Cybersecurity Engineer

Clearance Level
Secret
Category
Information Security
Location
Fort Huachuca, Arizona

REQ#: RQ130343

Travel Required: Less than 10%
Requisition Type: Regular

General Dynamics Information Technology (GDIT) is looking for a Cybersecurity Engineer to support a US Government customer at Fort Huachuca, AZ. The selected candidate will conduct baseline level system administration and maintenance on workstations, servers, and network devices that comprise the system enclave in both a physical and virtualized environment. This includes creating new baselines, making changes necessary to meet the current Security Configuration Guide (SCG), and applying patches as required to comply with the current Information Assurance Vulnerability Management (IAVM) program.

Specific duties include, but are not limited to the following:

- Review vendor-released updates and patches, determine applicability, and update workstations and servers as necessary. Test the applications on the workstations and servers after applying any patches or upgrades to verify functionality of the systems.

- Update Risk Management Framework (RMF) documentation and artifacts based on any system changes.

- Conduct automated scans for Information Assurance Vulnerability Alerts (IAVA), analyze the results of the scans, check for compliancy status, and document findings

- Perform monthly full backups of each workstation and server in the enclave.

- Perform quarterly security reviews using available DISA STIGs to determine applicability and compliance to operating systems, applications, hosts, networking devices, and document results.

- Assess the suitability of any IT being considered for inclusion as trusted components of supported systems.

- Perform annual Security Control Self-Assessment activities.

- Provide technical insight and regulatory guidance in the areas of: CE; Cybersecurity requirements; Planning, Oversight, and Execution of the DoD RMF processes. This includes any cybersecurity input needed for systems engineering specifications, plans, and designs that are incorporating security controls and requirements

- Participate in weekly, biweekly, and monthly meetings such as the Engineering Review Board (ERB), Technical Reviews (TR), System Registration Reviews (SSR), and Integrated Product Team meetings (IPT).

- Provide operations security support to ensure that the system owner has all necessary cybersecurity processes developed, implemented, and documented

- Evaluate and update or develop organization’s cybersecurity documentation and artifacts (this can include security concepts of operations, detailed security plans, allocation of component and sub-system security requirements, and Cybersecurity SOPs)

- Conduct and document vulnerability and risk assessments; make recommendations for eliminating or mitigating deficiencies.

- Provide cybersecurity configuration and implementation for supported systems. This will ensure systems and components are configured securely and in highest as possible compliance with STIGs, SCGs and other applicable authoritative security configuration guidance.

Clearance Level

- Secret

 Certifications:

- IAT III, IASAE II, or IAM II DoD 8570 position category certification (e.g., CASP+ CE, CISSP, CISM)

- Certified SCADA Security Architect (CSSA)

Required Skills/Experience

- BA/BS or equivalent experience

- Experience with MS SQL Server

- Ability to concisely speak and write, conveying complex ideas, in support of briefings, writings, or oral presentations

- Strong working knowledge of various security technologies, architecture, networking, engineering and administration

- 5+ years of experience in cybersecurity

Desired Skills

- 2+ years of experience with the Risk Management Framework process

- Experience with Linux environment


About Our Work

We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.

COVID-19 Vaccination

GDIT does not have a vaccination mandate applicable to all employees. To protect the health and safety of its employees and to comply with customer requirements, however, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.

GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.