General Dynamics Information Technology
Security Infrastructure Support Senior Security Engineer
General Dynamics Information Technology, Bethesda, Maryland, us, 20811
GDIT is seeking a senior level Cyber Security Engineer, to support an enterprise cyber program that spans Vulnerability Management, Security Operations, Prevention and Maintenance support,Quality Assurance, as well as Event Detection and Incident Response. You will support critical scientific and business activities related to infrastructure, and security operations and engineering support related to server and desktop systems.
You will support existing tools and leverage your technical background to make the tools more effective and identify new processes and tools to protect this environment. You will leverage your experience and tools to identify, protect, and respond to vulnerabilities within the environment.
You will work collaboratively with user and infrastructure support teams to define and apply security policy and standards across the larger environment, working with end users, stakeholders, and support teams alike to define and establish this secure environment.
You will inspire and foster confidence in others with your abilities to effectively communicate with various customercommunitiesto understand their needs and provide them guidance on how to best protect them through your technical solutions.
This enterprise cyber program requires support for our federal customer in the DC metropolitan area, and this is a hybrid position that requires periodic onsite support and customer meetings.
HOW YOU WILL MAKE AN IMPACT: You will support the larger security team through your actions related to the following areas:
Provide an understanding and application of security governance and best practices
Demonstrate a strong understanding of an enterprise technical environment and system engineering/administration actions
Provide Vulnerability Management oversight
Support secure system development lifecycles
Maintain and promote secure tools and infrastructure
Perform Event Detection and Incident Response
Acts as a liaison between engineering and security and customer communities to:
Plan, understand and communicate risk, as well as methods to reduce this risk
Develop an understanding of how change to various environments can result in changes to risk posture
Provide technical leadership to infrastructure and security teams to effectively translate security policy and best practices into action
Provide technical leadership to infrastructure teams to effectively translate security policy and best practices into action within the desktop support, infrastructure engineering and operations teams, and user communities
Design, install, maintain, and support Enterprise IT systems.
Implement and administer cybersecurity tools or SIEM platforms.
Manage and secure hybrid infrastructure environments (on-prem and cloud).
Communicate complex security concepts to technical and non-technical stakeholders, including executive-level reporting.
Apply cloud security best practices and perform security hardening in AWS, Azure, and O365 environments.
Utilize core virtualization technologies.
Integrate secure code and automation into the build, test, and deployment process following DevSecOps practices.
Develop and automate tools with strong scripting skills, particularly in Python.
Manage and configure a variety of enterprise cybersecurity tools across hybrid environments.
Integrate and normalize data pipelines with SIEM platforms.
Ensure compliance with federal cybersecurity frameworks (FISMA, NIST 800-53, NIST 800-92, OMB M-21-31, CDM).
Maintain and secure Windows/Linux servers, perform patching, vulnerability remediation, and manage network appliances and endpoint security.
Solve and analyze security issues to identify root causes.
Collaborate with third-party vendors and cross-functional teams.
WHAT YOU'LL NEED TO SUCCEED
Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field.
10+ years of experience designing, installing, maintaining, and supporting Enterprise IT systems.
5+ years of experience at the Senior Engineer level or higher.
3+ years of specific experience with cybersecurity tools or SIEM implementation and administration.
Experience with hybrid infrastructure environments (on-prem and cloud).
Strong verbal and written communication skills for explaining complex security concepts.
Familiarity with cloud security concepts, services, and operations (AWS, Azure, O365).
Understanding of core virtualization technologies.
Familiar with DevSecOps practices.
Strong scripting skills, particularly in Python.
Experience managing a variety of enterprise cybersecurity tools, including SIEM platforms.
Experience onboarding and normalizing data with SIEM platforms.
Hands-on experience with federal cybersecurity compliance frameworks.
Strong background in infrastructure management, including Windows/Linux servers, network appliances, and endpoint security.
Strong problem-solving and analytical abilities.
Experience working with third-party vendors and cross-functional teams.
Prior experience in the health domain.
Must have experience supporting a Government agency.
Must be a US Citizen.
DESIRED QUALIFICATIONS
Advanced degree in Computer Science, Information Technology, Cybersecurity, or related field.
Additional relevant certifications or training.
One or more of the following certifications is preferred CISSP certification is strongly preferred, or ability to obtain within 6 months CEH certification SANS Security Related Certifications (e.g. GSEC, GCIH) Cisco Network Certifications (CCNA, CCNP) Microsoft MCSA/MCSE
Experience with additional cloud platforms or services beyond AWS, Azure, and O365.
GDIT IS YOUR PLACE:
401K with company match
Comprehensive health and wellness packages
Internal mobility team dedicated to helping you own your career
Professional scientific growth opportunities, including journal subscriptions, conference attendance, and supporting publication journey
Cutting-edge technology you can learn from
Rest and recharge with paid vacation and holidays
#J-18808-Ljbffr
You will support existing tools and leverage your technical background to make the tools more effective and identify new processes and tools to protect this environment. You will leverage your experience and tools to identify, protect, and respond to vulnerabilities within the environment.
You will work collaboratively with user and infrastructure support teams to define and apply security policy and standards across the larger environment, working with end users, stakeholders, and support teams alike to define and establish this secure environment.
You will inspire and foster confidence in others with your abilities to effectively communicate with various customercommunitiesto understand their needs and provide them guidance on how to best protect them through your technical solutions.
This enterprise cyber program requires support for our federal customer in the DC metropolitan area, and this is a hybrid position that requires periodic onsite support and customer meetings.
HOW YOU WILL MAKE AN IMPACT: You will support the larger security team through your actions related to the following areas:
Provide an understanding and application of security governance and best practices
Demonstrate a strong understanding of an enterprise technical environment and system engineering/administration actions
Provide Vulnerability Management oversight
Support secure system development lifecycles
Maintain and promote secure tools and infrastructure
Perform Event Detection and Incident Response
Acts as a liaison between engineering and security and customer communities to:
Plan, understand and communicate risk, as well as methods to reduce this risk
Develop an understanding of how change to various environments can result in changes to risk posture
Provide technical leadership to infrastructure and security teams to effectively translate security policy and best practices into action
Provide technical leadership to infrastructure teams to effectively translate security policy and best practices into action within the desktop support, infrastructure engineering and operations teams, and user communities
Design, install, maintain, and support Enterprise IT systems.
Implement and administer cybersecurity tools or SIEM platforms.
Manage and secure hybrid infrastructure environments (on-prem and cloud).
Communicate complex security concepts to technical and non-technical stakeholders, including executive-level reporting.
Apply cloud security best practices and perform security hardening in AWS, Azure, and O365 environments.
Utilize core virtualization technologies.
Integrate secure code and automation into the build, test, and deployment process following DevSecOps practices.
Develop and automate tools with strong scripting skills, particularly in Python.
Manage and configure a variety of enterprise cybersecurity tools across hybrid environments.
Integrate and normalize data pipelines with SIEM platforms.
Ensure compliance with federal cybersecurity frameworks (FISMA, NIST 800-53, NIST 800-92, OMB M-21-31, CDM).
Maintain and secure Windows/Linux servers, perform patching, vulnerability remediation, and manage network appliances and endpoint security.
Solve and analyze security issues to identify root causes.
Collaborate with third-party vendors and cross-functional teams.
WHAT YOU'LL NEED TO SUCCEED
Bachelor's degree in Computer Science, Information Technology, Cybersecurity, or related field.
10+ years of experience designing, installing, maintaining, and supporting Enterprise IT systems.
5+ years of experience at the Senior Engineer level or higher.
3+ years of specific experience with cybersecurity tools or SIEM implementation and administration.
Experience with hybrid infrastructure environments (on-prem and cloud).
Strong verbal and written communication skills for explaining complex security concepts.
Familiarity with cloud security concepts, services, and operations (AWS, Azure, O365).
Understanding of core virtualization technologies.
Familiar with DevSecOps practices.
Strong scripting skills, particularly in Python.
Experience managing a variety of enterprise cybersecurity tools, including SIEM platforms.
Experience onboarding and normalizing data with SIEM platforms.
Hands-on experience with federal cybersecurity compliance frameworks.
Strong background in infrastructure management, including Windows/Linux servers, network appliances, and endpoint security.
Strong problem-solving and analytical abilities.
Experience working with third-party vendors and cross-functional teams.
Prior experience in the health domain.
Must have experience supporting a Government agency.
Must be a US Citizen.
DESIRED QUALIFICATIONS
Advanced degree in Computer Science, Information Technology, Cybersecurity, or related field.
Additional relevant certifications or training.
One or more of the following certifications is preferred CISSP certification is strongly preferred, or ability to obtain within 6 months CEH certification SANS Security Related Certifications (e.g. GSEC, GCIH) Cisco Network Certifications (CCNA, CCNP) Microsoft MCSA/MCSE
Experience with additional cloud platforms or services beyond AWS, Azure, and O365.
GDIT IS YOUR PLACE:
401K with company match
Comprehensive health and wellness packages
Internal mobility team dedicated to helping you own your career
Professional scientific growth opportunities, including journal subscriptions, conference attendance, and supporting publication journey
Cutting-edge technology you can learn from
Rest and recharge with paid vacation and holidays
#J-18808-Ljbffr