Full Time Employee
Security Engineer/Continuous Monitoring Engineer - VG00140 (Job Number:420849)
The Enterprise & Mission Information Technology Business Unit currently has an opening for a Security Engineer to support a Department of State (DoS) Bureau of Information Resource Management (IRM) program. This program provides transparent, interconnected systems and security supporting the DoS in successfully carrying out its U.S. foreign policy mission. IRM provides enterprise architecture design, engineering, operations and maintenance support services for desktops, servers, networks, firewalls, and enterprise applications across the Department. Program is named Vanguard 2.2.1 and is an IT consolidation consisting of the Department's servers, mainframes, network devices, network perimeter, anti-virus engineering, public key infrastructure (PKI)/biometrics/encryption, monitoring tools, telephony, mobile computing platform, virtual environment, and enclave design/security engineering. This position is for a Security Engineer within the Vanguard 2.2.1 program’s Enterprise Security Office (ESO) and will directly support DoS on-site in Arlington, VA. This individual will help guide the strategy and implementation of a long-term and sustainable solution that obtains security-related information from disparate data sources across the enterprise; analyzes the data to identify whether various system and security controls are being effectively maintained; and presents the data in a dashboard that supports the real-time continuous monitoring of the systems in support of certification and accreditation. The system will focus on providing an enterprise-wide capability to monitor information systems in a way that enhances real- time awareness of security posture and threats, and supports immediate diagnosis.
Description of Duties:
Supporting creation of continuous monitoring strategy, identification of requirements, selection and implementation of future continuous monitoring solutions
Reviewing technical and non-technical security requirements (i.e., controls) to identify good candidates for automated monitoring.
Identifying potential data sources, methods and techniques, and tools to automate data collection, normalization, and analysis in support of automated monitoring.
Supporting input for recommendations to government and contractor staff on proposed solutions, including relative benefits of competing solutions.
Developing work- flows, processes, and tools to automatically collect, normalize, analyze, and present data in support of automated monitoring.
Implementing, documenting, and presenting proofs- of-concept.
Working with engineering and operations staff to implement solutions in productions.
Evaluating and implementing COTS products (hand-on) that may enhance existing or support future solutions.
Bachelor’s degree in a technical or engineering related discipline; and 3+ years of relevant experience.
Self-starter with ability to identify tasking, present solutions, and coordinate implementation.
Understanding and knowledge of programming and/or scripting. Desired Experience/Skills/Attributes:
Relevant security, network, or technology certifications.
Knowledge of continuous monitoring platforms including understanding and experience with big data, analytics, correlation, and data mining.
Working knowledge and understanding of virtualization products.
Knowledge of secure coding, application security, and ethical hacking.
Working knowledge and understanding of Microsoft Active Directory, SMS/SCCM, and databases (RDBMs).
Basic awareness of National institute of Standard and Technology (NIST) Special Publication (SP) 800-37 and 800-53 as well as other NIST, committee on National Security Systems (CNSS), and Office of Management and Budget (OMB) mandates pertaining to security and, specifically, continuous monitoring.
Familiarity with DoS environment (data and voice networks, IT security systems, policies and procedures), Foreign Affairs Handbooks (FAHs), and Foreign Affairs Manuals (FAMs).
Must currently possess a Secret security clearance and be able to obtain a Top Secret security clearance
SAIC Overview:SAIC is a premier technology integrator providing full life cycle services and solutions in the technical, engineering, intelligence, and enterprise information technology markets. SAIC provides systems engineering and integration offerings for large, complex projects. Headquartered in McLean, Virginia, SAIC has approximately 15,000 employees and annual revenues of about $4.3 billion.
EOE AA M/F/Vet/Disability
Job Posting: Aug 2, 2016, 4:32:46 PM
Primary Location: United States-VA-ARLINGTON
Clearance Level Must Currently Possess: Secret
Clearance Level Must Be Able to Obtain: Top Secret
Potential for Teleworking: No
Shift: Day Job
To apply for this job, contact: