Cyber Security Engineer Senior

General Dynamics Information Technology
Fairfax, United States of America
2 days ago

Role details

Contract type
Permanent contract
Employment type
Full-time (> 32 hours)
Working hours
Regular working hours
Languages
English
Experience level
Senior
Compensation
$ 121K

Job location

Remote
Fairfax, United States of America

Tech stack

Agile Methodologies
Amazon Web Services (AWS)
Azure
Cisco Routers
Cloud Computing
Cloud Computing Security
Computer Security
Computer Networks
Microsoft Management Console
System Configuration
Deep Packet Inspection
Key Management
McAfee VirusScan
Routing
Performance Tuning
Cloud Services
Zero Trust Network Access
Security Information and Event Management
Software Deployment
Software Engineering
SSL Certificate Management
Cloud Platform System
System Availability
Amazon Web Services (AWS)
Information Technology
Firepower
ArcSight Event Correlation
Firewall Services Module
Splunk
Virtual Private Clouds
Cisco networks
Vulnerability Analysis

Job description

Advance your career while impacting our national security in cyber as a Cybersecurity Engineer Senior at GDIT. Here, technologists have many paths to grow a meaningful career supporting cyber missions and operations across the federal government., As a Cybersecurity Engineer Senior , the work you'll do at GDIT will be impactful to the mission supporting security infrastructure for the CMS Center for Clinical Standards and Quality (CCSQ) . You will play a crucial role in joining our team as a subject matter expert for all activities related to implementing, configuring, and maintaining security tools including SkyHigh Web Gateway, CISCO FirePower, CrowdStrike Falcon, and Palo Alto NGFW, and responding to potential and confirmed security incidents in the CCSQ Cloud Environment. They work with an existing team of Cyber Security Engineers, who in turn support privacy and security of the cloud program and advise application development teams hosted in the cloud environment in addressing findings from the security tools managed by this team of professionals, patching said tools for optimal security posture, and responding to application block requests and troubleshooting inquiries., * The candidate will be responsible for administering, configuring, deploying, and maintaining Cisco FirePower Threat Defense (FTD) and SkyHigh Web Gateway appliances across the authorization boundary and enterprise-level environments.

  • Implement advanced intrusion prevention systems (IPS) using CISCO FirePower to identify and block malicious traffic.
  • Implement CISCO routers (CSRs) to do Policy Based Routing (PBR) on all network traffic from the Virtual Private Clouds (VPC).
  • Design and optimize Security Rule Sets (SRUs) and tailor policies to meet organizational and mission-critical security requirements.
  • Perform threat analysis, event correlation, and deep packet inspection to mitigate emerging cyber threats.
  • Configure and manage Cisco FireSight/FirePower Management Center (FMC) for centralized policy management, event monitoring, and system reporting.
  • Integrate FirePower NGIPS with other security solutions such as SIEM or SOAR platforms to enable automated threat response capabilities.
  • Perform system upgrades, signature/engine updates, and antivirus pattern maintenance to ensure continued protection.
  • Conduct regular audits and vulnerability assessments within FirePower systems to identify gaps in coverage.
  • Troubleshoot Cisco FirePower appliances for performance issues, ensuring high availability and resilience across the network.
  • Collaborate with cross-functional IT and security teams to optimize firewall configurations and enforce Zero Trust principles.
  • Collaborate with CCSQ Security Operations Center (SOC), Cloud Solutions Engineers, and Application Development Organizations on blocking notifications and proactive optimization of the tools.
  • Create and maintain detailed documentation for system configurations, policies, procedures, and operational tasks.
  • Provide technical expertise, guidance, and training to internal teams on Cisco FirePower operations and best practices.
  • Strong background with AWS security concepts, tools, and services.

Requirements

AWS Management Console,Cisco FirePOWER,McAfee Web Gateway,Splunk Enterprise Security, 5 + years of related experience, * Ability to work in fast paced environment, Self-motivated with a strong ability to work in a multi-tasking and changing environment.

  • Experience working in an Agile environment.
  • Support Security audits as needed and to advise ADO from a Tier2 or 3 perspective and to support security events of interest.
  • Demonstrated experience with and exposure to the above stated security appliances.

WHAT YOU'LL NEED TO SUCCEED:

  • Education: Bachelor's Degree in Computer Science or related technical discipline, or the equivalent combination of education, technical certifications or training, or work experience
  • Required Experience: 5+ years of related experience in maintaining security systems in cloud environments
  • Required Technical skills: Experience in Amazon Web Services (AWS) Cloud Environments and the CMS CCSQ/QNET a must. Must have documented history configuring, maintaining, tuning, reporting, remediating from multiple security tools and services. Must possess background in AWS Security services including Guard Duty, Security Hub, Inspector. Proven ability to resolve security findings from security scanning. Ability to pivot and learn new tools on demand. Knowledge of system hardening benchmarks such as USGCB & STIG. SEIM experience with Splunk; Working after hours at scheduled intervals for production deployments or patching cycles
  • Attributes for Success: Strong communication skills a must
  • Preferred Skills: Certification in cloud security, such as AWS Certified Security Specialty, CISSP, or security related discipline; Strong understanding of key management and certificate management; Knowledge of system hardening benchmarks such as CIS; Experience with Crowdtrike Falcon, Palo Alto NGFW & Snyk
  • Location: 100% remote working
  • Security clearance level: Ability to possess and maintain a Public Trust. Applicants shall have lived in the United States at least 3 out of the last 5 years prior to going through the public trust background investigation and submitting an application for a Federal ID Card. Work visa sponsorship will not be considered for this role

This position does not accept submissions from third-party agencies or corp-to-corp entities. Only direct applicants are eligible for consideration.

Benefits & conditions

At GDIT, the mission is our purpose, and our people are at the center of everything we do.

  • Growth: AI-powered career tool that identifies career steps and learning opportunities
  • Support: An internal mobility team focused on helping you achieve your career goals
  • Rewards: Comprehensive benefits and wellness packages, 401K with company match, and competitive pay and paid time off
  • Flexibility: Full-flex work week to own your priorities at work and at home
  • Community: Award-winning culture of innovation and a military-friendly workplace

OWN YOUR OPPORTUNITY

Explore a career in cyber at GDIT and you'll find endless opportunities to grow alongside colleagues who share your focus on defending and protecting what matters.

The likely salary range for this position is $97,968 - $120,750. This is not, however, a guarantee of compensation or salary. Rather, salary will be set based on experience, geographic location and possibly contractual requirements and could fall outside of this range.

Our benefits package for all US-based employees includes a variety of medical plan options, some with Health Savings Accounts, dental plan options, a vision plan, and a 401(k) plan offering the ability to contribute both pre and post-tax dollars up to the IRS annual limits and receive a company match. To encourage work/life balance, GDIT offers employees full flex work weeks where possible and a variety of paid time off plans, including vacation, sick and personal time, holidays, paid parental, military, bereavement and jury duty leave. GDIT typically provides new employees with 15 days of paid leave per calendar year to be used for vacations, personal business, and illness and an additional 10 paid holidays per year. Paid leave and paid holidays are prorated based on the employee's date of hire. The GDIT Paid Family Leave program provides a total of up to 160 hours of paid leave in a rolling 12 month period for eligible employees. To ensure our employees are able to protect their income, other offerings such as short and long-term disability benefits, life, accidental death and dismemberment, personal accident, critical illness and business travel and accident insurance are provided or available. We regularly review our Total Rewards package to ensure our offerings are competitive and reflect what our employees have told us they value most.

About the company

We are GDIT. A global technology and professional services company that delivers technology solutions and mission services to every major agency across the U.S. government, defense and intelligence community. Our 26,000 experts extract the power of technology to create immediate value and deliver solutions at the edge of innovation. We operate across 50+ countries worldwide, offering leading mission-ready capabilities in AI, cloud, cyber and software development. Join our Talent Community to stay up to date on our career opportunities and events at https://gdit.com/tc.

Apply for this position