• Lead comprehensive, organized retail crime investigations, including mobile fraud rings, identity theft, and coordinated multi-store activity. • Conduct targeted investigations into Xfinity Mobile fraud, such as unauthorized upgrades, fraudulent activations, SIM-swap attempts, account takeovers, and device financing fraud. • Analyze POS data, activation logs, account activity, surveillance footage, and exception reports to identify patterns and emerging threats. • Partner with local, state, and federal law enforcement agencies to build cases and support prosecution. • Prepares comprehensive, detail-oriented investigative reports, including findings, recommendations, and mitigation strategies, for senior management and stakeholders. • Conducts investigative interviews of witnesses, victims, and subjects. • Collects, documents, stores, and maintains evidence according to the chain of custody guidelines. • Participates in fraud awareness and training programs to educate employees within Comcast Business to reduce integrity concerns. • Assists in compliance efforts by ensuring adherence to relevant regulations, laws, and internal policies. • Consistent exercise of independent judgment and discretion in matters of significance. • Testifies before grand juries, courts, and administrative hearings on investigation results.

• Responsible for initiatives that drive the company forward • Active participation in professional working groups and industry associations • Participate in projects and drive their successful delivery • Proactively identify solutions and work independently

Job Description BAE Systems is seeking an an Information System Security Officer (ISSO) to join our team supporting the Department of War (DoW) High Performance Computing (HPC) Modernization Program (DoD HPCMP) and U.S. Navy DoW Supercomputing Resource Center (DSRC) located at the John C. Stennis Space Center, MS. The ISSO role is responsible for applying Information System (IS) security principles, procedures, and practices under the Risk Management Framework (RMF). As an ISSO you are responsible for implementing security controls, monitoring system security posture, auditing user activity, maintaining records, and updating documentation. Your work will ensure classified information systems maintain compliance with applicable security regulations, such as CNSSI, NIST, and NISPOM. The ISSO's role at the Navy DSRC includes: - - Supporting the Information Systems Security Manager (ISSM) at the DSRC and the program's CSSP. - Providing support in the creation and maintenance of all Assessment and Authorization (A&A) packages under the RMF guidelines utilizing the Enterprise Mission Assurance Support Service (eMASS) tool. This support includes, but is not limited to, clear understanding of eMASS tool, review and make recommendations for supporting documentation supporting the RMF Control/AP responses and if requested by the ISSM, perform the role Initial Task Validator of RMF Controls. - Ensuring DoDD 8570 compliance regarding baseline and Computing Environment, which are required for cybersecurity Technical Personnel, certifications for all applicable staff under the purview of the DSRC. - Management of BAE Systems staff. Specific Responsibilities - Protect information systems and data from threats and vulnerabilities - Create and maintain system security documentation - Implement, maintain, and monitor security controls - Provide security status to the DSRC leadership on a recurring basis - Achieve and maintain Authorization to Operate Unclassified and Classified information systems - Assess and mitigate threats and vulnerabilities - Provide security related guidance and technical support to the Navy DSRC staff - Maintain and report the status of all Plan of Action and Milestones - Attend recurring ISSO meetings across the program - Lead the implementation of critical security projects, such as Zero Trust and Data Exfiltration - Assist the ISSO's at the other DSRCs - Maintain eligibility for personnel security clearance - Perform other duties as assigned #LI-VW1 #LI-Onsite Required Education, Experience, & Skills Required Certification: The candidate must hold an IAM/IAT Level II (or higher) (8570.01) compliant certification (i.e. CAP, Security+ CE, CISSP, CASP, CISM, GSLC). Required Education & Experience: Typically a Bachelor's degree and 6+ years' work experience in cybersecurity and or equivalent years/experience. A qualified candidate for this position must have the ability to: - Familiarity with the RMF process - Understanding of NIST 800 series, DoD 8500.2, DoDD 8570, CNSSI 1253, NISPOM Chapter 8, and related publications - Experience implementing and monitoring technical, administrative, and operational security controls - Experience performing risk assessment and risk management for unclassified and classified IT systems - Communicate clearly and concisely verbally and in writing - Experience with Splunk, especially for data analysis - Work as part of a team and independently without direct supervision Preferred Education, Experience, & Skills - Familiarity with the DCSA eMass system and/or other documentation process tools such as Xacta - Familiarity with MS and Linux Operating Systems and associated DISA STIGS - Reviewing security event logs from both Windows and Linux systems - Use of network/system scanning tools and interpreting results - Security incident management - Working with hardware and software vendors - Prior experience in any security related domain, Technical, Physical, or Personnel Pay Information Full-Time Salary Range: $96623 - $164259 Please note: This range is based on our market pay structures. However, individual salaries are determined by a variety of factors including, but not limited to: business considerations, local market conditions, and internal equity, as well as candidate qualifications, such as skills, education, and experience. Employee Benefits: At BAE Systems, we support our employees in all aspects of their life, including their health and financial well-being. Regular employees scheduled to work 20+ hours per week are offered: health, dental, and vision insurance; health savings accounts; a 401(k) savings plan; disability coverage; and life and accident insurance. We also have an employee assistance program, a legal plan, and other perks including discounts on things like home, auto, and pet insurance. Our leave programs include paid time off, paid holidays, as well as other types of leave, including paid parental, military, bereavement, and any applicable federal and state sick leave. Employees may participate in the company recognition program to receive monetary or non-monetary recognition awards. Other incentives may be available based on position level and/or job specifics. About BAE Systems Intelligence & Security BAE Systems, Inc. is the U.S. subsidiary of BAE Systems plc, an international defense, aerospace and security company which delivers a full range of products and services for air, land and naval forces, as well as advanced electronics, security, information technology solutions and customer support services. Improving the future and protecting lives is an ambitious mission, but it's what we do at BAE Systems. Working here means using your passion and ingenuity where it counts - defending national security with breakthrough technology, superior products, and intelligence solutions. As you develop the latest technology and defend national security, you will continually hone your skills on a team-making a big impact on a global scale. At BAE Systems, you'll find a rewarding career that truly makes a difference. Intelligence & Security (I&S), based in McLean, Virginia, designs and delivers advanced defense, intelligence, and security solutions that support the important missions of our customers. Our pride and dedication shows in everything we do-from intelligence analysis, cyber operations and IT expertise to systems development, systems integration, and operations and maintenance services. Knowing that our work enables the U.S. military and government to recognize, manage and defeat threats inspires us to push ourselves and our technologies to new levels. This position will be posted for at least 5 calendar days. The posting will remain active until the position is filled, or a qualified pool of candidates is identified.

• Leadership of Critical Operations (SOC/CSIRT): Manage incident response and threat intelligence (CTI) teams, directly coordinating crisis/war rooms and making decisions under pressure. • ISO 27001 Implementation: Structure the Information Security Management System (ISMS), defining processes, metrics and risk-based governance to ensure international compliance. • Application & Cloud Security (Security by Design): Lead protection of multicloud ecosystems (AWS, GCP, Azure) and APIs, integrating security practices from code design through to production environments. • AI-driven Automation in Cybersecurity: Implement AI tools to optimize incident response, predict vulnerabilities and increase efficiency in the operational support of security tools. • Organizational Training and Mentorship: Act as a mentor to develop technical leadership and foster a human-centered, responsible security culture.