System Engineer

System Engineer

Requirements

• An ACTIVE and MAINTAINED SECRET Federal or DoD security clearance.
• Bachelor’s degree.
• THREE (3) or more years of experience in engineering and/or deploying complex IT systems.
• Knowledge and experience designing, analyzing, and managing complex IT systems.
• Familiarity supporting Information Assurance Programs setting policy, governance, and security operations programs.
• Experience using data analysis to drive system and configuration enhancement for scanning and security applications.
• Experience using automation and scripting to deploy and monitor systems.
• Technical hands-on experience in troubleshooting and system support.
• Good project management skills.
• Excellent written, oral, and interpersonal communication skills to be able to communicate ideas in both technical and user-friendly language.
• Strong customer service orientation and ability to work in a team-oriented, collaborative environment.

Responsibilities

• Provide Comprehensive System Architecture and Engineering services.
• Perform system and requirement analysis, system design, development, deployment and maintenance.
• Develop system design models, specifications, and configurations in collaboration with security specialist.
• Support development of disaster recovery plan and continuity of operation plan.
• Plan and implement system modernization.
• Design and conduct server and security audits, system backup procedures and recovery processes.
• Identify/assessing security controls and technologies that will enforce the Departments security policies as mandated during security reviews and product evaluations; and
• Design, build, test, and implement security systems within an organization’s IT network.
• Documenting the system security architecture to provide recommendations of improvements to the Government for review and approval.
• Anticipates possible security risks, identify areas of weakness, and respond effectively to possible security breaches.
• Reviewing current system security measures and recommending and implementing enhancements.
• Conducting regular system tests and ensuring continuous monitoring of network security.
• Developing project timelines for ongoing system upgrades.
• Provide program/portfolio management, process improvement, cyber support.
• Ensuring Capital Planning and Investment Control (CPIC) processes with incorporated security controls described in IT investments are mapped to the security architecture.
• Participate in teams designing and implementing IT initiatives, with a specific focus on the security implications of design or operational decisions. Furnish technical assistance and advice, based upon existing standards and SOPs to ensure security is considered throughout the system’s lifecycle.
• Assist in the performance of Security Assessment and Authorization (SA&A) and related activities IT security reviews in accordance with NIST SP 800-53 and Risk Management Framework. Review documentation, interview key personnel, and evaluate adherence to relevant policy and procedure. Document and catalog issues found, with recommendations for remediation.
• Research new and novel tactics, techniques, and procedures (TTP) to protect data and privacy.
• Conduct research into systems issues and products as required.
• Perform in-depth analysis and or security testing of information systems, using a wide variety of tools and techniques. Review test results for accuracy, probability, and impact.
• Report issues to senior team members and technical subject matter experts; retest as needed to validate corrective actions.

Preferred Qualifications

• An ACTIVE and MAINTAINED TOP SECRET Federal or DoD security clearance
• Bachelor’s degree in Computer Science, Information Systems, Engineering, Math, or other related scientific/technical discipline.
• Certified Systems Engineering Professional (CSEP)
• ITIL or PMP is a plus.
• FIVE (5) or more years of Cybersecurity hands-on experience in providing security engineering and integration support to protect the confidentiality, integrity and availability of an organization’s systems and application data.
• THREE (3) or more years of combined operational experience designing, operating, troubleshooting Cloud solutions (AWS preferred)
• TWO (2) or more years of experience migrating systems to Cloud-based solutions
• TWO (2) or more years of experience designing and deploying systems aligned with Zero Trust Architecture principles, threat scenarios, reference architectures, and governance frameworks.
• The candidate will complete meetings daily with the client, assist in building standards and metrics, assist in completing presentations for the client, and execute the daily tasks assigned to the role.
• The candidate must have client service experience and strong communication skills (both oral and written) and presentation skills.
• The ideal candidate will be highly technical and should possess an advanced understanding across a broad range of IT system technologies and will take a proactive approach to cyber incidents. The candidate should have several years of experience working with each phase of the Incident Response Life Cycle in NIST and ISO standards and should have hands-on experience in creating and executing cyber hunting missions. The candidate must be a world-class problem-solver with the ability to handle challenges under pressure.
• Familiarity with and knowledge of information security solutions including data loss prevention; intrusion detection and prevention; network security monitoring; and vulnerability management in global environments.