SAIC, in support of the Department of Homeland Security (DHS) - United States Citizenship and Immigration Services (USCIS) - Office of Information Technology (OIT), will deliver enterprise Architecture and Engineering Services (AES). These services will include design, engineering, and implementations for the entire USCIS global enterprise. SAIC is looking for an AES team experienced and proven in terms of technology and IT modernization in the US Government Enterprise space.
Provides technical guidance for directing and monitoring information systems operations. Provides support in the translation of business requirements into telecommunications (e.g., LAN, MAN, WAN, Voice and Video) requirements, designs and orders. Provides in-depth engineering analysis of telecommunications alternatives for government agencies in support of their strategic modernization efforts and telecommunications enhancement design for medium and large-scale telecommunication infrastructures. Provides interface support to telecommunications end users, telecommunications operations personnel, and telecommunications strategic program management. Monitors and responds to hardware, software, and network problems. Provides the routine testing and analysis of all elements of the network facilities (including power, software, communications machinery, lines, modems, and terminals). Utilizes software and hardware tools and identifies and diagnoses complex problems and factors affecting network performance. Troubleshoots network systems when necessary and makes improvements to the network.
Provides support to plan, coordinate, and implement the organization's information security. Provides support for facilitating and helping agencies identify their current security infrastructure and define future programs, design and implementation of security related to IT systems. Oversees the efforts of security staff to design, develop, engineer and implement solutions to security requirements. Responsible for the implementation and development of the DHS IT security. Gathers and organizes technical information about an organization's mission goals and needs, existing security products, and ongoing programs in the MLS arena. Performs risk analyses which also includes risk assessment. Provides support to plan, coordinate, and implement the organization's information security. Provides support for facilitating and helping agencies identify their current security infrastructure and define future programs, design and implementation of security related to IT systems. A working knowledge of several of the following areas is required: understanding of business security practices and procedures; knowledge of current security tools available; hardware/software security implementation; different communication protocols; encryption techniques/tools; familiarity with commercial products, and current Internet/EC technology. Provides daily supervision and direction to staff.
Responsibilities include managing the network security devices which include but may not be limited to:
o Cisco ASA
o Cisco Security Manager
o Firewall Service Modules (FWSM)
o IPS/IDS modules
o ISS Proventia (Intrusion Detection)
o ArcSight Loggers and Connector
o Xceedium Gatekeeper
o Fidelis XPS (extrusion/leakage detection)
o McAfee ePolicy Orchestrator Console
· Rogue System Detection
· Host Intrusion Prevention (HIPS)
· Device Control
· Endpoint Encryption
· Application Control
· Data Loss Prevention (DLP)
· Change Control
o McAfee ePolicy Orchestrator Console
o Tenable Nessus
o eEYe Retina Scanner
o HP Fortify
o HP Web Inspect
o Web Inspect
o NetMapper (OPNET)
o Anakam Two Factor Authentication (TFA)
o Rational AppScan (Vulnerability Scanning)
o Rational Policy Tester
o Proventia HIDS
o Tivoli Access Manager for e-Business (TAMeB)
o Tivoli Directory Integrator (TDI)
o Tivoli Directory Server
o Tivoli Federated Identity Manager
o Tivoli Identity Manager
o Tivoli WebSeal (reverse Proxy)
o WebSphere DataPower (XML gateway)
· Manage inventory for all devices, validate the current license, and generate a report which details which appliances are operating with current licenses; and notify the government in the cases where expiration is imminent within 180 days or less.
· Manage and implement configuration changes, break-fix, upgrades and patches for all security appliances
Bachelors and fourteen (14) years or more of experience, Masters and twelve (12) years or more experience, PhD and nine (9) years or more experience. Additional years of experience may be considered for candidates with Associates degree.
• A minimum of ten (10) years of experience in Network Security with infrastructure and software.
• Experience designing, engineering and designing solutions with a security mindset.
• Ability and desire to work in a fast-paced, rapidly changing, collaborative environment.
• Strong troubleshooting and analytical skills required.
• Must have strong critical thinking, complex problem solving, appropriate judgment, and decision-making skills
• Experience with major cloud providers mandatory.
• Possess superior technical aptitude and effective written and verbal communications skills.
• Proven experience with managing and using Dev Ops concepts.
• Certifications: CCIE/CCNP Security
Must be a US Citizen with ability to obtain a DHS EOD or BI Security Clearance
SAIC is a premier technology integrator, solving our nation's most complex modernization and systems engineering challenges across the defense, space, federal civilian, and intelligence markets. Our robust portfolio of offerings includes high-end solutions in systems engineering and integration; enterprise IT, including cloud services; cyber; software; advanced analytics and simulation; and training. We are a team of 23,000 strong driven by mission, united purpose, and inspired by opportunity. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $6.5 billion. For more information, visit saic.com. For information on the benefits SAIC offers, see Working at SAIC. EOE AA M/F/Vet/Disability