SonicJobs Logo
Left arrow iconBack to search

Information Systems Security Engineer

SAIC
Posted a month ago, valid for 18 days
Location

Arlington, VA 22226, US

Salary

Competitive

Contract type

Full Time

By applying, a SAIC account will be created for you. SAIC's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.

Sonic Summary

info
  • SAIC is looking for an experienced Information Systems Security Engineer (ISSE) to join their team in Arlington, Virginia, with a focus on designing secure, cloud-ready platforms and implementing Zero Trust controls.
  • The ideal candidate should have a strong background in systems and security engineering, with experience in Linux/Windows, containers/Kubernetes, and automation tools like Terraform and Ansible.
  • The position requires at least 5 years of relevant experience and offers a competitive salary, which is not specified in the job description.
  • Responsibilities include implementing cybersecurity measures for classified information systems, conducting risk assessments, and collaborating with various stakeholders to ensure compliance and security posture.
  • SAIC is a premier mission integrator with a strong commitment to technology and innovation, serving various markets including defense and intelligence.

SAIC is seeking a highly motivated, detail-oriented, and experienced Information Systems Security Engineer (ISSE) to join our lead systems integrator team in Arlington, Virginia. The ISSE will be responsible for designing and engineering secure, cloud ready platforms, implementing Zero Trust–aligned controls, automating cyber platform configuration/compliance, integrating detection and response (SOAR), and building guardrails that ensure confidentiality, integrity, and availability for mission systems. The ISSE will implement and continually harden the cybersecurity posture of classified information systems in support of the Department of the Air Force’s (DAF) Cloud Base Command and Control (CBC2) Program.

The ideal candidate brings a strong systems and security engineering background (Linux/Windows, containers/Kubernetes, networking, identity, and cloud), experience architecting security patterns and automating enforcement (Terraform/Ansible, Python/PowerShell/Bash), and a practical understanding of how engineering enables ATO readiness in high tempo environments. The successful candidate will have excellent communication, organizational, and problem solving skills and will be expected to balance and adjust work priorities to meet short deadlines.

The position is on-site in Arlington, VA.

Key Types of Responsibilities
• Design and implement security architectures and platform guardrails for mission systems across compute, network, identity, and data planes (on prem, cloud, and hybrid), aligned to Zero Trust principles (segmentation, strong identity, least privilege, continuous verification).
• Engineer platform hardening and baselines for Linux/Windows hosts, container/Kubernetes clusters, and cloud services; automate configuration and drift detection via Infrastructure as Code (IaC) (e.g., Terraform/Ansible) and policy as code (e.g., OPA/Conftest).
• Implement and validate STIG/SRG requirements through automated checks and CI/CD gates; integrate results into pipelines to prevent configuration regressions.
• Develop Security Test Procedures (STPs) and automated security tests (SAST/DAST/SCA) in CI/CD; support assessment & authorization by producing technical evidence from engineering telemetry rather than manual artifact creation.
• Build detection and response integrations (e.g., EDR, IDS/IPS, cloud threat detection, log pipelines) and tune signals with engineering teams to reduce noise and accelerate incident triage.
• Conduct risk and vulnerability assessments focused on exploitability and blast radius; orchestrate scanning, exploit repro where appropriate, and engineer remediations that are scalable and repeatable.
• Collaborate with ISSMs, platform engineers, and mission owners to address risk through architecture choices (segmentation, mTLS, key/secret management, token based auth), bringing systems to ATO readiness and maintaining posture throughout the lifecycle.
• Engineer identity and access controls (RBAC/ABAC, OAuth2/OIDC, SAML, SCIM) across applications and clusters; enforce least privilege and just in time access with automated provisioning.
• Establish telemetry and compliance automation (e.g., CSPM/KSPM/CNAPP tools, configuration baselines, drift alerts) to monitor systems for evolving threats and misconfigurations.
• Synchronize inspections, tests, and reviews with affected parties; drive technical fixes into backlogs and pipelines to ensure enduring compliance and resilience.
• Read and interpret dataflow, network, and other developmental diagrams; produce architecture decision records (ADRs) and concise engineering documentation.
• Write and utilize documentation that translates complex security engineering into repeatable patterns for developers and operators.
 


SAIC® is a premier mission integrator focused on advancing the power of technology and innovation to serve and protect our world. Our robust portfolio of offerings across the defense, space, intelligence, and civilian markets includes secure high-end solutions in mission IT, enterprise IT, engineering services, and professional services. We integrate emerging technology, rapidly and securely, into mission critical operations that modernize and enable critical national imperatives.

We are approximately 23,000 strong; driven by mission, united by purpose, and inspired by opportunities. SAIC is an Equal Opportunity Employer. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $7.3 billion. For more information, visit saic.com. For ongoing news, please visit our newsroom.



Learn more about this Employer on their Career Site

Apply now in a few quick clicks

By applying, a SAIC account will be created for you. SAIC's Privacy Policy and Terms & Conditions will apply.

SonicJobs' Terms & Conditions and Privacy Policy also apply.