Information Systems Security Officer at SAIC

Chantilly, Virginia, United States -

Full Time

Start Date

Immediate

Expiry Date

02 Jun, 26

Salary

0.0

Posted On

04 Mar, 26

Experience

10 year(s) or above

Remote Job

Yes

Telecommute

Yes

Sponsor Visa

Skills

System Security Support, A&A Compliance, Accreditations Management, Vulnerability Scans, Security Issue Resolution, Assessment Reports, Policy Interpretation, Software Management, Laptop Compliance, Certification and Accreditation, Patch Management, Continuous Monitoring, System Security Plan (SSP), Body of Evidence (BOE), Risk Management, Digital Communications

Industry

Defense and Space Manufacturing

Description

SAIC is seeking an Information Systems Security Officer (ISSO) to provide system security support for ongoing and future system development within the Customer organization. Our unique team of technical and business disciplines provide operational support for Systems Engineering/Integration, Mission Planning, and Business Operations to multiple functional mission areas. The team is responsible for technical design, operations, and mission planning and business operations for the full life cycle of customer specific operations (from concept through development and installation/O&M). Position Responsibilities: The Senior Information Systems Security Officer (ISSO) will be responsible for the following but not limited to: Support organization-wide activities to maintain A&A compliance of all systems and full-lifecycle Closely collaborate with the ISSM staff to manage ongoing issues and accreditations Serve as the focal POC between the project teams and the accreditation office Review/assess network diagrams and schematics Review and interpret system vulnerability scans and work with project teams to resolve security issues Resolve inconsistencies and irregularities in the submission of A&A documentation Required to put together assessment reports to provide organizational risk, ad hoc customer responses mostly dealing with analysis and policy interpretation Will handle software management, laptop compliance, certification and accreditation of systems, patch management, continuous monitoring/scanning Develop and maintain SSPs Maintaining systems as well as working with SETA and development contractors to prepare SSPs and work through the A&A processes Generate and review the Body of Evidence (BOE) and artifacts Bachelor’s degree in engineering, science, or other related technical discipline and 12 years relevant experience; or a Master’s degree and 10 years of relevant experience; or a PhD and seven (7) years of relevant experience Must currently hold a TS/SCI and Poly clearance to be considered Experience in Risk Management and the Certification and Accreditation processes and related policies Previous ISSO, ISSE or ISSM experience System Administrator Security Course Proven experience in Information Systems Security to include: Direct project management experience with patch management, continuous monitoring, and vulnerability scanning/remediation activities - this includes devising or implementing a continuous monitoring plan across multiple security domains and familiarity with tools used in compliance and vulnerability assessments Familiarity with cloud computing and related security concepts, as well as, cross-domain solutions Working knowledge of digital communications and related IT communications technologies Ability to support multiple projects simultaneously Must be a team player and possess a strong ability to work collaboratively with a diverse team as well as work independently with minimal supervision Demonstrated ability to quickly ramp up to support customer's needs, clearly communicate (orally and written) ideas, take initiative to provide creative solutions to challenges and/or systemic problems Previous experience with customer

Responsibilities

The Senior Information Systems Security Officer will support organization-wide activities to maintain Authorization and Accreditation (A&A) compliance for all systems throughout their lifecycle. Responsibilities include collaborating with ISSM staff, serving as the point of contact for accreditation offices, and reviewing security documentation and vulnerability assessments.