SAIC is a company of people dedicated to delivering best-value services and solutions based on innovative applications of science and technology. We have an uncompromising commitment to providing our customers with quality technical products and services, while meeting the highest level of ethical standards and performance in our jobs. In addition, our environmental, health and safety program helps to ensure our business operates in a manner that protects the health and safety of our employees, customers, business associates, community neighbors, and the environment. SAIC and its employees have an uncompromising commitment to provide our customers the highest level of performance, while delivering quality technical services and solutions that meet their requirements at the agreed upon price, and within schedule. SAIC senior management and staff strongly support the continual improvement of the Quality Business System, including our quality objectives and the processes by which we provide our products and services, so that our work meets requirements and is done right the first time. SAIC's comprehensive and integrated quality framework defines specific quality requirements, systems, and a supporting infrastructure. We use United Solutions, SAIC's proprietary solution, to plan, design, develop, and deliver products and services that achieve our customer's requirements. United Solutions provides a comprehensive set of customizable management and technical processes, procedures, development life-cycle models, and other implementation assets. It is based on industry standards and best practices from CMMI®, the Project Management Institute; the International Organization for Standardization (ISO); and over four decades of SAIC's experience on a wide range of programs.
Description SAIC is seeking a Cyber Security Analyst in Aberdeen, MD. Job Duties Develop Cyber Security documentation validating software quality, security, reliability and maintainability attributes. Identify gaps in Cyber SecurityCND posture and assess risks. Participate in development and review of Risk Management Framework (RMF) documentation, Networthiness Documentation, and ensure STIG compliance and validation. Provide information assurance specialist support including formulating, coordinating, directing, and executing all information assurance policies, tools, and training programs conducting internal controls reviews to ensure information assurance competency and the effectiveness of surveillance activities. Develop strategies, goals, tasks, roles, responsibilities, and information needs for Cyber Security surveillance and oversight. Review information systems for compliance with applicable DoDI 8500.01 and DoDI 8510.01 Provide Information System (IS) security and information assurance advice and guidance in accordance with applicable regulations, and directives and guidance to Government and DoD partners for the protection of data at all classification levels including SCI. Evaluate and recommend approval, disapproval, or waiver(s) for IS processing national security data. Provide input or consideration in the promulgation of future information assurance policies. Prepare reports and memoranda, to include, but not limited to Memoranda for the Record (MFR), Memoranda of Agreement (MOA), Authorization To Proceed, and status and technical briefs for review and approval by government Cyber Security. Update data on Government-provided databases with current information about IS status (to include Army Portfolio Management System (APMS) and Enterprise Mission Assurance Support Service (EMASS)). Prepare, review, and record notification and status messages to indicate AA state of systems to system owner or programs. Ensure IS information assurance requirements, including applicable RMF directives and guidance, are addressed and applied appropriate documentation prepared by the system owners or programs inclusive of the Security Assessment Package, Concept of Operations (CONOPS) Plan, System Security Plans, System Requirements Traceability Matrix, Risk Management Matrix, Test Results, interface control documents, Program of Action and Milestones (POAM) requests for changes, test plans, and other related program security documentation. Track completion of the Security Assessment Package and report status. Provide preparation of the Security Assessment Report (SAR). The SAR contents include, but not limited to, the Summary of Assessment results and Authorization Recommendation. Qualifications Required Education and Experience HSGED and 9 years of experience OR Bachelors and 5 years or more experience OR Masters and 3 years or more experience OR PhD and 0 years related experience. Requires 8570 compliance (Security and OS certification) within 6 months of start date- Active Top Secret clearance with a current SSBI and be SCI-eligible or current TSSCI (Clearance must be listed in JPAS, not Scattered Castles) 3 years of relevant experience with Risk Management Framework (RMF) AA activities 3 years of experience in the following areas Cybersecurity policy, procedures, and processes, including RMF and NIST 800-53 and AA's Experience using Army Portfolio Management System (APMS) and Enterprise Mission Assurance Support Service (EMASS) Familiar with NIST publications, specifically RMF and NIST controls Familiar with dealing with defense- in-depth and other information security and assurance principles and associated supporting technologies Excellent customer service and organization skills Excellent oral and written communication skills Must demonstrate proficiency in the following areas multi-tasking, critical thinking and the ability to work quickly, efficiently and accurately in a dynamic and fluid environment Ability to work both independently and as a member of a team Microsoft Office (Word, Excel, Visio, PowerPoint, MS Project), MS SharePoint CAP, CISSP or CISM certification a PLUS but not required Job Posting Date 2019-06-17 135154 UTC Primary Location ABERDEEN, MD 21005 US Clearance Level Must Currently Possess Top Secret Clearance Level Must Be Able to Obtain Top SecretSCI Potential for Teleworking No Travel None Shift Day Job Schedule SAIC is a premier technology integrator, solving our nation's most complex modernization and systems engineering challenges across the defense, space, federal civilian, and intelligence markets. Our robust portfolio of offerings includes high-end solutions in systems engineering and integration enterprise IT, including cloud services cyber software advanced analytics and simulation and training. We are a team of 23,000 strong driven by mission, united purpose, and inspired by opportunity. Headquartered in Reston, Virginia, SAIC has annual revenues of approximately 6.5 billion. For more information, visit saic.com. For information on the benefits SAIC offers, see Working at SAIC httpwww.saic.comcareersworking-at-saic . EOE AA MFVetDisability