System Security Engineer - San Diego, United States - SAIC

    SAIC
    SAIC San Diego, United States

    1 month ago

    Default job background
    Description
    System Security Engineer


    SAIC is seeking a System Security Engineer on the Revolutionary Information Technology Services (RITS) program in support of the United States Army Corps of Engineers (USACE).

    This position is remote with a possibility of limited travel within the United States.


    DUTIES AND RESPONSIBILITIES
    Perform analysis and evaluation to design, implement, test and field secure systems and architectures
    Assess system compliance against NIST and DOD security requirements to include the NIST controls and DISA Security Technical Implementation Guides (STIGs) and Security Requirements Guides (SRGs)
    Produce evidence as necessary to support compliance status of NIST and DOD security requirements
    Work with system administrators, engineers, and ISSM (Information Systems Security Manager) to create or update system/site policies, procedures, and process guides
    Experience with Assured Compliance Assessment Solution (ACAS) and Host Based Security System (HBSS)
    Collaborate openly and frankly with all internal and external partners, such as Government Engineers, Contractor Engineers, Contractor Operations staff, Management, and 3rd party vendors
    Work independently, help others and ask for help without hesitation
    Ensure timely delivery of all Engineering Service Requests, removing any obstacles to completing work as scheduled
    Perform risk analysis of each Engineering Service Request, and inform all stakeholders of the applicable risks
    In coordination with Government partners, prioritize workload

    Provide technical guidance and leadership on the Cyber Security needs of all software and hardware used in the Corps of Engineers' environment, which includes, in part, products by Cisco, Palo Alto, Microsoft, Symantec, McAfee, Computer Associates, Trellix, Imperva, etc.

    , and the integration of new Cyber Security products within the Corps of Engineers' environment
    Provide guidance to the Enterprise Operations on technical solutions and provide Tier 4 support
    Provide weekly status reports to the security engineering lead
    Continually enhance the performance of the Engineering team, Corps environment and Operational support through continual process improvement, automation, full utilization of existing tool sets, and recommendations for new tools
    Develop or analyze requirements in a Requirements Traceability Matrix, design and develop solution options, provide test plans, develop implementation plans including integration with existing systems in the production environment, provide engineering support through transition to operations and "Early Life" of new or upgraded systems/services in production, provide tools, processes and procedures for monitoring/performance measurement, event detection, problem identification and remediation, and troubleshooting assistance as needed after deployment
    In collaboration with the Government Engineer, bring proposed changes to the Change Advisory Board
    Perform detailed market research, develop Bills of Materials for Government consumption
    Assist with, or design new implementations of the Cyber Security stack, and after Information Assurance review, coordinate the installation of them with the DevOps Engineer, Enterprise Operations, and relevant stakeholders
    Document Cyber Security architecture, including network port connectivity, and design choices of the associated applications (Low Level Design, High Level Design)
    Documenting new process and procedures as related to new infrastructure
    Provide secure, reliable, and high performing configurations of the Cyber Security environments
    Qualifications

    Required Qualification
    BS Degree and 9+ years of experience; four (4) years of experience accepted in lieu of degree
    Must haveexperience performing assessments of existing IT architecture for compliance with security requirements fromapplicable security frameworks (e.g., NIST

    Experience evaluating proposed security architectures and designs and providing input as to the adequacy of those security designs to meet required security compliance objectives.

    Experience with Assured Compliance Assessment Solution (ACAS) or Host Based Security System (HBSS) and/or Endpoint Security Solutions (ESS)


    Desired Qualification:
    ITIL V3 Foundation or ITIL V4 equivalent
    Amazon cloud experience (EC2, storage, virtual private networks, routing, subnetting)


    Certifications:
    Certified Information Systems Security Professional CISSP or CompTIA Advanced Security Practitioner (CASP+)

    Clearance Requirements:
    Must be able to obtain a full Secret Clearance; Interim Secret required prior to start, SAIC will help to obtain
    Must be a current US Citizen

    Target salary range:
    $125,001 - $150,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.

    SAIC accepts applications on an ongoing basis and there is no deadline.

    Covid Policy:
    SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.
    #J-18808-Ljbffr