Cyber Engineer Senior

  • BELTSVILLE, MD
  • Posted 22 days ago | Updated moments ago

Overview

On Site
Full Time

Skills

NIST SP 800 Series
Microsoft Operating Systems
Certified Ethical Hacker
Resource management
Threat analysis
Incident management
Information Technology
IT infrastructure
System security
IT management
Microsoft Office
Operating systems
Risk assessment
Trend analysis
Active Directory
System Center
Configuration Management
Event management
Computer science
Computer engineering
Network security
Cloud computing
SaaS
Vulnerability management
Identity management
Systems management
Performance monitoring
Vulnerability scanning
Information systems
Information security
Systems engineering
Security clearance
Cyber security
C
Management
Leadership
Metrics
Software deployment
Testing
Microsoft
Collaboration
IMPACT
Qualys
Nessus
Dashboard
SIEM
Operations
Microsoft SCCM
Microsoft SCOM
Planning
Analytical skill
Splunk
Netwitness
McAfee
OMB
National Institute of Standards and Technology
Linux
iOS development
Multi-factor authentication
PKI
SAML
Firewall
Antivirus
Servers
Routers
Network
Microsoft Certified Professional
CISSP
CISM
ISACA
CISA
SCP
Cisco
Cisco Certifications
SAP BASIS
Policies
FOCUS

Job Details

Job ID: 2407497

Location: BELTSVILLE, MD, US

Date Posted: 2024-05-28

Category: Cyber

Subcategory: Cyber Engineer

Schedule: Full-time

Shift: Day Job

Travel: Yes, 25 % of the Time

Minimum Clearance Required: Secret

Clearance Level Must Be Able to Obtain: Top Secret

Potential for Remote Work: No

Description

SAIC is seeking a highly motivated Senior Cyber Engineer. The successful candidate will provide support to the Cybersecurity Integrity Center (CIC) in the Department of State Bureau of Information Resource Management (IRM). Duties are in the Washington, D.C. metropolitan area (30% in downtown D.C; 70% in Beltsville, MD). The CIC supports cybersecurity monitoring, threat analysis, incident response, and infrastructure remediation within and across all of the State Department's information technology (IT) infrastructure. The CIC coordinates and collaborates with other State Department bureaus as well as other organizations within the Federal Government, and commercial partners.

Work is performed onsite 3+ days/week in a 24x7x365 operation and shifts available are to be determined.

Description of Duties
The Senior Systems Security Engineer/SME provides technical leadership, guidance and management oversight for the CIC, especially in the area of Microsoft products and security systems, but also including other enterprise server & desktop operating systems enterprise applications, and in support of over 80,000 customers globally. The Senior Systems Security Engineer/Subject Matter Expert (SME) will:
  • Apply sound technical and management principles to identify and remediate cybersecurity --vulnerabilities across the State Department global IT enterprise infrastructure.
  • Apply organizational and process change principals.
  • Provide technical leadership and guidance to security and operational personnel.
  • Evaluate system performance results, lead teams in response to incidents/problems, perform risk assessments, and evaluate performance metrics.

Responsibilities include:
  • Develop, Identify and resolve security vulnerabilities related to deployment and testing processes.
  • Streamline and optimize processes and procedures in order to rapidly remediate vulnerabilities from cybersecurity threats.
  • Identify and remediate cybersecurity vulnerabilities.
  • Provide detailed assessments of potential risks to Microsoft-based systems, including both operating systems and applications, in accordance with NIST SP 800-30 Revision 1.
  • Collaborate with Department and external cyber stakeholders on cybersecurity technology implementations to meet specific operational needs.
  • Perform technical evaluations of recommended vulnerability mitigation actions and make recommendations based on impact and/or other countermeasures.
  • Develop strategies for CIC cyber defense technologies, ensuring integration and alignment for continued operation.
  • Perform operation and maintenance activities in support of existing CIC cyber tools and technologies (MSV, Qualys, Tenable Nessus and others).
  • Identify, diagnose and prioritize anomalies in cyber defense infrastructure and resources.
  • Document, request and maintain ports, protocols and services for CIC infrastructure.
  • Perform cybersecurity testing of developed applications and/or systems. Identify and direct the remediation of technical problems encountered during testing and implementation of new systems.
  • Develop reports and dashboards and make tuning request to SIEM system owner(s) in support of enhancing CIC cyber monitoring.
  • Perform security reviews and identify security gaps in architecture. Make recommendations based on trend analysis to enhance CIC monitoring and hygiene activities.
  • Properly document all systems security implementation, operations, and maintenance activities and update as necessary.

Qualifications

Required Education & Experience
  • Bachelors and ten (10) years or more experience; Masters and seven (7) years or more experience; additional experience may be accepted in lieu of degree.
  • Experience with Microsoft Operating Systems (OS) engineering and support experience focusing on Active Directory (AD), System Center Configuration Manager (SCCM), System Center Operations Manager (SCOM).
  • In-depth experience in planning, implementing, and managing large/global enterprise infrastructures.
  • Familiarity of various analytical tools (Splunk, USBDeview, Netwitness, MimiKatz).
  • Understanding of Security Information and Event Management (SIEM) tools (Splunk, McAfee).
  • Familiarity with OMB, NIST, DHS, and related security guidelines and directives.
  • Interpersonal skills including the ability to collaborate effectively, and excellent written and oral communications.

Required Clearance
  • ship.
  • Active Secret Clearance with the ability to obtain Top Secret Clearance.
  • Active Top Secret is preferred.

Desired Education, Skills & Experience
  • Bachelor degree in a computer science/computer engineering related discipline or equivalent years of experience and expertise.
  • Network security architecture concepts including topology, protocols, components, and principles (e.g., application of defense-in-depth).
  • Server/endpoint OS (Microsoft, Linux, IOS) along with mobile and cloud technologies.
  • Cloud application security, Vulnerability Management and Security Information, and Event Management capabilities.
  • Knowledge of identity and access management solutions (MFA, PKI, SAML, etc..)
  • Countermeasures / mitigations to identified cybersecurity risks.
  • Information protection technologies (e.g., firewalls, antivirus, threat protection, servers, routers, and others as appropriate).
  • Network systems management principles, models, methods (e.g., end-to-end systems performance monitoring), and tools.
  • Cyber defense technologies, including but not limited to: Vulnerability Scanning & Management, Endpoint detection and response, threat protection, and network defenses.

Desired Certifications
  • Microsoft Certifications (MCSE, MCSA, MCSD);
  • CISSP or CISM;
  • IAT/IAM/IASAE level III equivalent.
  • ISACA Certified Information Systems Auditor (CISA).
  • GIAC Security Expert (GSE).
  • SCP Security Certified Network Architect (SCNA).
  • ISACA Certified Information Security Manager (CISM).
  • Certified Network Defense Architect (CNDA) or Certified Ethical Hacker (CEH).
  • Cisco Certified Network Professional (CCNP).


SAIC accepts applications on an ongoing basis and there is no deadline.

Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.


About SAIC