Senior Information Assurance Specialist

Description

Senior Information Assurance Specialist
Location: Remote (some onsite work may be required)
Clearance: Active Secret (or higher)
Certification: IAT Level II+ (Security+ or equivalent)

About the Role
SAIC is hiring a Senior Information Assurance Specialist to support the A1 Multi‑Cloud Environment (MCE). In this role, you'll take the lead on endpoint security across multiple GovCloud environments, drive vulnerability remediation efforts, and strengthen cyber resilience for mission‑critical systems. You'll work with modern toolsets like Trellix, Microsoft Defender, ACAS, ServiceNow, Terraform, Ansible, and DevSecOps pipelines to keep DoW environments secure, compliant, and mission‑ready.

If you enjoy solving complex security challenges, modernizing processes, and making a real impact across multi‑cloud environments, this is the role for you.

What You'll Do

Endpoint Security & Threat Protection

• Monitor Trellix (McAfee) and Microsoft Defender dashboards daily for system health and compliance.
• Identify rogue systems, analyze AMCore status, and review Solidcore/OAS/ODS results.
• Produce monthly security and compliance reports for leadership.
• Troubleshoot security installations and upgrades on Windows and RHEL systems.

Vulnerability Management & Incident Response

• Analyze ACAS vulnerabilities and work with Cloud Ops to drive remediation using IaC/CaC tools.
• Manage and resolve security incidents in ServiceNow with clear documentation.
• Recommend solutions aligned with STIGs and DoD cybersecurity requirements.
• Ensure full traceability from detection to closure.

Automation & DevSecOps Support

• Build and maintain Terraform/Ansible workflows to automate patching and configuration updates.
• Integrate security checks into DevSecOps pipelines for seamless deployments.
  Identify opportunities to streamline processes and reduce manual tasks.

Collaboration & Technical Support

• Manage TMIS tickets and partner with CDO admins and cross‑functional teams.
• Provide advanced troubleshooting for endpoint security issues.
• Update and maintain documentation, runbooks, and system configurations.

Reporting & Compliance Assurance

• Deliver monthly cybersecurity compliance reports.
• Ensure alignment with NIST 800‑53, CIS Benchmarks, STIGs, and DoD policies.
• Maintain audit‑ready documentation and support compliance assessments.

Qualifications

Required Qualifications:

• Active Secret clearance (or higher).
• US citizenship.
• IAT Level II certification (Security+ or equivalent).
• Bachelors and 5 years of experience; Masters and 3 years of experience.
• 5+ years managing Trellix (McAfee) and Microsoft Defender endpoint security tools.
• Hands‑on experience with ServiceNow incident workflows.
• Strong understanding of ACAS vulnerability scanning and reporting.
• Experience with Terraform, Ansible, or similar IaC/CaC tools.
• Knowledge of AWS, Azure, or Oracle GovCloud environments.
• Familiarity with DevSecOps environments and CI/CD security integration.
• Deep understanding of STIGs and DoD cybersecurity requirements.

Desired Qualifications:

• Trellix Certified Endpoint Security Specialist.
• Microsoft Defender ATP Security Specialist.
• CISSP or equivalent advanced certification.
• AWS Security Specialty, AZ‑500, or Oracle Cloud Security certifications.
• Experience with ESS modules (RSD, OAS/ODS, Solidcore, AMCore).
• Strong knowledge of encryption, data protection, and DoD vulnerability management tools.
• Familiarity with NIST 800‑53 and federal IA frameworks.
• Experience leading incident response and mentoring junior team members.
• Background working in Agile, Scrum, or SAFe environments.

Target salary range: $120,001 - $160,000. The estimate displayed represents the typical salary range for this position based on experience and other factors.