Senior/Intermediate/Junior Computer Network Defense




Computer Network Defense (CND) Engineer responsible for technical security implementation supporting a large customer on a new long term contract. Multiple positions are available. This is a rare career-making and learning opportunity for the right person—a make-a-difference role with a large impact on National Security.

Responsibilities include:

  • Performance in multiple areas of information security including CND requirements analysis, engineering, enterprise audit implementation, enterprise security compliance, secure network audit configuration, Windows server and workstation operating systems audit, secure audit data management, security event management implementation, archival, and analytic rules development
  • Deliver technical security expertise in initially implementing an enterprise class CND system, dealing with changes caused by internal and external factors and in developing solutions and recommendations for issues caused by process, threat and technology changes over time
  • Act as trusted security engineering adviser to senior leadership with extensive evidence of ability to provide strategic direction in leading activities in support of team and enterprise objectives
  • Provide professional knowledge and experience of CND implementation, analytics, and operations
  • Develop initial system configurations, interfaces, and SOPs implementing and operationalizing these as controls in new development and operational systems

This position is a challenging role in a multi-contractor team supporting a fast moving program for multiple customers and/or projects. This task requires expertise in CND systems and operations–you need to be the go-to technical implementation and operational security person. Establishing a track record of reliability and trust with team members and security stakeholders is crucial. As part of the BAE Systems team, you be required to work directly with our Customers as well as provide occasional consulting on related projects including proposal support also required.

Key success attributes:

  • SME-level background in security event management and implementation
  • Experience in multiple IC component environments
  • Strong network and host security background in Windows and Linux
  • Ability to:
    • Plan, design, and implement secure solutions
    • Effectively communicate and advocate security requirements
      • Control implementation to development team
    • Communicate effectively with senior management in government and contractor teams
  • Outstanding communication skills including verbal and written using:
    • Word, PowerPoint, Excel, Visio, and Project
    • Other tools to communicate with peers/customers at technical level

Ideal candidate:

The ideal person for this role is flexible, hands-on experienced, technically capable, self-motivated, and can effectively influence others to deliver the right solution for the customer. Creativity, personal backbone, and Enterprise Audit and Analysis CND security experience are required. Extensive hands-on Information Assurance experience is required to be successful in this position. A mix of professional relationship skills and technical skills are required in this role.


Occasional, 2-7 day trips to other CONUS/OCONUS facilities may be required 2-3 times per year

MANDATORY qualifications:

  • SCI clearance with current SSBI
  • Audit logging experience
  • Enterprise-level security architecture and engineering experience
  • Bachelor’s degree in a technical field
  • 5+ years experience in hands-on CND leadership and/or engineering depending on position
  • Experience working on and supporting classified networks in the IC
  • Experience working in a team environment on similar tasks
  • IT security training
  • DoD 8570 certification (like Security+)

Strongly desired qualifications/skills:

  • Strong Windows administration and hardening experience
  • Enterprise SIEM experience
  • Enterprise audit aggregation, logging, and analysis experience
  • Knowledge of the following:
    • NIST 800-53/ICD-503, DIACAP, or DODIIS security requirements w/C&A/A&A experience
  • Network LAN administration experience
  • Virtual host experience with VMWare or Hyper-V
  • IDS/IPS experience
  • Firewall experience
  • Experience in Threat Mitigation
  • Experience in technology insertion for IA tactics, techniques, and procedures
  • Advanced IT certifications–managerial or technical certifications such as:
    • PMP, CISSP, RHCE, CCIE, SANS, etc.
  • Bachelor’s or Master’s in IA/Cyber Security/Computer Science

To apply for this job email your details to