Communication Security Engineer

SAIC•Springfield, VA

About The Position

SAIC currently has an opening for a Communications Security Engineer to support the Department of State (DoS) Bureau of Diplomatic Technology. DT provides enterprise architecture design, engineering, operations and maintenance support services for desktops, servers, networks, firewalls, and enterprise applications across the Department. The Security Engineer shall develop next-generation security solutions to secure the organization’s communication fabric. This role engineers the next generation security layers that protect data moving across internal networks, cloud environments, and remote access tunnels. They are the strategic lead in ensuring that every network handshake—whether via TLS, IPsec, or SSH—is backed by a robust and resilient cybersecurity infrastructure.

Requirements

Expertise in securing network tunnels and data-in-transit protocols, including managing certificates and configurations for VPNs, secure gateways, and encrypted communication channels.
Ability to develop and implement automated workflows for the lifecycle of security credentials.
Knowledge of identity management frameworks and the principle of least privilege for access control.
Experience in monitoring and reporting on encryption and network security controls, ensuring compliance with organizational security policies and industry regulatory requirements.
Skills in identifying and remediating security gaps in hybrid network infrastructure, assessing risks, and implementing hardening measures.
Subject matter expertise in incident response for encryption failures or unauthorized network access, including rapid revocation and replacement of compromised credentials.
Understanding of secure communication protocols such as TLS, IPsec, or SSH.

Responsibilities

Oversee the security of network tunnels and data-in-transit protocols. This includes managing the certificates and configurations for VPNs, secure gateways, and encrypted communication channels that link internal networks to external service providers.
Develop and implement automated workflows for the lifecycle of security credentials. This reduces manual intervention, minimizes human error, and ensures timely rotation to meet security standards.
Align access with the organization’s identity management framework. Ensure that only authorized systems and personnel can access sensitive keys and that all access is logged and audited according to the principle of least privilege.
Monitor and report on the status of encryption and network security controls. Conduct regular reviews to ensure that all hybrid and cloud-based configurations meet organizational security policies and industry regulatory requirements.
Identify and remediate security gaps in the hybrid network infrastructure. This involves assessing the risks associated with data movement between environments and implementing hardening measures to protect against unauthorized access or data leakage.
Provide subject matter expertise during security incidents involving encryption failures or unauthorized network access. Assist in the rapid revocation and replacement of compromised credentials to restore secure operations.

Stand Out From the Crowd

Upload your resume and get instant feedback on how well it matches this job.

Upload and Match Resume