PROJECT/UNIT DESCRIPTION

The Secure Computing Engineer will assist and support the SCD management team. Responsibilities will include managing small projects, designing and implementing architectural solutions, and configuring systems. Additionally, the engineer will create documentation and evaluate hardware and software used to secure classified hardware, data, and networks.

REQUIRED MINIMUM QUALIFICATIONS

• Candidates currently enrolled in an accredited degree program relevant to this position will be considered. The candidate must have a graduation date of no later than August, 2025.
• Proficiency in working within mixed operating system environments.
• Proficiency in multilayer switching and VLAN configuration.
• Ability to manage multiple tasks concurrently.
• Expertise in implementing, testing, and maintaining complex secure communications networks.
• Working knowledge of network protocols, including TCP/IP, Multicast, and UDP.
• Working knowledge of Cisco IOS, Cisco IOS-XE, NX OS, and PAN OS.
• Experience with network access control mechanisms (Radius, 802.1x, AAA).
• Comprehensive knowledge of interfaces, routing and routed protocols, subnetting, and remote management (SSH) in both LAN and WAN environments.
• Willingness to assist with evening and/or overnight hours as required.
• Excellent oral and written communication skills.
• Strong customer service orientation.
• Exceptional troubleshooting and problem-solving skills.
• Willingness to pursue ongoing professional learning and/or a Master’s degree.
• Perform other duties as assigned.

PREFERRED QUALIFICATIONS

• Active Secret Clearance.
• Active participation in professional organizations and development activities.
• Familiarity with SCAP and OpenSCAP.
• Experience with vulnerability remediation and security management.
• Familiarity with Microsoft Windows operating systems.
• Experience with Cisco and Palo Alto equipment.
• Experience with Cisco ISE.
• Ability to work effectively as part of a team, providing leadership and mentorship to junior staff.

TRAVEL REQUIREMENTS

10% - 25% travel

U.S. CITIZENSHIP REQUIREMENTS

Due to our research contracts with the U.S. federal government, candidates for this position must be U.S. Citizens.

JOB PURPOSE

The purpose of this job is to architect, design, implement, and maintain classified computer systems/networks and cyber security solutions for classified networks including government enclaves. This includes identifying and defining new cybersecurity objectives and controls as well as developing and maintaining automated security validation toolsets. Conducts system, network or software risk assessments. Performs vulnerability analysis of open source software.
Integrates new architectural features into existing infrastructures, create cybersecurity architectural artifacts, provides architectural analysis of cybersecurity features and relates existing system to future needs and trends, leverages advanced forensic tools and techniques for Incident response, provides engineering recommendations, and resolves integration and testing issues.
Serve in consultative role, on GTRI systems and projects. Defining cybersecurity controls for different systems and networks. Uses defined threats of what the controls are trying to mitigate or that an analyst in a SOC would monitor for, responding to alerts with the system or networks. Interact, advise, and counsel on a regular basis with internal staff as well as project directors and other internal/external stakeholders.
Ensures cybersecurity needs established and maintained for operations, security requirements definition, security risk assessment, information systems analysis, information systems design, certification and accreditation, information systems hardening, configuration and maintenance of other security boundary devices (IDS/IPS, Firewalls, perimeter routing) and vulnerability scanning, incident response, disaster recovery, and operations continuity planning and provides analytical support for security policy development and analysis.
Engineers, implements, and maintains Information Technology Infrastructure and associated cybersecurity controls. Including but not limited to supporting and maintaining virtual infrastructure, servers, workstations, storage fabrics, heterogeneous operating systems, and networking infrastructure. Maintaining backups and managing disaster recovery and business continuity plans is a core function of this role as well, along with performing routine maintenance, upgrades, and deploying new classified information systems to enhance the capabilities of GTRI.

KEY RESPONSIBILITIES

• System Architecture design (compute, hardware/virtual, OS, storage, networking, security).
• Translate researcher IT needs into robust and scalable IT Solutions/Infrastructure.
• Contributor to the development of Continuous Integration and Continuous Development (CICD) processes using DevOps and DevSecOps principles.
• Cross Domain Data Exchange and Systems Integration Implementer of Infrastructure as Code.
• Virtual machine management.
• Deploy security control configuration to systems using configuration management tools.