Information Security Engineer

Description

Job Description

We are looking for a Cybersecurity Analyst to join our Land Border Integration program and put our Program Security Architect's vision into practice. You will have a fast moving, challenging, and highly rewarding position keeping the network and other infrastructure secure that helps Customs and Border Protection keep our borders safe.

This position is hybrid remote with 1 day a week in office in Sterling VA.

Responsibilities:

• Proactive Threat Intel and Vulnerability Management: Track threat actors and associated tactics, techniques, and procedures (TTPs)
• Oversee the monitoring of security systems, logs, and alerts to detect and respond to threats.
• Investigate security alerts and incidents and take appropriate mitigation steps.
• Fix vulnerabilities and responsible for creating security incident reports.
• Perform static code analysis to analyze source code for application's safety and security.
• Provide guidance to system and application owners to remediate identified vulnerabilities.
• Install security software such as firewalls and encryption programs.
• Continuously improve security operations processes and procedures.
• Work with Security Architect to research, evaluate and recommend new security tools, techniques, and technologies in alignment with enterprise IT security strategy.
• Provide security awareness training to program teams and recommend security enhancements.
• Provide periodic risk assessment and penetration tests.
• Ensure security of facilities, equipment, tools, data, networks, and resources throughout the program: design, development, build, test, storage, delivery, operations, and support.
• Periodically conducts a review of each system's audits and monitors corrective actions until all actions are closed.
• Provide support to plan, coordinate, and implement tactical response to improve the organization's information security posture.
• Possess working knowledge of security practices and procedures; knowledge of current security tools available; hardware/software security implementation; different communication protocols; encryption techniques/tools; familiarity with commercial products, current Internet/EC technology, and open-source methodologies.
• Stay current on cloud and cyber security technology trends.
• Ability to write and verbally communicate information security and risk-related concepts effectively to both technical and non- technical audiences.

Qualifications

Qualifications

• Strong understanding of security principles, best practices, frameworks, and technologies.
• Fundamental technical knowledge of DHCP, DNS, Active Directory, Windows and Linux OSes, firewalls, networks.
• Experience writing Windows Bash and PowerShell scripting, python, and other scripting languages.
• Good understanding of Security Development Lifecycle.
• Must be Clearable (CBP BI Public Trust).
• Must have strong problem-solving and analytical skills and demonstrate poise and ability to act calmly and competently in high-pressure, high stress situations.
• Familiarity with network and host-based Intrusion Detection Systems (IDSs) and Security Incident Event Management (SIEM)
• Security certification preferred, such as (CISM, CISSP, CSSP Incident Responder Certification)

Education and Experience

Bachelors and five (5) years or more experience; Masters and three (3) years or more experience; PhD and 0 years related experience

BI Requirement

• Current holder of a DHS Public Trust clearance or the ability to obtain one.

• Note: Employment will be contingent upon having/obtaining a DHS Public Trust clearance prior to starting.

SAIC accepts applications on an ongoing basis and there is no deadline.

Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.