GDIT is your place. Make it your own by discovering new ways to securely and expertly apply the latest technology. Own your opportunity at GDIT and you’ll be a meaningful part of improving how agencies operate. Our work depends on an Information Systems Security Engineer joining our team in Chantilly, VA.
At GDIT, we foster a people-centric environment. As an Information Systems Security Engineer, you will be responsible for capturing and refining information security requirements and ensuring their integration into information technology component products and information systems through purposeful security design or configuration. You will work closely with other project managers and various software engineering, infrastructure, and technical operations teams to assess requirements, coordinate resources, and deliver information security updates for the customer.
The ideal candidate will have experience performing industry-standard ISSE tasks, as well as experience in tailoring standard process lifecycles to function effectively in a small, fast-paced environment. S/he must have strong written and verbal individual and organizational communication skills and the ability to articulate technical project requirements to both customers and internal teams.
Attends customer meetings and serves as primary liaison to the customer ISSM
Ensures system compliance with customer Assessment and Authorization (A&A) process
Ensures system compliance with customer Certification and Accreditation policies
Conducts system vulnerability scans
Provides support to system patches and updates
Provides assessments of the security impact of network changes
Provides support to the management and control of system changes
Supports the development, coordination, and maintenance of the System Security Plan (SSP)
Implement and enforce information systems security policies ensuring system security requirements are addressed during all phases of the acquisition and system lifecycle
Support the customer to resolve conflicting system security engineering requirements
Develop and maintain processes and procedures to identify, track and mitigate customer system vulnerabilities
Assess system compliance with NIST requirements, identifying weaknesses and evaluating planned remedial actions based upon those requirements.
Support control implementation assessment and reporting and monitoring processes using cyber security and assessment management systems.
EDUCATION AND EXPERIENCE
Active TS/SCI with Polygraph
Bachelor’s degree in a related business or technical discipline (Systems Security Engineering, Software Engineering, or Computer Science, etc.), or the equivalent combination of education, technical training, or work/military experience
Demonstrated experience assessing system compliance with NIST requirements, identifying weaknesses and evaluating planned remedial actions based upon those requirements.
Demonstrated experience assisting the customer with compliance of their systems and networks as documented in NIST 800-53 and its revisions.
Experience conducting information system security control assessments (SCAs) and applying standard auditing techniques during systems security control assessments, including the proper interpretation of the control requirements, determining if the artifacts provided are sufficient and recommending remedial action to Government customer to ensure compliance
Demonstrated experience with testing methods, automated tools, plans, and procedures for verification of compliance and vulnerability requirements
Experience with modern networks, operating systems, databases, and virtual computing
Experience with using scanning applications
Demonstrated experience effectively communicating across programs and with customers, stakeholders, and other contractors
Demonstrated on-the-job experience managing priorities across multiple projects (time management)
Certified Information Systems Security Professional (CISSP)
Certified Information Systems Security Engineering Professional (ISSEP)
Demonstrated on-the-job experience with Jira Software for planning and tracking projects
WHAT GDIT CAN OFFER YOU:
401K with company match
Collaborative teams of highly motivated critical thinkers and innovators
Internal mobility team dedicated to helping you own your career
Rewards program for high-performing employees
Not sure this job’s the one for you? Check out our other openings at gdit.com/careers.
About Our Work
We are GDIT. The people supporting some of the most complex government, defense, and intelligence projects across the country. We deliver. Bringing the expertise needed to understand and advance critical missions. We transform. Shifting the ways clients invest in, integrate, and innovate technology solutions. We ensure today is safe and tomorrow is smarter. We are there. On the ground, beside our clients, in the lab, and everywhere in between. Offering the technology transformations, strategy, and mission services needed to get the job done.
GDIT does not have a vaccination mandate applicable to all employees. To protect the health and safety of its employees and to comply with customer requirements, however, GDIT may require employees in certain positions to be fully vaccinated against COVID-19. Vaccination requirements will depend on the status of the federal contractor mandate and customer site requirements.
GDIT is an Equal Opportunity/Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, disability, or veteran status, or any other protected class.