Cyber Security Engineer

Job ID: 2206649

• Conduct technical evaluation of information system requirements, design, and implementation, focusing on information security aspects and authorization requirements
• Work between technical and policy teams to implement, maintain, and monitor technical security configuration controls, including: STIGs, SRGs, and other industry security hardening guidance.
• Review proposed code, configuration, and system design changes for security impact and determine approval or denial of change requests.
• Validate technical security controls are in place for operating systems, applications, and network appliances, and recommend enhancements
• Analyze, track, and document disposition of static code analysis scan results
• Perform and analyze results of Assured Compliance Assessment Solution (ACAS) scans to identify weaknesses and develop operational plans to remediate or mitigate weaknesses as they are discovered.
• Assist in updating system artifacts for RMF; i.e., system diagrams (logical and physical) Hardware/Software/Firmware Inventory, Interface & Ports, Protocols and Services listing, etc.
• Maintain a working knowledge of information system (IS) functions, security policies, technical security safeguards, and operational security measures
• Maintain current knowledge of relevant technology and security threats

• Strong verbal and written communication skills
• Ability to adapt to a dynamic customer-oriented environment
• Working knowledge of DISA STIG/SRG and STIG tools
• Experience with static code analysis/dynamic analysis
• Experience with C/C/Java

• Experience with real-time operating systems (RTOS) and embedded systems
• Linux configuration and administration
• Strong problem solving and troubleshooting skills
• Excellent team orientation
• Experience with developing or analyzing technical documentation

• SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.