Senior Network Security Engineer

Job ID: 2505135

Location: REMOTE WORK, DC, US

Date Posted: 2025-04-29

Category: Information Technology

Subcategory: IT Systems Engineer

Schedule: Full-time

Shift: Day Job

Travel: No

Minimum Clearance Required: Interim Secret

Clearance Level Must Be Able to Obtain: Secret

Potential for Remote Work: Yes

Description

SAIC is seeking a Senior Network Security Engineer to support the Revolutionary Information Technology Services (RITS) program in support of the United States Army Corps of Engineers (USACE). Reporting to and under general direction of the cybersecurity engineering lead, responsible for all aspects of assigned enterprise service request projects and takes projects from planning through final delivery. Interfaces with all areas affected by the project including Government partners, teammates, end users, computer services, and client services. Defines project scope and objectives and develops detailed work plans, schedules, project estimates, status reports and project deliverables. Conducts project meetings and is responsible for project tracking and analysis. Provides technical and analytical guidance to enterprise engineering team and enterprise operations. Participates in high-level enterprise architecture analysis, evaluation, design, integration, documentation, and development. Applies high-level business and technical principles and methods to very difficult technical problems to arrive at creative engineering solutions. Recommends and takes action to direct the analysis and solutions of problems. This position is remote with a possibility of limited travel within the United States.

Duties and Responsibilities:

• Perform analysis and evaluation to design, implement, test and field secure networks and architectures
• Assess system compliance against NIST and DoD security requirements to include the NIST 800-53 controls and DISA Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRGs)
• Perform level 3-4 security implementations and troubleshooting of Check Point devices, firewall policies and rules management
• Ability to troubleshoot network related issues using tcpdump or other packet capture tools
• Perform risk analysis of each Engineering Service Request, and inform all stakeholders of the applicable risks
• Provide technical guidance and leadership on the cybersecurity needs of all software and hardware used in the Corps of Engineers' environment, which includes products by Cisco, Palo Alto Networks, Check Point, Trellix, etc.
• Provide guidance to Enterprise Operations on technical solutions and provide Tier 4 support
• Develop or analyze requirements in a Requirements Traceability Matrix, design and develop solution options, provide test plans, develop implementation plans including integration with existing systems in the production environment, provide engineering support through transition to operations and "Early Life" of new or upgraded systems/services in production
• Design or assist with new implementations of the cybersecurity stack and, after Information Assurance review, coordinate the installation of them with the DevOps Engineer, Enterprise Operations, and relevant stakeholders
• Document cybersecurity architecture, including network port connectivity, and design choices of the associated applications (Low Level Design, High Level Design)

Qualifications

Required Education and Experience:

• Bachelor's degree and nine (9) years of experience; four (4) years of experience accepted in lieu of degree

Required Skills:

• Must have experience performing assessments of existing IT architecture for compliance with security requirements from applicable security frameworks (e.g., NIST 800-53)
• Experience evaluating proposed security architectures and designs and providing input as to the adequacy of those security designs to meet required security compliance objectives
• Minimum two (2) years leading organizational change resulting in improved performance outcomes
• Minimum five (5) years of experience with Check Point solutions
• Certified Information Systems Security Professional (CISSP) or CompTIA Advanced Security Practitioner (CASP+)
• Experience with the following technologies: Check Point, F5 SSLO, Gigamon, Cisco VPN, Trellix/FireEye (network appliances), DNS, NAT/PAT, Corelight, Cisco ISE, Forescout

Certifications:

• Certified Information Systems Security Professional CISSP or CompTIA Advanced Security Practitioner (CASP+) / SecurityX

Clearance Requirements:

• Must be able to obtain a full Secret Clearance; Interim Secret required prior to start

Desired Skills:

• ITIL V3 Foundation or ITIL V4 equivalent
• Amazon cloud experience (EC2, storage, virtual private networks, routing, subnetting)
• AWS Certified Solutions Architect or similar commercial cloud platform or infrastructure certifications
• At least one (1) year of direct experience performing assessments of existing IT architecture for compliance with security requirements from applicable security frameworks (e.g., NIST 800-53)
• Minimum one (1) year of direct experience leading transformation projects in the Federal environment
• Minimum two (2) years of experience evaluating proposed security architectures and designs and providing input as to the adequacy of those security designs to meet required security compliance objectives

Target salary range: $120,001 - $160,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.

SAIC accepts applications on an ongoing basis and there is no deadline.

Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.