System Engineer

Job Family:

Cyber Consulting

Travel Required:

None

Clearance Required:

Active Secret

What You Will Do:

Guidehouse is seeking a knowledgeable IT System Engineer to join our expanding Cybersecurity practice. The ideal candidate will have the business knowledge and technical expertise to implement strategies, evaluate products, and build upon an infrastructure that supports the changing needs of our customers. In this role, the systems engineer will design, develop, and integrate complex work systems for every stage of a lifecycle. The ideal candidate will be able to reliably deliver mission-critical infrastructure with an eye toward accessibility, optimization, and security.

Duties and responsibilities include:

• Provide Comprehensive System Architecture and Engineering services.

• Perform system and requirement analysis, system design, development, deployment and maintenance.

• Develop system design models, specifications, and configurations in collaboration with security specialist.

• Support development of disaster recovery plan and continuity of operation plan

• Plan and implement system modernization. 

• Design and conduct server and security audits, system backup procedures and recovery processes.

• Identify/assessing security controls and technologies that will enforce the Departments security policies as mandated during security reviews and product evaluations; and

• Design, build, test, and implement security systems within an organization's IT network.

• Documenting the system security architecture to provide recommendations of improvements to the Government for review and approval.

• Anticipates possible security risks, identify areas of weakness, and respond effectively to possible security breaches.

• Reviewing current system security measures and recommending and implementing enhancements

• Conducting regular system tests and ensuring continuous monitoring of network security

• Developing project timelines for ongoing system upgrades

• Provide program/portfolio management, process improvement, cyber support.

• Ensuring Capital Planning and Investment Control (CPIC) processes with incorporated security controls described in IT investments are mapped to the security architecture.

• Participate in teams designing and implementing IT initiatives, with a specific focus on the security implications of design or operational decisions. Furnish technical assistance and advice, based upon existing standards and SOPs to ensure security is considered throughout the system's lifecycle.

• Assist in the performance of Security Assessment and Authorization (SA&A) and related activities IT security reviews in accordance with NIST SP 800-53 and Risk Management Framework. Review documentation, interview key personnel, and evaluate adherence to relevant policy and procedure. Document and catalog issues found, with recommendations for remediation.

• Research new and novel tactics, techniques, and procedures (TTP) to protect data and privacy.

• Conduct research into systems issues and products as required

• Perform in-depth analysis and or security testing of information systems, using a wide variety of tools and techniques. Review test results for accuracy, probability, and impact.

• Report issues to senior team members and technical subject matter experts; retest as needed to validate corrective actions.

• Demonstrated experience providing security engineering and integration support to protect the confidentiality, integrity and availability of an organization’s systems and application data

• Certification: AWS Certified DevOps (Professional), AWS Certified Security (Specialty), AWS Certified Advanced Networking (Specialty), or Microsoft Certified (Azure Administrator Associate)

• Demonstrated experience designing, operating, troubleshooting Cloud solutions

• Demonstrated experience migrating systems to IaaS

• Strong knowledge of FISMA, FedRAMP, NIST SP 800-53 and other federal cybersecurity related policies, directives, and mandates.

• Extensive knowledge of application of security technologies including SIEM, DLP, WAF, IPS, firewall, and related tools

• Demonstrated ability to work independently under general direction

• Prioritize and execute tasks in a high-pressure environment.

What You Will Need:

• An ACTIVE and MAINTAINED SECRET Federal or DoD security clearance.

• Bachelor’s degree.

• THREE (3) or more years of experience in engineering and/or deploying complex IT systems.

• Knowledge and experience designing, analyzing, and managing complex IT systems.

• Familiarity supporting Information Assurance Programs setting policy, governance, and security operations programs.

• Experience using data analysis to drive system and configuration enhancement for scanning and security applications.

• Experience using automation and scripting to deploy and monitor systems.

• Technical hands-on experience in troubleshooting and system support.

• Good project management skills

• Excellent written, oral, and interpersonal communication skills to be able to communicate ideas in both technical and user-friendly language.

• Strong customer service orientation and ability to work in a team-oriented, collaborative environment.

What Would Be Nice to Have:

• An ACTIVE and MAINTAINED TOP SECRET Federal or DoD security clearance

• Bachelor's degree in Computer Science, Information Systems, Engineering, Math, or other related scientific/technical discipline.

• Certified Systems Engineering Professional (CSEP)

• ITIL or PMP is a plus.

• FIVE (5) or more years of Cybersecurity hands-on experience in providing security engineering and integration support to protect the confidentiality, integrity and availability of an organization’s systems and application data.

• THREE (3) or more years of combined operational experience designing, operating, troubleshooting Cloud solutions (AWS preferred)

• TWO (2) or more years of experience migrating systems to Cloud-based solutions 

• TWO (2) or more years of experience designing and deploying systems aligned with Zero Trust Architecture principles, threat scenarios, reference architectures, and governance frameworks.

• The candidate will complete meetings daily with the client, assist in building standards and metrics, assist in completing presentations for the client, and execute the daily tasks assigned to the role.

• The candidate must have client service experience and strong communication skills (both oral and written) and presentation skills.

• The ideal candidate will be highly technical and should possess an advanced understanding across a broad range of IT system technologies and will take a proactive approach to cyber incidents. The candidate should have several years of experience working with each phase of the Incident Response Life Cycle in NIST and ISO standards and should have hands-on experience in creating and executing cyber hunting missions. The candidate must be a world-class problem-solver with the ability to handle challenges under pressure.

• Familiarity with and knowledge of information security solutions including data loss prevention; intrusion detection and prevention; network security monitoring; and vulnerability management in global environments.

The annual salary range for this position is $113,000.00-$188,000.00. Compensation decisions depend on a wide range of factors, including but not limited to skill sets, experience and training, security clearances, licensure and certifications, and other business and organizational needs.

What We Offer:

Guidehouse offers a comprehensive, total rewards package that includes competitive compensation and a flexible benefits package that reflects our commitment to creating a diverse and supportive workplace.

Benefits include:

• Medical, Rx, Dental & Vision Insurance

• Personal and Family Sick Time & Company Paid Holidays

• Position may be eligible for a discretionary variable incentive bonus

• Parental Leave and Adoption Assistance

• 401(k) Retirement Plan

• Basic Life & Supplemental Life

• Health Savings Account, Dental/Vision & Dependent Care Flexible Spending Accounts

• Short-Term & Long-Term Disability

• Student Loan PayDown

• Tuition Reimbursement, Personal Development & Learning Opportunities

• Skills Development & Certifications

• Employee Referral Program

• Corporate Sponsored Events & Community Outreach

• Emergency Back-Up Childcare Program

• Mobility Stipend

About Guidehouse
Guidehouse is an Equal Employment Opportunity / Affirmative Action employer. All qualified applicants will receive consideration for employment without regard to race, color, national origin, ancestry, citizenship status, military status, protected veteran status, religion, creed, physical or mental disability, medical condition, marital status, sex, sexual orientation, gender, gender identity or expression, age, genetic information, or any other basis protected by law, ordinance, or regulation.

Guidehouse will consider for employment qualified applicants with criminal histories in a manner consistent with the requirements of applicable law or ordinance including the Fair Chance Ordinance of Los Angeles and San Francisco.

If you have visited our website for information about employment opportunities, or to apply for a position, and you require an accommodation, please contact Guidehouse Recruiting at 1-571-633-1711 or via email at RecruitingAccommodation@guidehouse.com. All information you provide will be kept confidential and will be used only to the extent required to provide needed reasonable accommodation.

Guidehouse does not accept unsolicited resumes through or from search firms or staffing agencies. All unsolicited resumes will be considered the property of Guidehouse and Guidehouse will not be obligated to pay a placement fee.