Description

System Security Engineer

SAIC is seeking a System Security Engineer on the Revolutionary Information Technology Services (RITS) program in support of the United States Army Corps of Engineers (USACE).

This position is remote with a possibility of limited travel within the United States.

DUTIES AND RESPONSIBILITIES

• Perform analysis and evaluation to design, implement, test and field secure systems and architectures
• Assess system compliance against NIST and DOD security requirements to include the NIST 800-53 controls and DISA Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRGs)
• Produce evidence as necessary to support compliance status of NIST and DOD security requirements
• Work with system administrators, engineers, and ISSM (Information Systems Security Manager) to create or update system/site policies, procedures, and process guides
• Experience with Assured Compliance Assessment Solution (ACAS) and Host Based Security System (HBSS)
• Collaborate openly and frankly with all internal and external partners, such as Government Engineers, Contractor Engineers, Contractor Operations staff, Management, and 3rd party vendors
• Work independently, help others and ask for help without hesitation
• Ensure timely delivery of all Engineering Service Requests, removing any obstacles to completing work as scheduled
• Perform risk analysis of each Engineering Service Request, and inform all stakeholders of the applicable risks
• In coordination with Government partners, prioritize workload
• Provide technical guidance and leadership on the Cyber Security needs of all software and hardware used in the Corps of Engineers' environment, which includes, in part, products by Cisco, Palo Alto, Microsoft, Symantec, McAfee, Computer Associates, Trellix, Imperva, etc., and the integration of new Cyber Security products within the Corps of Engineers' environment
• Provide guidance to the Enterprise Operations on technical solutions and provide Tier 4 support
• Provide weekly status reports to the security engineering lead
• Continually enhance the performance of the Engineering team, Corps environment and Operational support through continual process improvement, automation, full utilization of existing tool sets, and recommendations for new tools
• Develop or analyze requirements in a Requirements Traceability Matrix, design and develop solution options, provide test plans, develop implementation plans including integration with existing systems in the production environment, provide engineering support through transition to operations and "Early Life" of new or upgraded systems/services in production, provide tools, processes and procedures for monitoring/performance measurement, event detection, problem identification and remediation, and troubleshooting assistance as needed after deployment
• In collaboration with the Government Engineer, bring proposed changes to the Change Advisory Board
• Perform detailed market research, develop Bills of Materials for Government consumption
• Assist with, or design new implementations of the Cyber Security stack, and after Information Assurance review, coordinate the installation of them with the DevOps Engineer, Enterprise Operations, and relevant stakeholders
• Document Cyber Security architecture, including network port connectivity, and design choices of the associated applications (Low Level Design, High Level Design)
• Documenting new process and procedures as related to new infrastructure
• Provide secure, reliable, and high performing configurations of the Cyber Security environments

Qualifications

Required Qualification

• BS Degree and 9+ years of experience; four (4) years of experience accepted in lieu of degree
• Must have experience performing assessments of existing IT architecture for compliance with security requirements from applicable security frameworks (e.g., NIST 800-53)
• Experience evaluating proposed security architectures and designs and providing input as to the adequacy of those security designs to meet required security compliance objectives.
• Experience with Assured Compliance Assessment Solution (ACAS) or Host Based Security System (HBSS) and/or Endpoint Security Solutions (ESS)

Desired Qualification:

• ITIL® V3 Foundation or ITIL® V4 equivalent
• Amazon cloud experience (EC2, storage, virtual private networks, routing, subnetting)

Certifications:

• Certified Information Systems Security Professional CISSP or CompTIA Advanced Security Practitioner (CASP+)

Clearance Requirements:

• Must be able to obtain a full Secret Clearance; Interim Secret required prior to start, SAIC will help to obtain
• Must be a current US Citizen

Target salary range: $125,001 - $150,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.

SAIC accepts applications on an ongoing basis and there is no deadline.

Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.