Information System Security Engineer

Description

SAIC is seeking an Information System Security Engineer (ISSE) to join our team.  This position is in Arlington, VA and requires an active Top Secret/SCI clearance.   

Job responsibilities include, but are not limited to: 

• Implement and maintain cybersecurity controls in accordance with DoD policies, including NIST SP 800-53, RMF, and applicable STIGs. 
• Monitor network and system security, analyze security events, and respond to incidents in a timely manner. 
• Conduct vulnerability assessments and remediation activities using approved DoD tools and processes. 
• Collaborate with IT, engineering, and program teams to ensure security requirements are integrated into system designs and operations. 
• Assist in the preparation, review, and maintenance of security documentation, including System Security Plans (SSPs), Plan of Action & Milestones (POA&Ms), and risk assessments. 
• Support the Risk Management Framework (RMF) process for system accreditation and continuous monitoring, including activities related to obtaining and maintaining Authority to Operate (ATO). 
• Participate in security audits, inspections, and assessments, and assist with remediation of findings. 
• Stay current on emerging cyber threats, vulnerabilities, and DoD cybersecurity directives. 

Qualifications

Education Requirements: 

• Bachelor’s degree and five (5) years experience; Four (4) years' experience can be considered in lieu of degree. 

Clearance Requirements:

• Must possess and maintain an active TS/SCI clearance; US Citizenship required.

Required Skills: 

• Experience with DoD cybersecurity tools (e.g., ACAS, ESS, SIEM platforms, Evaluate-STIG, and STIG Viewer). 
• Familiarity with network protocols, firewalls, intrusion detection/prevention systems, and endpoint security. 
• Experience with Network Access and Authentication to include RADIUS (NPS, ISE, ClearPass), 802.1X Wired/Wireless Authentication, and Device Posture Validation. 
• Red Hat Enterprise Linux and Windows Server administration. 
• Scripting language such as PowerShell or Python. 
• Active Directory and Group Policy administration. 
• Certifications: CISSP / CASP+ / CISM / CCSP, Security+, Azure Security or Administrator Certifications, Network Security Certifications. 

Desired Skills: 

• Experience working in a Microsoft Azure cloud environment.