IT Security Engineer

Description

SAIC has a new opportunity for a Security Engineer to provide expert technical services on all aspects of Information Security. This position will work hand-in-hand with the customer team as well as all IT groups to build IT systems with security planned from the start.

Key duties/responsibilities include, but are not limited to:

• Perform or provide incident response, system access approval, audit log review, Configuration Control Board management and daily consultations/consulting on a wide variety of security issues

• Understand and be able to identify what group or process will satisfy security requirement(s)

• Report, document and investigate all IT security related incidents; assist with development and implementation of corrective measures

• Initiate protective and corrective measures when incident or vulnerabilities are discovered; maintain compliance with IS security procedures

• Ensure IA hardware and software complies with security configuration guides

• Execute Operations & Sustainment (O&S) functions for the network security infrastructure (firewalls, web gateways, mail gateways, ids, load balancers, performance monitoring tools, mgt systems, etc)

• Complete maintenance and/or advanced configuration of equipment in order to protect the network from emerging cyber threats

• Analyze forensic traffic/logs to isolate issues or respond to analyst alerts

• Provide support integration testing and execute remediation process to implement technical solutions to address vulnerability findings via ACAS security scan

Qualifications

Required Skills/Qualifications:

• Must be US Citizen

• Must possess active TS/SCI clearance with current polygraph

• Bachelors Degree and 9 years relevant experience. *Significant experience may be considered in lieu of education

• At least 5 years data security administration related experience

• Must be proficient in network routing / vlan technology

• Possess IAM I certification to start in accordance with DOD 8570.1M. Must obtain IAM II or III certification within 6 months (This position is defined as in 8570.1M chapter 4, pg 35.)

• Have working knowledge of ICD 503 and be familiar with Cloud Infrastructure/AWS-based solutions

• Have working knowledge of government RMF process and methodology of systems security requirements (to include enforcement)

• Experience using security tools such as EVSS, ACAS, HBSS, Tenable, RedSeal, Splunk, and EMET

• Ability to conduct a technical decomposition categorization, remediation, and lien resolution

• Must be available/able to travel up to 10%

• Prefer experience with all aspects of the Certification and Accreditation process

Desired:

• CISSP certification or equivalent (CAP, GSLC, CISM)

• System administration experience

• Network engineering experience

• System design and development experience

SAIC accepts applications on an ongoing basis and there is no deadline.

Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.