Security Compliance Engineer

Clearance Level
None
Category
Information Security
Locations
Washington, District of Columbia
Remote, Based in District of Columbia

REQ#: RQ92891

Travel Required: Less than 10%
Public Trust: BI Full 6C (T4)
Requisition Type: Regular

We are GDIT, one of the largest IT and mission services providers to the government. We offer our customers the power of choice through a vast cloud ecosystem. 

GDIT is your place. You make it your own by bringing your passion for accelerating the cloud. By owning your opportunity at GDIT, you are helping to ensure our mission is never interrupted. Our work depends on a Security Compliance Engineer joining our team to support federal customer activities in Washington, DC.

At GDIT, people are our differentiator. As a Security Compliance Engineer, you will be trusted Assist with the development, implementation, and administration of the FCS security program and systems ensure proprietary or confidential data and systems are protected by monitoring, auditing, and enforcing compliance with the agency and program’s Information Security and Information Technology policies, procedures, guidelines, and standards.

In this role, you will:

  • The Security Compliance Engineer interfaces with clients to translate security and business requirements into technical design basis where security is the foundation to all decisions.
  • Influences the design, configuration, implementation, and test and validation of complex security products, technology systems, services, and infrastructure with the aim of detecting security weakness prior to compromise, ensuring compliance with security standards and best practices.

What you’ll need:

  • 7+ years of experience with reviewing system design and architecture documentation and preparing materials addressing security controls
  • Experience with reviewing security scan results and determining the risk and impact of vulnerabilities
  • Experience with Cloud security tools and processes, and coordinating with Product engineering
  • Experience in establishing and implementing security activities (e.g., security compliance monitoring, networking, and engineering) as part of a DevSecOps environment in support of meeting cloud application and platform modernization requirements
  • Experience in working with NIST and FISMA requirements and reporting
  • Experience in implementing improvements to risk and threat barrier protections
  • Experience in overseeing management of system vulnerabilities via Plan of Actions and Milestones
  • 2+ years of experience with vulnerability scanning tool compliance and patch management to ensure compliance with Cybersecurity directives
  • 1+ years of experience with Cybersecurity tools, including Netsparker, Fortify Webinspect, SonarQube, or Splunk
  • CISA or Security+ certification preferred
  • BA or BS degree in Engineering Technology, Computer Science, or a related field
  • CISSP and/or CISA certification

WHAT GDIT CAN OFFER YOU:

●           401K with company match

●           Diverse, highly collaborative teams

●           Challenging work that makes a real impact on the world around you

●           Internal mobility team dedicated to helping you own your career

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.