Information Assurance Security Engineer

Type of Requisition: Regular Clearance Level Must Currently Possess: Top Secret/SCI Clearance Level Must Be Able to Obtain: Top Secret SCI + Polygraph Public Trust/Other Required: None Job Family: Cyber and IT Risk Management Job Qualifications: Skills: Computer Security, Data Security, Security Policies Certifications: None Experience: 10 + years of related experience US Citizenship Required: Yes Job Description: Transform technology into opportunity as an Information Assurance Security Engineer with GDIT. A career in enterprise IT means connecting and enhancing the systems that matter most. At GDIT you'll be at the forefront of innovation and play a meaningful part in improving how agencies operate. At GDIT, people are our differentiator. As an Information Assurance Security Engineer, you will help ensure today is safe and tomorrow is smarter. Our work depends on a TS/SCI cleared Information Security Engineer joining our team to support our intelligence customer in Springfield, VA or Arnold, MO. HOW AN INFORMATION ASSURANCE SECURITY ENGINEER WILL MAKE AN IMPACT Position Summary: General Dynamics Information Systems (GDIT) is seeking a Security Engineer to provide expert technical services on all aspects of Information Security. Responsible for writing information security policy drafts, writing and reviewing Memorandum of Agreements and coordinating and managing all aspects of the Certification and Accreditation. Advise and assess system design/architecture as well as defining, designing and evaluating information security systems. Manage multi-agency information sharing and integration security. Maintain affiliations with high-level personnel at multiple agencies and organizations involved in Information Security. Tasking includes incident response, system access approval, audit log review, Configuration Control Board and daily consultations/consulting on a wide variety of security issues. Report, document and investigate all security related incidents; assist with development and implementation of corrective measures. Unique/Additional Requirements: Candidate must have knowledge of and experience with ICD 503 and be familiar with Cloud Infrastructure/AWS-based solutions. Candidate must possess IAM II certification to start in accordance with DOD 8570.1M. This position is defined as in 8570.1M chapter 4, pg 35. Candidate is required to understand how our customer's RMF process work and how systems security requirements will be met. Candidate will work with all IT groups to build IT systems with security planned from the start. Work with developers, system engineers, project managers, and users to identify the level of protection systems will need. Understand and be able to identify what group or process will satisfy security requirement. •Act as the representative of the Information System Security Manager ensuring compliance with IS security procedures. •Support efforts to operate, maintain, and dispose of information system materials in accordance with security directives, policies and practices and as annotated in Systems Security Plans. •Generate and implementation of requisite security training ensuring user security awareness of responsibilities prior to system access. •Initiate protective and corrective measures when incident or vulnerabilities are discovered. •Ensure IA hardware and software complies with security configuration guides. •Implement and enforce IA policies and procedures as defined by A&A documentation. •Ensure users are aware of their IA responsibilities. •The ability to work on multiple projects/tasks at once and operate in a dynamic, fast-paced, team-oriented environment. •Perform Operations & Sustainment (O&S) functions for the NCE network security infrastructure (firewalls, web gateways, mail gateways, ids, load balancers, performance monitoring tools, mgt systems, etc) •Perform maintenance and/or advanced configuration of equipment in order to protect the network from emerging cyber threats •Experience with Cloud Infrastructure/AWS-based technology •Experience using security tools such as ACAS, HBSS, Carbon Black, Tanium, RedSeal, and EMET •Conduct forensic traffic/log analysis to isolate issues or respond to analyst alerts •Respond to escalated troubleshooting requests •Maintain and administer network infrastructure standards, documentation and fault tolerance •Present Monitoring/Test Results and Reports as required •Perform/support integration testing as required •Participates in special projects as required. •Ability to review Plan of Action and Milestones (POA&Ms) and conduct a technical decomposition categorization, remediation, and lien resolution •Execute remediation process to implement technical solutions to address vulnerability findings via ACAS security scan. •Experience installing, hardening, deploying, documenting, and troubleshooting network perimeter security technologies. •Experience and scripting ability on Unix and/or RHEL OS •Experienced with complex Microsoft macros, and PowerShell scripts •Basic understanding of Windows Enterprise AD architecture and VMWare Virtualization •Must be proficient in network routing/vlan technology Desired Knowledge, Experience and Skills: •CISSP certification or equivalent (CAP, GSLC, CISM) •System administration experience •Network engineering experience System design and development experience Defines, plans, designs, and evaluates information security systems. Assesses architecture and current hardware limitations, defines and designs system specifications, input/output processes and working parameters for hardware/software compatibility. Performs a variety of complex tasks associated with information security ranging from the design of security components to complex architectures. Supervise the work of other engineers performing a variety of information security tasks. WHAT YOU'LL NEED TO SUCCEED: EDUCATION Bachelors Degree in Computer Science or a related technical discipline, or the equivalent combination of education, professional training or work experience. QUALIFICATIONS 10-15 years of related experience in data security administration. Location: Customer Site US Citizenship Required GDIT IS YOUR PLACE At GDIT, the mission is our purpose, and our people are at the center of everything we do. ● Growth: AI-powered career tool that identifies career steps and learning opportunities ● Support: An internal mobility team focused on helping you achieve your career goals ● Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off ● Community: Award-winning culture of innovation and a military-friendly workplace OWN YOUR OPPORTUNITY Explore a career in cyber at GDIT and you’ll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters. #RoverGSS The likely salary range for this position is $142,792 - $159,850. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range. Scheduled Weekly Hours: 40 Travel Required: None Telecommuting Options: Onsite Work Location: USA VA Springfield Additional Work Locations: USA MO Arnold Total Rewards at GDIT: Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most. Our Identity Verification Process: As part of the hiring process, we will ask you to complete an identity verification process that leverages advanced biometrics and artificial intelligence to ensure authenticity and protect against identity fraud. You are expected to be on camera during virtual interviews. We reserve the right to take your picture to verify your identity and prevent fraud. By proceeding, you authorize the collection, processing, and use of your biometric data for identity verification and security purposes. About Our Work: We are GDIT. A global technology and professional services company that delivers consulting, technology and mission services to every major agency across the U.S. government, defense and intelligence community. Our 26,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50 countries worldwide, offering leading capabilities in digital modernization, AI/ML, Cloud, Cyber and application development. Together with our clients, we strive to create a safer, smarter world by harnessing the power of deep expertise and advanced technology. Join our Talent Community to stay up to date on our career opportunities and events at gdit.com/tc. Equal Opportunity Employer / Individuals with Disabilities / Protected Veterans Opportunity Owned From working with technologies like AI, cyber and cloud to careers in intelligence and health, we offer endless opportunities to apply your expertise to create a safer, smarter world. For more information about GDIT's Privacy Policy, click here: Privacy Policy | GDIT