Cybersecurity Systems Engineer

Job Description

General Dynamics Mission Systems–Canada has an opportunity for a Cybersecurity Analyst to join our Sonar Systems team within the Air & Naval division. In this role you will develop security strategies, design secure systems, and implement cybersecurity solutions to ensure that General Dynamics Mission Systems–Canada (GDMS-C) systems and products are designed and developed based on sound security principles.

Responsibilities include:

• Support stakeholder engagement by identifying regulatory requirements, the Security Assessment and Accreditation (SA&A) process to be applied, and obtains concurrence from SA&A authorities on the identified information protection needs
• Evaluate, select, and establish the system security architecture and develop cybersecurity controls
• Conduct threat modeling and vulnerability assessments, applying threat intelligence to refine system defenses and enhance resilience
• Ensure cybersecurity frameworks adhere to military and industry standards such as NIST, RMF (Risk Management Framework), ITSG-33, and ISO 27001
• Establish security policies, procedures, and protocols to comply with Defense Information Systems Agency (DISA) Security Technical Implementation Guides (STIGs) and Federal Information Processing Standards (FIPS).
• Conducting Threat Risk Analysis, impact analysis, and vulnerability testing
• Supporting the implementation of software development environments by ensuring appropriate security controls have been identified and are implemented based on desired assurance level
• Ensuring the system tests verify and validate System Security Requirements and support the proof of assurance; author and run Security Test Procedures
• Support internal and external audits by authoring and maintaining reproducible security artifacts and SA&A documentation (e.g., System Security Plans, Risk Assessments, Security Artifacts in System Design Document, Security Test Reports)

Qualifications

• The successful candidate for this position will have a Bachelor’s Degree in Engineering or equivalent with a minimum of 5 years of experience 
• Experience supporting the engineering development of secure systems, ideally in airborne or naval military environments
• Strong understanding of container security (Docker/Podman), vulnerability scanning, and artifact management
• Familiarity with DISA STIGs, SCAP tools (OpenSCAP, oscap), and frameworks like ITSG‑33 or NIST RMF
• Experience supporting vulnerability management workflows, including CVE/CWE tracking and remediation
• Familiarity generating and maintaining SBOMs (SPDX or CycloneDX format) with CVE mapping
• Effective communicator, strong interpersonal skills, positive attitude, and ability to motivate others through collaborative leadership 
• Excellent time management skills, whether working as a self-motivated individual or part of a team
• Up-to-date with cybersecurity trends, emerging threats, and advanced technologies

Assets

• Certifications such as CISSP, GICSP, GIAC DevSecOps, or Kubernetes Security Specialist 
• Proficiency with GitLab CI/CD, SonarQube, Parasoft, and scripting languages (Python, Bash); proficiency with C++ 

It is a requirement that General Dynamics Mission Systems-Canada be registered with the Canadian Controlled Goods program and that all of its workforce be security assessed. Successful applicants must meet all applicable security requirements, including but not limited to the ability to obtain and maintain a Canadian government security clearance. Applicants may be required to meet additional security requirements in order to gain access to technical data, classified areas or information that is subject to international regulations. You must be eligible to work in Canada.