Cybersecurity SIEM Systems Engineer Job at BAE Systems USA in Hamilton
BAE Systems USA, Hamilton, VA, US
Job Description Join a Team that's Shaping the Future of Cybersecurity At BAE Systems, we're passionate about protecting people and organizations from cyber threats. As a Cybersecurity SIEM Systems Engineer, you'll play a critical role in supporting cybersecurity tools for all supported networks and environments. You'll work closely with stakeholders to develop, deploy, configure, operate, integrate, maintain, and support the suite of cybersecurity capabilities. This role offers a unique opportunity to work on complex cybersecurity projects, collaborate with a talented team, and contribute to the development of cutting-edge technologies. As a Cybersecurity SIEM Systems Engineer, you will be responsible for configuring, operating, maintaining, and supporting enhancements for SIEM tools to monitor, detect, and respond to threats on all supported networks and enclaves. You will ensure security events are securely collected, appropriately formatted, ingested, and retained in accordance with the Enterprise Logging Standard. Your key responsibilities will include integrating new data sources and retiring sources that are no longer required, developing custom integrations using scripting and Application Programming Interfaces (API), and performing data correlation, analysis, and reporting for all sensors and defense capabilities at an enterprise level. In this role, you will work on projects such as implementing security orchestration and automation in support of security operations, incorporating new analytics, machine learning, and generative AI capabilities, and monitoring event feeds for errors, outages, or degradations. Your expertise will help us develop and implement robust cybersecurity strategies, and your leadership skills will inspire and motivate our team to deliver exceptional results. Location:
- This candidate shall be located within 50 miles of Sterling, VA.
- #Castle-Net
- 6 years of experience with a bachelor s degree in computer science, Information Technology, Engineering, or related field.
- 10 years of experience without a bachelor s degree.
- Experience in managing cybersecurity services for networks and environments.
- Experience with Federal, DoD, Army, and specific statutory, regulatory, and mandated directives.
- DoDM 8140.03 (former DoD 8570.01-M) Level 2 Certification within six months of starting position
- ITIL v4 foundation within six months of starting position
- Strong understanding of security operations and SIEM tools and technologies
- Experience with incident response tools and technologies (e.g., SIEM, threat intelligence platforms)
- Strong analytical and problem-solving skills
- Configuration Management/Document Management
- Applies extensive expertise and has full knowledge of other related disciplines. Work is performed without appreciable direction.
- Exercises considerable latitude in determining objectives and approaches to assignment. May function in a project leadership role.
- Develops solutions to complex problems which require a high degree of ingenuity, creativity and innovativeness.
- Splunk Enterprise engineer, analyst, or similar certification
- AWS-SEC (AWS Certified Security - Specialty)
- MCASEA (Mobile Cloud Application Security Engineer Associate)
- GPEN (GIAC Certified Enterprise Defender)
- Experience with cloud-based solutions, including AWS, Azure, and/or Google Cloud.
- Experience with Configuration Management/Document Management.
- Opportunity to work with a dynamic team in a fast-paced environment.
- Professional development and growth opportunities.