SAIC

Information Assurance Engineer

SAIC$80K — $120K *
Information Technology
Less than 5 years of experience
Job Overview by Ladders

Qualifications

  • BA/BS degree required.
  • At least four years of relevant experience.
  • Active DoD Secret clearance or higher needed.
  • IAT Level II certification such as Security+, CySA+, or equivalent required.
  • At least one Computing Environment certification for technical responsibility area needed.

Responsibilities

  • Develop and coordinate all authorization documentation like Systems Security Plans.
  • Manage Authority to Operate (ATO) packages using continuous monitoring strategies.
  • Support control assessment and monitoring processes with the Cyber Security Assessment Management (CSAM) system.
  • Create and maintain documentation for system modifications.
  • Assist in security decisions for ISSMs.
  • Facilitate contingency and incident response assessments.
  • Perform and document risk assessments to analyze vulnerabilities.

Benefits

  • Normal business hours, Monday through Friday, with potential after-hours support required.
  • Technology-focused work environment supporting USTRANSCOM missions.
Full Job Description
Job Description

Description

SAIC is seeking an Information Systems Assessment and Authorization analyst to support an IT Service Management effort for USTRANSCOM located at Scott Air Force Base (AFB) in Illinois. The USTC Managed Information Technology Services (MITS) contract is intended to provide strategic, technical, and program management guidance and support services to facilitate the operations and modernization of the combatant command's infrastructure, systems, and applications. This support will be provided to the USTC Command, Control, Communications & Cyber Systems Directorate (TCJ6).

The successful candidate will be responsible for working on high-visibility or mission critical aspects of a given program and performing all functional duties with some oversight.

Responsibilities:
  • Develop and coordinate all authorization documentation associated including the Systems Categorization, Systems Security Plan, and Systems risk assessment.
  • Manage the Authority to Operate (ATO) packages using continuous monitoring strategies outlined by the ISSM.
  • Support the control assessment, reporting and monitoring processes using the Cyber Security and Assessment Management (CSAM) system.
  • Create and maintain all minor/major modification documentation.
  • Maintain all waivers and Risk assessment for the ISSMs.
  • Assist the ISSMs with decisions that affects the security of their systems and networks.
  • Facilitate preparations for all Contingency/Incident response assessments.
  • Perform and document risk assessments, analyzing security vulnerabilities, and the metrics to measure the risks associated with those vulnerabilities.
  • Design and development of comprehensive Systems Security Plan, covering at a high level the infrastructure, policies and procedures which define the systems security profile for the enclave systems.
  • Review and validate System Test and Evaluation (ST&E) and Interim Authority to Test (IATT) reviews for new and/or legacy systems.
  • Review and conduct NIST-based Self Assessments, identifying any weaknesses which need to be addressed, and developing a Plan of Action and Milestones (POA&M) for each of those weaknesses based on industry best practices.
  • Requesting risk acceptance for vulnerabilities that cannot be remediated or mitigated.
  • Based on the risk profile, Create and track Plan of Action and Milestones (POA&M) for mitigation of risks identified via the ACAS and STIG processes.
  • Design and development of Initial Privacy Assessment (IPA) and Privacy Impact Assessments (PIAs) for each major Federal Government IT Systems.
  • Utilize the eMass tool to manage the security profile for the system.
  • Utilize the Ports, Protocols, and Service Management (PPSM) tool and processes to register ports, protocols, and services in use by the enclaves.
This position is for Monday through Friday, normal business hours. However, employee may be required to provide after-hours and weekend support during planned or emergency events.

Qualifications
  • BA/BS.
  • Minimum of four (4) years of experience.
  • DoD Secret clearance or higher.
  • Must have at least one of these IAT Level II certifications: Security+, CECCNA-Security, CySA+ **, GICSP, GSEC, CND, SSCP.
  • Must have at least one Computing Environment (CE) certification or certificate for the technical area of responsibility for
  • Network support/defense (e.g., Splunk, Cisco, McAfee, etc.) OR Operating System (e.g., Microsoft, Linux, Solaris, etc.
Desired Qualifications:
  • MA/MS.
  • ITIL V4 Foundations certification.
  • One of the IAM Level II certifications: CAP, CASP+ CE, CISM, CISSP (or Associate), GSLC, CCISO, HCISPP.

Target salary range: $80,001 - $120,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.

Overview

SAIC accepts applications on an ongoing basis and there is no deadline.

About SAIC

Science Applications International Corporation (SAIC) is a technology integrator in the technical, engineering, intelligence, and enterprise information technology markets. SAIC has approximately 26,000 employees and operates in more than 70 countries. The company was founded in 1969 and is headquartered in Reston, Virginia. SAIC provides services to the U.S. government, including the Department of Defense, the intelligence community, and civilian agencies. The company also serves commercial customers in the healthcare, energy, and financial services sectors.
Learn more about SAIC
Size
26,000 employees
Market Cap
$6 billion
Industry
Net Income
$206 million
Founded
1969
5 Year Trend
+10.7%
Revenue
$6.8 billion
NASDAQ

Similar Jobs

More Jobs at SAIC

More Information Technology Jobs

Find similar Information Assurance Engineer jobs: