Systems Security Engineer

Job ID: 2508107

Location: BELTSVILLE, MD, US

Date Posted: 2025-07-31

Category: Cyber

Subcategory: Cybersecurity Ops

Schedule: Full-time

Shift: Day Job

Travel: No

Minimum Clearance Required: Top Secret

Clearance Level Must Be Able to Obtain: None

Potential for Remote Work: No

Description

SAIC is seeking a highly motivated Systems Security Engineer. The successful candidate will provide support to the Cybersecurity Integrity Center in the Department of State Bureau of Diplomatic Technology (DT). Duties are in the Washington, D.C. metropolitan area (30% in downtown D.C; 70% in Beltsville, MD). Supports cybersecurity monitoring, threat analysis, incident response, and infrastructure remediation within and across all the State Department's information technology (IT) infrastructure. Coordinates and collaborates with other State Department bureaus as well as other organizations within the Federal Government, and commercial partners.

Description of Duties:

The Systems Security Engineer collaborates with Department and external cyber stakeholders on cybersecurity technologies with experience in Microsoft products and security systems, network topology and protocols, enterprise server & desktop operating systems, and applications, in support of over 80,000 customers globally. The Systems Security Engineer will:

• Apply sound technical and management principles to identify and remediate cybersecurity --vulnerabilities across the State Department global IT enterprise infrastructure
• Provides highly technical expertise and guidance in the design, implementation, operation, and maintenance of database management systems within a cybersecurity environment.
• Perform operation and maintenance activities in support of existing cyber tools and technologies (MSV, Qualys, Tenable Nessus and others).
• Apply preventive measures, system monitoring, and data analysis.
• Provide technical leadership and guidance to security and operational personnel.
• Evaluate system performance results, in response to incidents/problems, perform risk assessments, and evaluate performance metrics.

Responsibilities include:

• Experience using system, network, and OS hardening techniques. (e.g., remove unnecessary services, Password policies, network segmentation, enable logging, least privilege, etc.).
• Develop, Identify, and resolve security vulnerabilities related to deployment and testing processes.
• Assist with streamlining and optimizing processes and procedures to rapidly remediate vulnerabilities from cybersecurity threats.
• Collaborate across State Department bureaus and other Government Agencies to plan and implement system changes as they relate to cybersecurity and CISA guidelines.
• Provide detailed assessments of potential risks to Microsoft-based systems, including both operating systems and applications, in accordance with NIST guidelines.
• Identify infrastructure requirements for new and existing cyber capabilities. Work with responsible offices to ensure proper system provisioning, monitoring and mitigations.
• Perform technical evaluations of recommended vulnerability mitigation actions and make recommendations based on impact and/or other countermeasures.
• Develop strategies for cyber defense technologies, ensuring integration and alignment for continued operation.
• Perform operation and maintenance activities in support of existing cyber tools and technologies (MSV, Qualys, Tenable Nessus and others).
• Identify, diagnose and prioritize anomalies in cyber defense infrastructure and resources.
• Develop reports and dashboards and make tuning requests to SIEM system owner(s) in support of enhancing cyber monitoring.
• Perform security reviews and identify security gaps in architecture and make recommendations based on trend analysis to enhance monitoring and hygiene activities.
• Properly document all systems security implementation, operations, and maintenance activities and update as necessary.

Qualifications

Required Education & Experience:

• Bachelor's and 5 years or more experience; master's and 3 years or more experience; may accept additional experience in lieu of degree.
• Familiarity with OMB, NIST, CISA, and related security guidelines and directives.
• Interpersonal skills including the ability to collaborate effectively, and excellent written and oral communications.
• Information protection technologies (e.g., firewalls, antivirus, threat protection, servers, routers, and others as appropriate).
• Familiarity with countermeasures and mitigations to identify cybersecurity risks.

Required Clearance:

• ship.
• Active Top Secret Clearance.

Desired Education, Skills & Experience:

• Bachelor's degree in computer science/computer engineering related discipline or equivalent years of experience and expertise.
• 3 to 5 years Microsoft Operating Systems (OS) engineering and support experience focusing on Active Directory (AD), and System Center Configuration Manager (SCCM).
• Knowledge of State Department OCONUS and CONUS unclassified and classified network service providers.
• In-depth experience in planning, implementing, and managing large/global enterprise infrastructures.
• Familiarity of various analytical tools (Splunk, Fluke, USBDeview, Netwitness, MimiKatz).
• Understanding of Security Information and Event Management (SIEM) tools (Splunk, McAfee) and National Vulnerability Database (NVD)
• Familiarity with Forensic and Incident Handling.
• Familiarity with MITRE ATT&CK Framework, Wireshark and Qualys.
• Cyber defense technologies, including but not limited to: Vulnerability Scanning & Management, Endpoint detection and response, threat protection, and network defenses.
• Familiarity with Cloud application security, Vulnerability Management and Security Information, and Event Management capabilities.
• Knowledge of identity and access management solutions (MFA, PKI, SAML, etc.).
• Knowledge of Artificial Intelligence (AI).
• Network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools.

Desired Certifications:

• Microsoft Certifications (MCSE, MCSA, MCSD).
• CISSP or CISM; or CompTIA Cybersecurity Analyst (CySA+).
• IAT/IAM/IASAE level III equivalent.
• ISACA Certified Information Systems Auditor (CISA).
• GIAC Security Expert (GSE).
• GIAC Certified Incident Handler (GCIH).
• ISACA Certified Information Security Manager (CISM).
• Certified Ethical Hacker (CEH).
• Cisco Certified Network Associated (CCNA).

Target salary range: $120,001 - $160,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.