DescriptionThe National Security Customer Group of SAIC is seeking an Information Systems Assessment and Authorization analyst to support an IT Service Management effort for USTRANSCOM located at Scott Air Force Base (AFB) in Illinois. The USTC Managed Information Technology Services (MITS) contract is provides strategic, technical, and program management guidance and support services to facilitate the operations and modernization of the combatant command’s infrastructure, systems, and applications. This support will be provided to the USTC Command, Control, Communications & Cyber Systems Directorate (TCJ6).The successful candidate will be responsible for working on high-visibility or mission critical aspects of a given program and performing all functional duties with some oversight.Additional responsibilities may include:
Develop and coordinate all authorization documentation associated including the Systems Categorization, Systems Security Plan, and Systems risk assessment.
Support the control assessment, reporting and monitoring processes using the Cyber Security and Assessment Management (CSAM) system
Create and maintain all minor/major modification documentation.
Maintain all waivers and Risk assessment for the ISSMs.
Assist the ISSMs with decisions that affect security of their systems and networks.
Facilitate preparations for all Contingency/Incident response assessments.
Perform and document risk assessments, analyzing security vulnerabilities, and the metrics to measure the risks associated with those vulnerabilities.
Design and development of comprehensive Systems Security Plan, covering at a high level the infrastructure, policies and procedures which define the systems security profile for the enclave systems.
Review and validate System Test and Evaluation (ST&E) and Interim Authority to Test (IATT) reviews for new and/or legacy systems.
Review and conduct NIST-based Self Assessments, identifying any weaknesses which need to be addressed, and developing a POA&M for each of those weaknesses based on industry best practices. Requesting risk acceptance for vulnerabilities that cannot be remediated or mitigated.
Based on the risk profile, Create and track Plan of Action and Milestones (POA&M) for mitigation of risks identified via the ACAS and STIG processes.
Design and development of Initial Privacy Assessment (IPA) and Privacy Impact Assessments (PIAs) for each major Federal Government IT Systems Developing and conducting System Test and Evaluations (ST&Es) and Independent Verification and Validation (IV&Vs) of the security profiles of Federal Government IT Systems.
Utilize the eMass tool to manage the security profile for the system.
Utilize the PPSM tool and processes to register ports protocols and services in use by the enclaves.
This position is for Monday through Friday, normal business hours. However, employee may be required to provide after-hours and weekend support during planned or emergency events.QualificationsRequired Qualifications:
Minimum of ten (10) years of experience
DoD Secret clearance or higher
Must have at least one of these IAT Level II certifications: Security+, CECCNA-Security, CySA+ , GICSP, GSEC, CND, SSCP
Must have at least one Computing Environment (CE) certification or certificate for the technical area of responsibility for Network support/defense (e.g., Splunk, Cisco, McAfee, etc.) OR Operating System (e.g., Microsoft, Linux, Solaris, etc.
Desired Qualifications:
BA/BS
MA/MS
ITIL Foundations (v4 or higher) certification
One of the IAM Level II certifications: CAP, CASP+ CE, CISM, CISSP (or Associate), GSLC, CCISO, HCISPP
Target salary range: $40,001 - $80,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.SAIC accepts applications on an ongoing basis and there is no deadline.Covid Policy: SAIC does not require COVID-19 vaccinations or boosters. Customer site vaccination requirements must be followed when work is performed at a customer site.
REQNUMBER: 2415414SAIC is a premier technology integrator, solving our nation's most complex modernization and systems engineering challenges across the defense, space, federal civilian, and intelligence markets. Our robust portfolio of offerings includes high-end solutions in systems engineering and integration; enterprise IT, including cloud services; cyber; software; advanced analytics and simulation; and training. We are a team of 23,000 strong driven by mission, united purpose, and inspired by opportunity. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately $6.5 billion. For more information, visit saic.com. For information on the benefits SAIC offers, see Working at SAIC. EOE AA M/F/Vet/Disability