vulnerability Management; and Technical Services Delivery protections. As a cybersecurity analyst/technician of the Contractor Cyber Security Service Provider (CSSP) group this role will be key in providing Computer Network Defense (CND) of the Operations/Controls network. Performance in multiple areas of information security including computer network defense (CND), continuous monitoring and analysis, enterprise audit, security compliance, security event monitoring and analysis, data management, analytic rule development/adjustment, incident response and investigative support. Delivering technical security expertise in the operations and maintenance of an Operations CND system, dealing with events caused by internal and external factors and the related mitigation recommendations for issues caused by process, threat, and technology changes over time. Experience implementing system security requirements and controls in accordance with DFARS 252.204-7012, NIST SP 800-171, NIST SP 800-82, and NIST SP 800-53.

Responsibilities

• Operate network security tools on an Operational Technologies (OT) network.
• Provide timely reporting and remediation of identified threats.
• Assess, configure, and operate network management and monitoring capabilities.
• Handle security incidents and manage incident response.
• Conduct threat analysis and provide near real-time operations support.
• Track and report on cybersecurity compliance.
• Manage vulnerabilities and deliver technical services.

Requirements

• Bachelor's degree in a Computer Engineering related discipline with 2+ years' relevant experience in Cyber Assurance, Cyber Engineering, Cyber Analysis, Threat Hunting, or Forensic Analysis; OR Associate's degree in a Computer Engineering related discipline with 4+ years' relevant experience.
• Experience implementing system security requirements and controls.
• Demonstrated experience applying systems engineering skills to implement and maintain security requirements and controls.
• Exceptional verbal and written communication skills with strong interpersonal skills.
• One of the following certifications must be held: EC-Council Certified Ethical Hacker (CEH), CompTIA Cybersecurity Analyst (CySA+), CompTIA Security +, Cisco Certified Network Associate-Security (CCNA-Security), CompTIA Network +, ISA/IEC Cybersecurity Expert.

Nice-to-haves

• Incident Response experience.
• Enterprise audit aggregation, logging, and analysis experience (e.g., Cisco CyberVision, Security Onion, Tenable OT, Claroty).
• Network scanning experience (e.g., DISA ACAS, Nessus).
• Applying working knowledge and practical experience of Risk Management Framework or NIST Cybersecurity Framework.
• Manufacturing/Industry OT Network experience.
• Windows/Linux Administration or Group Policy/PAM experience.

Benefits

• Health, dental, and vision insurance.
• Health savings accounts.
• 401(k) savings plan.
• Disability coverage.
• Life and accident insurance.
• Employee assistance program.
• Legal plan.
• Discounts on home, auto, and pet insurance.
• Paid time off.
• Paid holidays.
• Paid parental leave.
• Paid military leave.
• Paid bereavement leave.
• Federal and state sick leave.
• Company recognition program.