Security Systems Engineer

  • SPRINGFIELD, VA
  • Posted 37 days ago | Updated 6 hours ago

Overview

On Site
Full Time

Skills

DOS
Configuration Management
Engineering support
Technical drafting
NIST 800-53
Authorization
System documentation
Systems architecture
Documentation
System implementation
Operations
Auditing
System security
Disaster recovery
Contingency plan
NIST SP 800 Series
Privacy
Test cases
Hardware QA
Evaluation
Microsoft Windows Server administration
Communication
Collaboration
Security clearance
Management
Problem analysis
Cloud computing
IDPS
LDAP
PKI
Analytical skill
ICAM
SailPoint
Active Directory
CISSP
Security+
Virtualization
VMware ESX
VMware ESXi
SAP BASIS
Policies
Information Technology
Systems engineering
FOCUS

Job Details

Job ID: 2411567

Location: SPRINGFIELD, VA, US

Date Posted: 2024-09-05

Category: Information Technology

Subcategory: IT Systems Engineer

Schedule: Full-time

Shift: Day Job

Travel: Yes, 10 % of the Time

Minimum Clearance Required: None

Clearance Level Must Be Able to Obtain: Top Secret

Potential for Remote Work: No

Description

The DOS-Systems Integrity Division support team currently has an opening for a Security Systems Engineer (Public Key Infrastructure (PKI) Systems Engineer) to support the Department of State (DoS) Bureau of Diplomatic Technology (DT) PKI program. This program provides transparent security services in support of the Department's goals to secure communications among Department staff and systems. The position falls under the "Vanguard 2.2.1" contract.

JOB DESCRIPTION

This is a mid-level PKI configuration management and engineering position focused on systems accreditation and authorization per NIST 8005.53 within the Vanguard 2.2.1 program.

The preferred candidate must possess good system engineering background and expertise in Systems Authorization and Accreditation (A&A), and NIST 800-53. Additionally, the preferred candidate should have some experience in providing IT engineering support in large enterprises.

This is a hybrid role and requires 3 days per week onsite in Springfield, VA. Some onsite work in Washington, DC may be required.

Responsibilities include:
  • The preferred candidate must possess strong skills in drafting policy documents and applying NIST 800-53 rev.4 controls to PKI systems. Providing full Systems authorization and Accreditation support to PKI systems owners throughout the life cycle of the system
  • Developing and updating systems documentation (e.g., ConOps, Operating procedures, systems architecture documents)
  • Identifying security risks to systems and suggest mitigations
  • Systems implementation or operations support
  • Systems PKI Policy/audit support
  • Systems Security plan, ConOps and disaster recovery planning
  • Managing and operating annual contingency planning exercises.

Qualifications

Required Education & Experience:
  • Bachelor's degree and 9 years of relevant work experience; Masters and 7 years; may accept additional experience in lieu of degree.
  • A minimum of 4 years applying NIST SP 800-53 rev.3 or rev.4 security and privacy controls to government IT systems
  • Background in developing test cases for software/hardware testing and developing test evaluation reports for stakeholders.
  • Excellent MS-Windows Server administration & maintenance background
  • Excellent oral and written communication skills
  • Interpersonal skills including the ability to collaborate effectively, self-awareness, and excellent written and oral communications.

Required Clearance:
  • ship.
  • Ability to obtain a Top Secret security clearance.
  • Ability to obtain an interim secret clearance prior to starting work.

Desired:
  • Performing product evaluations and making product recommendations.
  • Support the team responsible in managing and maintaining identity providing systems.
  • Providing problem analysis following any service issues to prevent recurrence.
  • Familiarity with Cloud IDPs and related technologies (Entra ID, Okta, Ping Federated, LDAP directories, PKI P) and security practices.
  • Excellent analytical and troubleshooting skills.
  • Working knowledge of Ms Entra ID and/or Okta.
  • Experience with ICAM products such as SailPoint, Radiant Logic, On-prem Active Directory.
  • CISSP, Security+, or similar certification.
  • Familiarity with Virtualization technologies (ESX/ESXi).


SAIC accepts applications on an ongoing basis and there is no deadline.

Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.


Employers have access to artificial intelligence language tools (“AI”) that help generate and enhance job descriptions and AI may have been used to create this description. The position description has been reviewed for accuracy and Dice believes it to correctly reflect the job opportunity.

About SAIC