Security Infrastructure Support Senior Security Engineer

GDIT is seeking a senior level Cyber Security Engineer, to support an enterprise cyber program that spans Vulnerability Management, Security Operations, Prevention and Maintenance support,Quality Assurance, as well as Event Detection and Incident Response. You will support critical scientific and business activities related to infrastructure, and security operations and engineering support related to server and desktop systems.

You will support existing tools and leverage your technical background to make the tools more effective and identify new processes and tools to protect this environment. You will leverage your experience and tools to identify, protect, and respond to vulnerabilities within the environment.

You will work collaboratively with user and infrastructure support teams to define and apply security policy and standards across the larger environment, working with end users, stakeholders, and support teams alike to define and establish this secure environment.

You will inspire and foster confidence in others with your abilities to effectively communicate with various customercommunitiesto understand their needs and provide them guidance on how to best protect them through your technical solutions.

This enterprise cyber program requires support for our federal customer in the DC metropolitan area, and this is a hybrid position that requires periodic onsite support and customer meetings.

HOW YOU WILL MAKE AN IMPACT :

You will support the larger security team through your actions related to the following areas :

• Provide an understanding and application of security governance and best practices
• Demonstrate a strong understanding of an enterprise technical environment and system engineering / administration actions
• Provide Vulnerability Management oversight
• Support secure system development lifecycles
• Maintain and promote secure tools and infrastructure
• Perform Event Detection and Incident Response
• Acts as a liaison between engineering and security and customer communities to :
• Plan, understand and communicate risk, as well as methods to reduce this risk
• Develop an understanding of how change to various environments can result in changes to risk posture
• Provide technical leadership to infrastructure and security teams to effectively translate security policy and best practices into action
• Provide technical leadership to infrastructure teams to effectively translate security policy and best practices into action within the desktop support, infrastructure engineering and operations teams, and user communities
• Design, install, maintain, and support Enterprise IT systems.
• Implement and administer cybersecurity tools or SIEM platforms.
• Manage and secure hybrid infrastructure environments (on-prem and cloud).
• Communicate complex security concepts to technical and non-technical stakeholders, including executive-level reporting.
• Apply cloud security best practices and perform security hardening in AWS, Azure, and O365 environments.
• Utilize core virtualization technologies.
• Integrate secure code and automation into the build, test, and deployment process following DevSecOps practices.
• Develop and automate tools with strong scripting skills, particularly in Python.
• Manage and configure a variety of enterprise cybersecurity tools across hybrid environments.
• Integrate and normalize data pipelines with SIEM platforms.
• Ensure compliance with federal cybersecurity frameworks (FISMA, NIST 800-53, NIST 800-92, OMB M-21-31, CDM).
• Maintain and secure Windows / Linux servers, perform patching, vulnerability remediation, and manage network appliances and endpoint security.
• Solve and analyze security issues to identify root causes.
• Collaborate with third-party vendors and cross-functional teams.

WHAT YOU'LL NEED TO SUCCEED

DESIRED QUALIFICATIONS

CISSP certification is strongly preferred, or ability to obtain within 6 months

GDIT IS YOUR PLACE :

#J-18808-Ljbffr