Saic
Security Systems Engineer
Saic, Springfield, Virginia, us, 22161
Description
The DOS-Systems Integrity Division support team currently has an opening for a Security Systems Engineer (Public Key Infrastructure (PKI) Systems Engineer) to support the Department of State (DoS) Bureau of Diplomatic Technology (DT) PKI program. This program provides transparent security services in support of the Department’s goals to secure communications among Department staff and systems. The position falls under the "Vanguard 2.2.1" contract.
JOB DESCRIPTION
This is a mid-level PKI configuration management and engineering position focused on systems accreditation and authorization per NIST 800-53 within the Vanguard 2.2.1 program.
The preferred candidate must possess a good system engineering background and expertise in Systems Authorization and Accreditation (A&A), and NIST 800-53. Additionally, the preferred candidate should have some experience in providing IT engineering support in large enterprises.
This is a hybrid role and requires 3 days per week onsite in Springfield, VA. Some onsite work in Washington, DC may be required.
Responsibilities include:
The preferred candidate must possess strong skills in drafting policy documents and applying NIST 800-53 rev.4 controls to PKI systems, providing full Systems authorization and Accreditation support to PKI systems owners throughout the life cycle of the system.
Developing and updating systems documentation (e.g., ConOps, Operating procedures, systems architecture documents).
Identifying security risks to systems and suggesting mitigations.
Systems implementation or operations support.
Systems PKI Policy/audit support.
Systems Security plan, ConOps, and disaster recovery planning.
Managing and operating annual contingency planning exercises.
Qualifications
Required Education & Experience:
Bachelor’s degree and 9 years of relevant work experience; Masters and 7 years; may accept additional experience in lieu of degree.
A minimum of 4 years applying NIST SP 800-53 rev.3 or rev.4 security and privacy controls to government IT systems.
Background in developing test cases for software/hardware testing and developing test evaluation reports for stakeholders.
Excellent MS-Windows Server administration & maintenance background.
Excellent oral and written communication skills.
Interpersonal skills including the ability to collaborate effectively, self-awareness, and excellent written and oral communications.
Required Clearance:
US Citizenship.
Ability to obtain a Top Secret security clearance.
Ability to obtain an interim secret clearance prior to starting work.
Desired:
Performing product evaluations and making product recommendations.
Support the team responsible for managing and maintaining identity providing systems.
Providing problem analysis following any service issues to prevent recurrence.
Familiarity with Cloud IDPs and related technologies (Entra ID, Okta, Ping Federated, LDAP directories, PKI P) and security practices.
Excellent analytical and troubleshooting skills.
Working knowledge of Ms Entra ID and/or Okta.
Experience with ICAM products such as SailPoint, Radiant Logic, On-prem Active Directory.
CISSP, Security+, or similar certification.
Familiarity with Virtualization technologies (ESX/ESXi).
SAIC accepts applications on an ongoing basis and there is no deadline.
Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.
#J-18808-Ljbffr
The DOS-Systems Integrity Division support team currently has an opening for a Security Systems Engineer (Public Key Infrastructure (PKI) Systems Engineer) to support the Department of State (DoS) Bureau of Diplomatic Technology (DT) PKI program. This program provides transparent security services in support of the Department’s goals to secure communications among Department staff and systems. The position falls under the "Vanguard 2.2.1" contract.
JOB DESCRIPTION
This is a mid-level PKI configuration management and engineering position focused on systems accreditation and authorization per NIST 800-53 within the Vanguard 2.2.1 program.
The preferred candidate must possess a good system engineering background and expertise in Systems Authorization and Accreditation (A&A), and NIST 800-53. Additionally, the preferred candidate should have some experience in providing IT engineering support in large enterprises.
This is a hybrid role and requires 3 days per week onsite in Springfield, VA. Some onsite work in Washington, DC may be required.
Responsibilities include:
The preferred candidate must possess strong skills in drafting policy documents and applying NIST 800-53 rev.4 controls to PKI systems, providing full Systems authorization and Accreditation support to PKI systems owners throughout the life cycle of the system.
Developing and updating systems documentation (e.g., ConOps, Operating procedures, systems architecture documents).
Identifying security risks to systems and suggesting mitigations.
Systems implementation or operations support.
Systems PKI Policy/audit support.
Systems Security plan, ConOps, and disaster recovery planning.
Managing and operating annual contingency planning exercises.
Qualifications
Required Education & Experience:
Bachelor’s degree and 9 years of relevant work experience; Masters and 7 years; may accept additional experience in lieu of degree.
A minimum of 4 years applying NIST SP 800-53 rev.3 or rev.4 security and privacy controls to government IT systems.
Background in developing test cases for software/hardware testing and developing test evaluation reports for stakeholders.
Excellent MS-Windows Server administration & maintenance background.
Excellent oral and written communication skills.
Interpersonal skills including the ability to collaborate effectively, self-awareness, and excellent written and oral communications.
Required Clearance:
US Citizenship.
Ability to obtain a Top Secret security clearance.
Ability to obtain an interim secret clearance prior to starting work.
Desired:
Performing product evaluations and making product recommendations.
Support the team responsible for managing and maintaining identity providing systems.
Providing problem analysis following any service issues to prevent recurrence.
Familiarity with Cloud IDPs and related technologies (Entra ID, Okta, Ping Federated, LDAP directories, PKI P) and security practices.
Excellent analytical and troubleshooting skills.
Working knowledge of Ms Entra ID and/or Okta.
Experience with ICAM products such as SailPoint, Radiant Logic, On-prem Active Directory.
CISSP, Security+, or similar certification.
Familiarity with Virtualization technologies (ESX/ESXi).
SAIC accepts applications on an ongoing basis and there is no deadline.
Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.
#J-18808-Ljbffr