Cybersecurity Specialist at SAIC

Aberdeen Proving Ground, Maryland, United States -

Full Time

Start Date

Immediate

Expiry Date

25 Dec, 25

Salary

0.0

Posted On

26 Sep, 25

Experience

5 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

Cybersecurity, Risk Management, Compliance, NIST RMF, Vulnerability Scanning, Security Audits, Policy Development, Application Security, Technical Guidance, Continuous Monitoring, Security Posture, Configuration Control, Impact Assessments, Risk Assessments, Collaboration, GRC Applications

Industry

Defense and Space Manufacturing

Description

SAlC is seeking a Cybersecurity Specialist to support the U.S. Army Combat Capabilities Development Command (CCDEVCOM), Engineering and Systems Integration (ESl) Directorate, Quick Reaction Capability (QRC) Branch. This position is on-site in Aberdeen, MD on Aberdeen Proving Ground (APG). ln support of the information Analysis Center Multiple Award Contract (lAC MAC) and Task Order (TO), SAlC is seeking a qualified, cleared, and experienced professional who has in-depth experience in the achievement of strategic goals and objectives related to the ongoing execution and maturity of its cybersecurity and assessment and authorization (A&A) programs. Job Responsibilities: Support the maintenance and upkeep of system packages using a GRC application (e.g., eMASS / XACTA) and/or customer tool(s) to ensure auditability and report on the security posture of assigned systems. Support the Army’s risk management process by maintaining visibility and awareness of changes to the cyber threat landscape that impact the security posture of their assigned systems and ensure efforts to address security risk are executed efficiently and on schedule. Interface broadly with internal branch customers as well as external branch stakeholders to support achievement of the program’s strategic goals and objectives and mature its A&A capabilities and services. Work independently and as a member of a team to guide federal customers through the Risk Management Framework, focusing on A&A and continuous monitoring lifecycles. Execute A&A and ongoing authorization activities and provide guidance and technical direction to SO and Federal ISSOs, as required. Serve as a interface on status of packages for their assigned systems. Collaborate with the Security Engineering and Architecture team members on risk assessments, impact assessments, vulnerability and compliance management and security change requests to ensure system compliance, up-to-date package information, and that all system changes are being executed within the configuration control lifecycle. Support the GRC PM and GRC Lead in ensuring a coordinated and collaborated approach on whole-of-program efforts in support of RMF/CSF maturity. Provide technical guidance and best practices to the team and customers to ensure that the agency achieves maximum value from its IT investments. Required Education: Bachelors and five (5) years or more experience; Masters and three (3) years or more experience; PhD and zero (0) years or more experience; four (4) years of experience considered in lieu of degree. Required Skills: Demonstrated experience with establishing, implementing, and maintaining the A&A lifecycle using the NIST RMF. Experience with vulnerability scanning reports and findings from Nessus, Security Center, and/or EvaluateStig. Demonstrated knowledge in the field of risk management and compliance to efficiently work on and apply frameworks including ISO, NIST CSF, NIST 800-53, NIST 800-171, NIST 800-137, NIST 1800 series, etc. Demonstrated experience with the development and update of policies to align with OMB, DHS, NIST, CNSS, ICD, Congressional and other cybersecurity mandates, and directives. Experience with Application Security Audits and Risk Scoring. Maintain updated knowledge in the field of risk management and compliance to efficiently work on frameworks including NIST CSF, ISO, NIST 800-53, NIST 800-34 etc. Ability to independently manage tasks across multiple competing priorities and work tasks in parallel to maintain deadlines. Must be able to lift, pull, push and carry up to 30 pounds, unassisted, on a regular basis. Ability to stand, walk, bend, kneel, squat, climb ladders/equipment, and crawl for extended periods. Clearance: Must have an active TS/SCI with current CI polygraph.

Responsibilities

The Cybersecurity Specialist will support the maintenance and upkeep of system packages and ensure auditability while reporting on the security posture of assigned systems. They will also guide federal customers through the Risk Management Framework and collaborate with various teams to ensure compliance and security measures are effectively implemented.