As a trusted systems integrator for more than 50 years, General Dynamics Information Technology provides information technology (IT), systems engineering, professional services and simulation and training to customers in the defense, federal civilian government, health, homeland security, intelligence, state and local government and commercial sectors. With approximately 21,000 professionals worldwide, the company delivers IT enterprise solutions, manages large-scale, mission-critical IT programs and provides mission support services. General Dynamics Information Technology is an Equal Employment Opportunity and Affirmative Action employer.
General Dynamics IT has a contingent opening for a Senior IT Security Engineer to join our team in support of a federal agency in Washington, DC.
The Security Engineer:
Performs ongoing monitoring and threat analysis
Identifies potential IT security incidents and escalates information to appropriate staff
Assesses threat and vulnerability information from all sources (both internal and external) and promptly applies applicable mitigation techniques initiating indications and warnings
Conducts vulnerability analysis and assessments across the entire enterprise in support of operations and maintenance activities
Develops mitigation and remediation plans as a result of vulnerability assessment findings
Monitors current reports of computer malware to determine when to update protection systems
Based on task(s) assigned, state-of-the-art expertise on the hardware, software, and systems in use by the client and in the SOCs, including but not limited to TriGeo SIM, Solarwinds, Tenable vulnerability assessment system, Cisco PIX firewall, MacAfee EPO , and Cisco and Snort IDS/IPS sensors.
Bachelor's degree in computer science, engineering or a related discipline, or the equivalent combination of education, technical training or work/military experience; Master's degree is preferred.
10+ years of information security experience where at least five (5) years of related experience and/or training in the field of IT security monitoring and analysis, cyber threat analysis, and vulnerability analysis
Previous experience in and a proven method for performing 1st level analysis and interpretation of information from SOC systems
Previous experience in and proven methods for incident identification/analysis, escalation procedures, and reduction of false-positives
Demonstrated experience consistent with ISO 20000; ITIL; NIST 800 series, specifically, NIST 800-61 "Computer Incidents Handling Guide" and NIST 800-53 "Recommended Security Controls for Federal Information Systems;" and any other controls that are applicable to network security monitoring/analysis, event escalation, cyber threat analysis, and vulnerability analysis
Demonstrated experience with and application of open- and closed-source resources within industry
Specific experience in monitoring, evaluating, and interpreting vulnerabilities, CVEs, remedies, mitigation measures, techniques for escalation, social engineering tactics, phishing techniques, and performing vulnerability assessments
Requires CISSP certification.
Successful candidate will have an active Secret security clearance.
Security Clearance Level
Security Clearance Basis
National Agency Check (NLC)
Security Clearance Polygraph
Job ID Number
Potential for Deployment
General Dynamics Corporation (General Dynamics) offers a portfolio of products and services in business aviation; combat vehicles, weapons...