Lead Cyber Security Engineer

BigBear.ai is seeking a Lead Cyber Security Engineer. This position of Cybersecurity lead engineer presents an exciting opportunity to play a pivotal role in safeguarding BigBear.ai systems. In this position, they will collaborate closely with a talented group of engineers, analysts, and specialists to design, deploy, and support robust cybersecurity measures that protect the organization from ever-evolving threats. By leveraging their expertise and fostering a culture of teamwork, the lead engineer aims to enhance proactive defense strategies, streamline incident response, and ensure the continuous improvement of the security posture. Together, the team will build a resilient framework that not only defends against attacks but also promotes a shared commitment to cybersecurity excellence across the organization.

We are a remote team of high performers. While prior experience working remotely isn't required, you must perform well given a high level of independence and autonomy while collaborating asynchronously within and across teams.

• Design robust cybersecurity measures and access management solutions to protect the organization's systems and data.
• Lead the implementation, operationalization, or optimization of projects in support of the cybersecurity program.
• Advise on security monitoring and response procedures, ensuring that the organization can swiftly detect and respond to potential threats. By establishing clear playbooks for incident response, they will help the team efficiently address vulnerabilities and mitigate risks in real time.
• Assist the Security Operations team in responding to security incidents, ensuring a swift and effective resolution.
• Routinely collaborate with IT and business units to manage access control processes and application integration. Works with business to ensure access control is integrated with business requirements for any new application
• Work closely with the GRC team on the development and implementation of standards, operating procedures, and controls. You will also coordinate and document exemptions to established security controls.
• Assists with external information security audits for regulatory compliance and assessments such as penetration testing.
• Other duties as assigned.

• Bachelor's Degree and 8 to 10 years of experience; or
  • Master's Degree and 6 to 8 years of experience; or
  • PhD and 3 to 5 years of experience; or
  • (in lieu of Bachelor’s degree, 6 additional years of relevant experience)
• Clearance: Must be able to obtain and maintain a Secret clearance. Must be clearable to Secret clearance
• 10+ years of experience in implementing and supporting cybersecurity programs.
• Proficient understanding of Information technology systems and processes, network infrastructure, data architecture, data processes, and protocols.
• Excellent written communication skills. Must be able to clearly communicate risks at both strategic and tactical level.
• Experience operating within NIST 800-171, CMMC or equivalent cybersecurity frameworks.
• 2+ years in a role performing Threat Detection, Incident Response, Threat Intelligence, or Abuse Mitigation
• 2+ years in implementing and supporting Identity and Access management products and processes

• Okta Workforce Identity experience
• SailPoint or comparable IGA solution experience
• Purview Information Protection or comparable data protection solution experience
• Proficient in scripting languages including Python and PowerShell

BigBear.ai is a leading provider of AI-powered decision intelligence solutions for national security, supply chain management, and digital identity. Customers and partners rely on Bigbear.ai’s predictive analytics capabilities in highly complex, distributed, mission-based operating environments. Headquartered in Columbia, Maryland, BigBear.ai is a public company traded on the NYSE under the symbol BBAI. For more information, visit https://bigbear.ai/ and follow BigBear.ai on LinkedIn: @BigBear.ai and X: @BigBearai.

BigBear.ai is an Equal Opportunity/Affirmative Action Employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation gender identity, national origin, disability or veteran status, age or any other federally protected class.