BAE Systems is expanding our cybersecurity team to build and sustain a mission-focused solution for a restricted Intelligence Community customer. As our Senior SOC Analyst and Penetration Tester, you’ll play a pivotal role in shaping this new capability. You’ll anticipate threats, think like a determined and well-equipped adversary, and deliver expert mitigation strategies to ensure the system’s continued security and resilience. If youre driven, have something to prove, and thrive in high-stakes environments, we want you to help us outsmart emerging threats and harden our defenses. The ideal candidate will have hands-on experience in penetration testing and a strong grasp of both cloud and traditional network security. This position reports directly to the Program Manager and works closely with junior analysts to help grow their skills.

Key Responsibilities:

• Perform offensive penetration testing on a variety of systems, including cloud environments (primarily AWS, but also Azure, Google, Oracle) and traditional network/system security (Cisco networking, Windows, RHEL, etc.).
• Identify and exploit potential vulnerabilities across systems and infrastructure, using both overt and covert methods.
• Provide clear, actionable recommendations for mitigating identified risks.
• Communicate complex technical findings to senior management, translating risks and mitigation strategies into terms that are easily understood and provide a compelling case for the necessary investment to mitigate the identified threats.
• Coach junior SOC analysts and provide guidance on security response and mitigation techniques for real-world or simulated attacks.
• Proactively research and maintain situational awareness of the most common and emerging threat sets relevant to DoD and IC customers and discern which threats pose the greatest risk to our platform based on a deep understanding of customer mission use cases.
• Collaborate closely with the customer’s cybersecurity team to develop and deliver briefings that outline emerging threats, their potential impact, and recommended mitigation strategies.
• Design, implement, and manage security monitoring and detection tools, such as SIEM systems, to ensure comprehensive visibility into security events and threats.
• Develop, implement, and maintain incident response plans, procedures, and playbooks to ensure effective and efficient response to security incidents.
• Analyze and correlate security event data from various sources, including logs, network traffic, and threat intelligence feeds, to identify potential security threats and incidents.
• Manage and prioritize multiple projects and tasks simultaneously, including penetration testing engagements and SOC operations, to meet organizational objectives.

Qualifications:

• 10+ years of total experience in cybersecurity, with at least 5 years directly focused on penetration testing.

• Experience with DoD environments is required, with IC-specific experience highly desired.

• Strong experience in both cloud security (AWS, Azure, Google, Oracle) and traditional network/system security (Cisco networking, Windows, RHEL).

• Proven ability to explain complex technical risks to non-technical management in a clear and concise manner.

• Ability to think like a nation-state threat actor and proactively test and exploit vulnerabilities in the system.

• Ability to coach and mentor junior staff, particularly in the context of real-world threat simulation.

Required Certifications:

• OSCP (Offensive Security Certified Professional)

• GIAC Penetration Tester (GPEN)

Desired Certifications:

• OSCE (Offensive Security Certified Expert)

• Certified Red Team Professional (CRTP)