SAIC
Systems Security Lead
SAIC, Reston, Virginia, United States, 22090
Description
SAIC, a leading provider of systems development & deployment, targeting & intelligence analysis, systems engineering & integration, and training capabilities and solutions for the Intelligence Community, is seeking creative and dedicated professionals to fulfill their career goals and objectives while delivering mission excellence on programs of national importance.
SAIC is seeking a Systems Security Lead is responsible for applying security principles, practices, and procedures under the RMF to maintain compliance with applicable security regulations, such as CNSSI, NIST, and National Industrial Security Program Operating Manual (NISPOM), governing the management of classified information systems. Functions of this role include identifying security control requirements; developing and updating system security plans; managing and controlling changes to specific systems, assessing the security impact of those changes, and maintaining system security configuration; supporting achievement of Authorization to Test (ATT) and ATO for information systems; working with the customer's security section to streamline ATT and ATO activities; directly or indirectly implementing, monitoring/auditing, and reporting compliance with security controls; preparing and completing action plans; providing security-related training and guidance; and implementing security-related change.
Qualifications
Required: Active TS/SCI clearance with polygraph. Bachelor's degree in engineering, Computer Science, Information Science, or related technical field. A minimum of eight years of information security, information assurance, cyber security field, and/or other related work experience. A minimum of three (3) years of experience monitoring NISPOM, ICD 503, or Director of Central Intelligence Directive (DCID) 6/3 requirements, security frameworks, and other relevant security regulations One of the following or related certifications: Information Systems Audit and Control Association (ISACA) Certified Information Security Manager (CISM) certification. International Information Systems Security Certification Consortium (ISC2) Certified Information Systems Security Professional (CISSP) certification. Global Information Assurance Certification (GIAC) Security Essentials Certification (GSEC). GIAC Security Leadership Certification (GSLC). Desired: Experience developing, integrating, and implementing Cybersecurity-related authorization packages and program protection standards for IC systems including the coordination, preparation, submission, and tracking of Interim Authorization to Test (IATT), Interim Authorization to Operate (IATO), ATO, and/or related security artifacts. Experience utilizing the RMF as applied within the IC and/or DOD communities. Experience managing security requirement for networking, systems, application development, database administration, and data center operations and technologies (e.g., protocols, design concepts, access control), design and engineering. Experience working with information security technologies (e.g., design, encryption, data protection, privilege access, identity and access management, intrusion detection, forensics, incident management, risk management and auditing). Experience securing virtual environments and cloud-based solutions. Experience developing and providing an information security awareness and training program.
SAIC accepts applications on an ongoing basis and there is no deadline.
Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.
SAIC, a leading provider of systems development & deployment, targeting & intelligence analysis, systems engineering & integration, and training capabilities and solutions for the Intelligence Community, is seeking creative and dedicated professionals to fulfill their career goals and objectives while delivering mission excellence on programs of national importance.
SAIC is seeking a Systems Security Lead is responsible for applying security principles, practices, and procedures under the RMF to maintain compliance with applicable security regulations, such as CNSSI, NIST, and National Industrial Security Program Operating Manual (NISPOM), governing the management of classified information systems. Functions of this role include identifying security control requirements; developing and updating system security plans; managing and controlling changes to specific systems, assessing the security impact of those changes, and maintaining system security configuration; supporting achievement of Authorization to Test (ATT) and ATO for information systems; working with the customer's security section to streamline ATT and ATO activities; directly or indirectly implementing, monitoring/auditing, and reporting compliance with security controls; preparing and completing action plans; providing security-related training and guidance; and implementing security-related change.
Qualifications
Required: Active TS/SCI clearance with polygraph. Bachelor's degree in engineering, Computer Science, Information Science, or related technical field. A minimum of eight years of information security, information assurance, cyber security field, and/or other related work experience. A minimum of three (3) years of experience monitoring NISPOM, ICD 503, or Director of Central Intelligence Directive (DCID) 6/3 requirements, security frameworks, and other relevant security regulations One of the following or related certifications: Information Systems Audit and Control Association (ISACA) Certified Information Security Manager (CISM) certification. International Information Systems Security Certification Consortium (ISC2) Certified Information Systems Security Professional (CISSP) certification. Global Information Assurance Certification (GIAC) Security Essentials Certification (GSEC). GIAC Security Leadership Certification (GSLC). Desired: Experience developing, integrating, and implementing Cybersecurity-related authorization packages and program protection standards for IC systems including the coordination, preparation, submission, and tracking of Interim Authorization to Test (IATT), Interim Authorization to Operate (IATO), ATO, and/or related security artifacts. Experience utilizing the RMF as applied within the IC and/or DOD communities. Experience managing security requirement for networking, systems, application development, database administration, and data center operations and technologies (e.g., protocols, design concepts, access control), design and engineering. Experience working with information security technologies (e.g., design, encryption, data protection, privilege access, identity and access management, intrusion detection, forensics, incident management, risk management and auditing). Experience securing virtual environments and cloud-based solutions. Experience developing and providing an information security awareness and training program.
SAIC accepts applications on an ongoing basis and there is no deadline.
Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.