The role involves assessing security controls, conducting penetration tests, and collaborating with stakeholders to enhance security measures across various projects.
Job Description
BAE Systems Cybersecurity - Attack Surface Management has an opening for Penetration Tester to assess security controls and work closely with stakeholders to improve overall security posture. Position will work on a wide array of engagements, including incident response, compliance, application accreditation, assessment of new products, and general projects. This is an exciting opportunity to work with a highly motivated team of cyber security professionals.
Required Education, Experience, & Skills
Preferred Education, Experience, & Skills
Pay Information
Full-Time Salary Range: $130355 - $221603
Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience.
Employee Benefits: At BAE Systems, we support our employees in all aspects of their life, including their health and financial well-being. Regular employees scheduled to work 20+ hours per week are offered: health, dental, and vision insurance; health savings accounts; a 401(k) savings plan; disability coverage; and life and accident insurance. We also have an employee assistance program, a legal plan, and other perks including discounts on things like home, auto, and pet insurance. Our leave programs include paid time off, paid holidays, as well as other types of leave, including paid parental, military, bereavement, and any applicable federal and state sick leave. Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards. Other incentives may be available based on position level and/or job specifics.
About BAE Systems, Inc.
BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it's what we do at BAE Systems. Working here means using your passion and ingenuity where it counts - defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team-making a big impact on a global scale. At BAE Systems, you'll find a rewarding career that truly makes a difference.
This position will be posted for at least 5 calendar days. The posting will remain active until the position is filled, or a qualified pool of candidates is identified.
BAE Systems Cybersecurity - Attack Surface Management has an opening for Penetration Tester to assess security controls and work closely with stakeholders to improve overall security posture. Position will work on a wide array of engagements, including incident response, compliance, application accreditation, assessment of new products, and general projects. This is an exciting opportunity to work with a highly motivated team of cyber security professionals.
Required Education, Experience, & Skills
- Ability to use and analyze information produced from various commercial and open source tools, including Qualys, Burp Suite, Nmap, Wireshark, etc.
- Familiarity with modern vulnerability categories and attack techniques (XSS, CSRF, SQLi).
- Proficiency in one or more scripting languages (Python, Perl, Bash, etc.)
- Ability to map controls to the MITRE ATT&CK framework
- Familiarity with external web applications testing.
- Familiarity with large network infrastructure components (Load balancers, Proxies, hybrid cloud implementations, VPNs)
- Familiarity with network and host-based security system components (Firewalls, Endpoint Protection Solutions)
- Familiarity with modern virtualization platforms and technology.
- Experience conducting manual assessments on production systems (not just running vulnerability scanners).
- Experience automating testing efforts with written scripts or programs.
- Ability to communicate and interact with stakeholders effectively while managing engagements.
- Ability to translate complex technical information to non-technical audiences to support remediation of identified findings.
Preferred Education, Experience, & Skills
- 11.0pt;font-family:" calibri",sans-serif;mso-fareast-font-family:"times="" new="" roman""="">6+ years in a cybersecurity role, 5+ years with an associate's degree in a computer-related field, or 4+ years with a bachelor's degree in a computer-related field.
- 11.0pt;font-family:" calibri",sans-serif;mso-fareast-font-family:"times="" new="" roman""="">OSCP, GPEN, CompTIA Pen Test+ or similar certifications.
Pay Information
Full-Time Salary Range: $130355 - $221603
Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience.
Employee Benefits: At BAE Systems, we support our employees in all aspects of their life, including their health and financial well-being. Regular employees scheduled to work 20+ hours per week are offered: health, dental, and vision insurance; health savings accounts; a 401(k) savings plan; disability coverage; and life and accident insurance. We also have an employee assistance program, a legal plan, and other perks including discounts on things like home, auto, and pet insurance. Our leave programs include paid time off, paid holidays, as well as other types of leave, including paid parental, military, bereavement, and any applicable federal and state sick leave. Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards. Other incentives may be available based on position level and/or job specifics.
About BAE Systems, Inc.
BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it's what we do at BAE Systems. Working here means using your passion and ingenuity where it counts - defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team-making a big impact on a global scale. At BAE Systems, you'll find a rewarding career that truly makes a difference.
This position will be posted for at least 5 calendar days. The posting will remain active until the position is filled, or a qualified pool of candidates is identified.
Top Skills
Bash
Burp Suite
Endpoint Protection Solutions
Firewalls
Mitre Att&Ck
Nmap
Perl
Python
Qualys
Virtualization Technologies
Wireshark
BAE Systems, Inc. Burlington, Massachusetts, USA Office
600 District Ave, Burlington, MA, United States, 01803
Similar Jobs at BAE Systems, Inc.
Aerospace • Hardware • Information Technology • Security • Software • Cybersecurity • Defense
The FMV Analyst role involves training in FMV tradecraft, producing imagery reports, compiling intelligence materials, and maintaining situational awareness during operations.
Top Skills:
ArcgisIecMaasMS OfficeNesRemoteviewSocet Gxp
Aerospace • Hardware • Information Technology • Security • Software • Cybersecurity • Defense
The Identity Automation Engineer will design, build, and maintain automation solutions for Identity services, focusing on efficiency in Active Directory and Microsoft 365 integration through advanced PowerShell scripting and REST APIs.
Top Skills:
Active DirectoryCSSHTMLJavaScriptMicrosoft 365Microsoft Graph ApiPower AutomatePowershellRest ApisServicenowSplunk
Aerospace • Hardware • Information Technology • Security • Software • Cybersecurity • Defense
The FMV Analyst position involves training and hands-on experience in FMV tradecraft, producing imagery products, and compiling intelligence for briefings.
Top Skills:
Fmv Exploitation ToolsGeoint ToolsMS Office
What you need to know about the Boston Tech Scene
Boston is a powerhouse for technology innovation thanks to world-class research universities like MIT and Harvard and a robust pipeline of venture capital investment. Host to the first telephone call and one of the first general-purpose computers ever put into use, Boston is now a hub for biotechnology, robotics and artificial intelligence — though it’s also home to several B2B software giants. So it’s no surprise that the city consistently ranks among the greatest startup ecosystems in the world.
Key Facts About Boston Tech
- Number of Tech Workers: 269,000; 9.4% of overall workforce (2024 CompTIA survey)
- Major Tech Employers: Thermo Fisher Scientific, Toast, Klaviyo, HubSpot, DraftKings
- Key Industries: Artificial intelligence, biotechnology, robotics, software, aerospace
- Funding Landscape: $15.7 billion in venture capital funding in 2024 (Pitchbook)
- Notable Investors: Summit Partners, Volition Capital, Bain Capital Ventures, MassVentures, Highland Capital Partners
- Research Centers and Universities: MIT, Harvard University, Boston College, Tufts University, Boston University, Northeastern University, Smithsonian Astrophysical Observatory, National Bureau of Economic Research, Broad Institute, Lowell Center for Space Science & Technology, National Emerging Infectious Diseases Laboratories
