Senior Systems Security Engineer (VG01175 & VG01177) - Military veterans preferred

2020-03-24
SAIC (www.saic.com)
Other

/yr

  full-time   employee


Beltsville
Maryland
20705
United States

Description

SAIC is seeking a highly motivated Senior Systems Security Engineer/Subject Matter Expert (SME). The successful candidate will provide support to the Cybersecurity Integrity Center (CIC) in the Department of State Bureau of Information Resource Management (IRM). 


Duties are primarily in Beltsville, MD and as required in Washington, D.C. metropolitan area. 


The CIC supports cybersecurity monitoring, threat analysis, incident response, and infrastructure remediation within and across all of the State Department’s information technology (IT) infrastructure. The CIC coordinates and collaborates with other State Department bureaus as well as other organizations within the Federal Government, and commercial partners.


Description of Duties:

The SME position requires experience in identifying security vulnerabilities and misconfigurations across multiple platforms and CND (computer network defense) technologies. In addition, the position requires a technically inclined doer. We seek candidates who will help identify issues and provide sound technical remediation actions to reduce the department's overall threat surface.


The Senior Systems Security Engineer/SME should be able to provide technical guidance in the area of Microsoft products and security systems, but also other enterprise server & desktop operating systems enterprise applications, and in support of over 80,000 customers globally. The Senior Systems Security Engineer/Subject Matter Expert (SME) will:

• Apply sound technical and management principles to identify and remediate cybersecurity --vulnerabilities across the State Department global IT enterprise infrastructure

• Apply organizational and process change principals

• Provide technical guidance to security and operational personnel

• Evaluate system performance results, respond to incidents/problems, perform risk assessments, and evaluate performance metrics 


Responsibilities include:

• Collaborate across State Department bureaus and other Government Agencies to plan and implement system changes as they relate to cybersecurity
• Identify and remediate cybersecurity vulnerabilities
• Provide detailed assessments of potential risks to Microsoft-based systems, including both operating systems and applications, in accordance with NIST SP 800-30 Revision 1
• Identify and resolve security vulnerabilities related to deployment and testing processes
• Streamline and optimize processes and procedures in order to rapidly remediate vulnerabilities from cybersecurity threats

• Develop policies and procedures

Qualifications

Required Education and Experience:
Bachelor’s degree in Computer Science, Computer Forensics, Information Technology or related technical discipline
and fourteen (14) years or more experience to include:

-6+ years of successfully implementing advanced cyber security methods to systems and networks in a complex environment
-Understanding of IT security principals, technologies, and best practices to include access control; PKI and other encryption methods; network-based and host-based IDS/IPS; security configuration baselines (STIG, CIS, FISMA); auditing; vulnerability discovery and management, and computer logs
-Ability to work independently to identify errors, pinpoint root causes, document cause and effect, and devise solutions with minimal oversight
-Demonstrated experience in testing and implementing network vulnerability and protection methods
-Knowledge of information security concepts, policy frameworks, and best commercial practices
 
Desired Skills:
-Experience with security scanning and evaluation tools (Nessus, Nexpose, Retina, Wireshark, NMAP, EnCASE, etc.)
-Information Assurance Certifications (i.e. CISSP, CISA, GIAC, Security +, Certified Ethnical Hacker, etc.)
-Knowledge of the Splunk search language, search techniques, alerts, dashboards and report building.

Clearance Requirement:
Active secret in order to start and must be able to obtain Top Secret

Desired Qualifications