Posted today
Top Secret/SCI
Unspecified
Unspecified
IT - Security
Reston, VA (On-Site/Office)
Description
SAIC is seeking a highly motivated, detail-oriented, and experienced Information Systems Security Manager (ISSM) to join our lead systems integrator team in Reston, Virginia. The ISSM will be responsible for overseeing the cybersecurity posture and ensuring compliance of classified information systems in support of Department of the Air Force's (DAF) Integrated Fires Command and Control (DIFC2) Program. The ideal candidate will have a strong technical background in information security and a thorough understanding of certification and accreditation process IAW NIST 800-53 and the Risk Management Framework (RMF). The successful candidate will have excellent communication, organizational and problem-solving skills. They will be expected to continually balance and adjust work priorities to meet short deadlines.
The position is ONSITE in Reston, VA.
Key Responsibilities
• Develop, implement, and maintain security policies, procedures, and documentation to ensure compliance with DoW security standards and regulations.
• Perform risk assessments, vulnerability assessments, and security audits to identify system vulnerabilities and provide remediation strategies.
• Advise and assist the government customer in the implementation of government policy and make recommendations on process tailoring. Perform analyses to validate established security requirements and recommend additional security requirements and safeguards.
• Facilitate approval process for Authorization to Operate (ATO), Authority to Extend (ATE), Authorization to Connect (ATC), and Interconnection Security Agreement (ISA), working with the customer and stakeholders to receive SCA/AO endorsement.
• Evaluate and recommend new security tools, techniques, and technologies, and introduce them to the enterprise in alignment with IT security strategy.
• Develop and maintain an organizational or system-level cybersecurity program that includes cybersecurity architecture, requirements, objectives and policies, cybersecurity personnel, and cybersecurity processes and procedures.
• Maintain a repository for all organizational or system-level cybersecurity-related documentation.
• Ensure that cybersecurity inspections, tests, and reviews are synchronized and coordinated with affected parties and organizations.
• Read and interpret dataflow, network, and other developmental diagrams effectively.
• Write and utilize documentation.
Qualifications
Required Skills/Experience:
• IAT Level III Certification (eg. CASP+, CCNP Security, CISA, CISSP, CCSP).
• Familiarity with CI/CD pipelines, build tools (NPM, Maven, etc.), SCA tools (SonarQube, Fortify, etc.), Docker image creation, and Kubernetes container deployments.
• Communicate effectively with multiple stakeholders
• Bachelor's Degree and 9 years of experience.
• Active TS/SCI or SCI eligible. often requiring coordination between organizations.
SAIC is seeking a highly motivated, detail-oriented, and experienced Information Systems Security Manager (ISSM) to join our lead systems integrator team in Reston, Virginia. The ISSM will be responsible for overseeing the cybersecurity posture and ensuring compliance of classified information systems in support of Department of the Air Force's (DAF) Integrated Fires Command and Control (DIFC2) Program. The ideal candidate will have a strong technical background in information security and a thorough understanding of certification and accreditation process IAW NIST 800-53 and the Risk Management Framework (RMF). The successful candidate will have excellent communication, organizational and problem-solving skills. They will be expected to continually balance and adjust work priorities to meet short deadlines.
The position is ONSITE in Reston, VA.
Key Responsibilities
• Develop, implement, and maintain security policies, procedures, and documentation to ensure compliance with DoW security standards and regulations.
• Perform risk assessments, vulnerability assessments, and security audits to identify system vulnerabilities and provide remediation strategies.
• Advise and assist the government customer in the implementation of government policy and make recommendations on process tailoring. Perform analyses to validate established security requirements and recommend additional security requirements and safeguards.
• Facilitate approval process for Authorization to Operate (ATO), Authority to Extend (ATE), Authorization to Connect (ATC), and Interconnection Security Agreement (ISA), working with the customer and stakeholders to receive SCA/AO endorsement.
• Evaluate and recommend new security tools, techniques, and technologies, and introduce them to the enterprise in alignment with IT security strategy.
• Develop and maintain an organizational or system-level cybersecurity program that includes cybersecurity architecture, requirements, objectives and policies, cybersecurity personnel, and cybersecurity processes and procedures.
• Maintain a repository for all organizational or system-level cybersecurity-related documentation.
• Ensure that cybersecurity inspections, tests, and reviews are synchronized and coordinated with affected parties and organizations.
• Read and interpret dataflow, network, and other developmental diagrams effectively.
• Write and utilize documentation.
Qualifications
Required Skills/Experience:
• IAT Level III Certification (eg. CASP+, CCNP Security, CISA, CISSP, CCSP).
• Familiarity with CI/CD pipelines, build tools (NPM, Maven, etc.), SCA tools (SonarQube, Fortify, etc.), Docker image creation, and Kubernetes container deployments.
• Communicate effectively with multiple stakeholders
• Bachelor's Degree and 9 years of experience.
• Active TS/SCI or SCI eligible. often requiring coordination between organizations.
group id: 10111346
N
