BAE Systems, a top-ten prime contractor to the U.S. Department of Defense, enables the U.S. government to transform data into intelligence and provides engineering, integration and sustainment support for critical military platforms and systems. Intelligence & Security provides services and products to the Department of Defense, the government, federal law enforcement officials, and troops deployed around the world.

At BAE Systems, we promote a strong, collaborative culture and provide our employees with the tools, skills and training they need to succeed. We are all about trust, camaraderie and a shared ambition to lead the world in defense technologies and national security services. We offer flexible work environment to support the balance in your life and keep you performing at your best. Be a part of a company that is part of the community; driven to improve our future and protect our freedom.

We are seeking a versatile Senior Software Developer with expertise in secure software engineering. The ideal candidate will combine technical proficiency in development tools and cyber security. The candidate will work in an agile environment, collaborating with cross-functional teams to address a broad range of IT issues while safeguarding customer assets. The role involves supporting Authorization and Accreditation (A&A) efforts to authorize systems for operational use.

Key Responsibilities:

• Design, develop, test, and deploy secure Windows applications, services, and web services using .NET (C, WPF/XAML, C++), ASP.NET MVC Web API, HTML/CSS, Python, and PowerShell, ensuring integration with IIS and adherence to secure coding standards.

• Develop and automate scripts using PowerShell for system administration, problem-solving, and security-related tasks, such as monitoring and mitigating vulnerabilities in Windows environments.

• Manage cloud-based solutions on AWS and Azure, incorporating security best practices for deployment and access controls.

• Utilize tools like GitHub, Jira, Jenkins, and Confluence for version control, issue tracking, continuous integration/deployment (CI/CD), and documentation, while ensuring secure configurations.

• Working with customer-specific IT tools, including Secure Token Service (STS) and DataHound, to integrate secure authentication and data management into applications.

• Participate in Agile methodologies and ceremonies (e.g. sprints, stand-ups, retrospectives) to deliver features iteratively.

• Create and maintain comprehensive documentation, including requirements gathering, design documents, technical writing, and A&A artifacts (e.g. security plans, test reports, and authorization packages).

• Lead or support A&A processes, including conducting risk assessments, vulnerability scans, and security control implementations to achieve system authorizations (e.g. Authority to Operate - ATO) in compliance with customer policies and frameworks such as NIST RMF.

ABC
LI-DDUNN

• Minimum 6 years’ experience in software development, with at least 1 year focused on security engineering and A&A processes
• Bachelor’s degree in Computer Science, Information Security, or a related field (or equivalent experience)
• Proficiency with .NET (C#, WPF/XAML, C++), Web (ASP.NET MVC Web API, HTML/CSS), Python, PowerShell
• Proficiency with developing Windows Applications, Windows Services, and Web Services on IIS
• Experience working with AWS and Azure
• Experience using GitHub, Jira, Jenkins, and Confluence
• Proficiency with Secure Token Service (STS) and DataHound (customer-specific IT tools)
• Experience with Microsoft PowerBI
• Familiarity with Windows System Administration and troubleshooting
• Familiarity with the Software Development Lifecycle (SDLC), including configuring and deploying to IIS.
• Experience with requirements gathering, creation of design documentation, and technical writing
• Proven experience with security-relevant A&A responsibilities, such as risk assessments, vulnerability management, security control testing, and preparation of authorization packages

• Proficiency with the Risk Management Framework (RMF) Cycle: serves as the foundational process for A&A activities
• Familiarity with the Agile methodology and ceremonies
• Strong problem-solving skills and the ability to thrive in a dynamic, issue-diverse IT landscape