Senior CND Engineer

Description

SAIC is seeking a skilled and motivated Cyber Network Defense (CND) Engineer to join our MAJESTIC Joint Program Office (JPO) Team in support of a critical on-premises enterprise IT environment. As a CND Engineer, you will play a key role in assessing, managing, and improving the security posture of enterprise IT infrastructure, ensuring compliance with cybersecurity standards, and mitigating vulnerabilities and threats to the organization.

This role requires a blend of auditing, analytical, and operational skills to ensure systems are compliant, secure, and well-prepared to counter threats. You will be instrumental in designing systems that support operations and intelligence collection capabilities while leveraging advanced tools, thorough assessments, and proactive defense measures. This position is reserved for those who are passionate about cybersecurity and protecting critical networks.

All work must be performed on-site in Springfield, VA.

Key Responsibilities: 

• Assess and audit systems and networks to identify deviations from acceptable configurations, enclave policies, or local policies
• Evaluate incident response procedures and capabilities to ensure readiness for detecting, responding to, and mitigating cyber threats
• Exploit system and network vulnerabilities and misconfigurations for gathering data from target systems or adversary networks to enable operations and intelligence collection capabilities
• Leverage computer networks to disrupt, deny, degrade, or destroy information resident in computers and networks or the computer systems themselves
• Identify, evaluate, and report cybersecurity vulnerabilities and recommend actionable mitigations
• Review and validate system configurations, changes, and security controls for compliance and effectiveness
• Provide monitoring and analysis to detect signs of exploitation, unauthorized activity, or abnormal patterns
• Maintain detailed audit documentation including risk assessments, compliance verification, and remediation plans
• Collaborate with stakeholders such as Systems Administrators, Network Engineers, and Cybersecurity Analysts to address risks

Qualifications

Required Qualifications:

Education:

• Bachelor’s Degree

Certifications (CWF Requirements):

• Candidates must satisfy Cybersecurity Workforce Framework (CWF) ID 511 (Cyber Defense Analyst) or 531 (Cyber Defense Auditor, Intermediate Level) requirements, as outlined by Navy COOL
  This requirement can be met by possessing one or more of the following qualifying certifications: 
• Certified Ethical Hacker (CEH/Practical) 
• CompTIA Cloud+ 
• CompTIA PenTest+ 
• CompTIA Security+ 
• Federal IT Security Professional-Operator-NG (FITSP-O) 
• GIAC Certified Enterprise Defender (GCED) 
• GIAC Continuous Monitoring Certification (GMON) 
• GIAC Defensible Security Architecture (GDSA) 
• GIAC Response and Industrial Defense (GRID) 
• GIAC Security Essentials Certification (GSEC) 
• GIAC Certified Incident Handler (GCIH) 
• GIAC Security Essentials Certification (GSEC) 
• Rocheston Certified Cybersecurity Engineer (RCCE) Level 1 
• Certified Cloud Security Professional (CCSP) 
• Cisco Certified Network Associate (CCNA) Cybersecurity (formerly Cisco Cybersecurity Associate) 
• EC-Council Certified Incident Handler (ECIH) 
• Federal IT Security Professional-Operator-NG (FITSP-O) 

OR This requirement can be met through: 

• A Bachelor’s Degree in Cybersecurity, Computer Science, IT, or a related field

Experience: 

• 5-9 years of experience performing security audits, compliance assessments, or Cyber Network Defense-related (CND) functions in an enterprise IT environment

Technical Skills: 

• Proficiency with auditing tools (e.g., Splunk, Nessus, ACAS) and experience with Windows/Linux security configurations
• In-depth knowledge of cybersecurity frameworks (e.g., NIST 800-53, RMF, ICD 503, DoD 8510.01)
• Familiarity with database security for platforms like SQL Server and Oracle

Clearance Requirement: 

• Active TS/SCI clearance with the ability to obtain and maintain a TS/SCI with Poly

Work Environment and Notes: 

• On-site Work: All work must be conducted on-site in Springfield, VA
• Program Scope: Supports on-premises enterprise IT environments including virtualized Windows/Linux servers, databases, and networking layers
• Subcontractor Role: Salary and responsibilities vary by billet, with cap limitations based on the subcontractor agreement