Test Engineer

Summary: BAE Systems is an international defense, aerospace and security company, and they are seeking a Cyber Integration & Test Engineer to support the Air Force Research Laboratory’s Information Directorate. The role involves planning, designing, developing, implementing, and documenting test solutions for software baselines, with a focus on systems/software cyber testing techniques and methodologies. Responsibilities: - Designing, developing, writing, and executing test plans and procedures to address new and existing functional and/or security requirements - Formal and exploratory/ad-hoc testing, and test automation development - Ability to interpret intent from published security standards and develop tests to validate and document compliance - Requires not only application knowledge, but also knowledge in how system components interact, as well as the technical skills to perform preliminary troubleshooting - Requires a broad range of knowledge and experience, from system administration for system test set-up and execution, to writing automated tests, to formal software test functions such as developing test plans, test procedures and test reports, as well as logging and tracking defects - Understanding of how to detect and protect against common system/software security vulnerabilities - Assesses the current state of the system security by identifying all vulnerabilities and security measures. Perform analysis and write suggested mitigation strategies Required Qualifications: - Bachelor's Degree in Computer Science, Cyberspace Operations or related field - US Citizenship is required and the ability to obtain interim Secret clearance - DOD 8570 IAT Level II certification - Linux administration/troubleshooting - Windows administration/troubleshooting - Virtualization - eg. VMWare, Citrix, Xen - Possess excellent oral and written communication skills and effectively communicate details with all levels of management - Time management, project management, independent worker Preferred Qualifications: - Experience with server administration, TCP/IP networking, vulnerability identification and exploitation, vulnerability exploit code development, offensive security operation coordination and communication, vulnerability tracking and remediation - Familiarity and experience with Agile Scrum practices - Experience with DISA STIGs and SRGs - Knowledge of NIST 800-53 and ICD 502, 503 - Risk Management Framework (RMF) experience - Experience in threat/risk mitigation - Knowledgeable about Cross Domain Solutions (CDS) - Active TS/SCI Clearance - Experience with Task Management tools (Ex. Jira/ServiceNow/GitLab/etc…) - Creating and documenting repeatable test plans - Experience working with software developers - Script writing (Bash, Powershell, etc…) - Orchestration Automation (Ansible, Puppet, SALT, etc…) - Utilizing/Configuring Host Based Security Systems (HBSS) Required Skills: Cyber testing techniques, Test automation development, Security standards interpretation, System administration, Linux administration, Windows administration, Virtualization VMWare, Virtualization Citrix, Virtualization Xen, DOD 8570 IAT Level II certification, TCP/IP networking, Vulnerability identification and exploitation, Vulnerability exploit code development, Offensive security operations, DISA STIGs and SRGs, NIST 800-53, ICD 502, ICD 503, Risk Management Framework (RMF), Threat and risk mitigation, Cross Domain Solutions (CDS), Task management tools Jira, Task management tools ServiceNow, Task management tools GitLab, Script writing Bash, Script writing Powershell, Orchestration Automation Ansible, Orchestration Automation Puppet, Orchestration Automation SALT, Host Based Security Systems (HBSS), Project management Benefits: Health, dental, and vision insurance, Health savings accounts, A 401(k) savings plan, Disability coverage, Life and accident insurance, Employee assistance program, Legal plan, Paid time off, Paid holidays, Paid parental leave, Military leave, Bereavement leave, Federal and state sick leave