Information Systems Security Officer Job Listing at SAIC in Chantilly, VA (Job ID 2510453)

Description

Description

SAIC® is a premier Fortune 500 mission integrator focused on advancing the power of technology and innovation to serve and protect our world. Our robust portfolio of offerings across the defense, space, civilian and intelligence markets include secure high-end solutions in mission IT, enterprise IT, engineering services and professional services. We integrate emerging technology, rapidly and securely, into mission critical operations that modernize and enable critical national imperatives.

SAIC is looking for an Information Systems Security Officer (ISSO) to support a highly dynamic and growing program with one of our US Government customers. You will be a part of a large multi-year contract that supports our customer in systems engineering and integration across a broad portfolio of projects. You will come into a program that enjoys a close working relationship with the customer, bringing exquisite technical expertise to bear on real world problems, helping the customer execute real world missions that impact National Security on a daily basis. This close relationship, along with the program's longevity (20 years), ensures that as a new team member you will find a depth of support to grow and develop that is unmatched, all while making a difference - daily.

We need a highly motivated and experienced ISSO to support our cybersecurity initiatives and ensure the confidentiality, integrity, and availability of our information systems. The successful candidate will play a critical role in maintaining the security posture of our organization's IT infrastructure and ensuring compliance with applicable regulations and standards. The ISSO will work closely with the government client in establishing, certifying, and maintaining classified networks in support of the customer's intelligence enterprise.

Key Responsibilities:

• Develop, implement, and maintain security policies, procedures, and controls in accordance with organizational objectives and regulatory requirements.
• Conduct risk assessments and vulnerability assessments to identify and mitigate security risks.
• Manage Risk Management Framework (RMF) activities in accordance with NIST and customer policies and procedures.
• Monitor and analyze security alerts and incidents to identify potential threats and respond appropriately.
• Enforce security controls and manage the deployment of security technologies such as firewalls, intrusion detection/prevention systems (IDS/IPS), and endpoint protection software.
• Lead incident response efforts and coordinate with relevant stakeholders to resolve security incidents.
• Prepare and maintain security documentation, including system security plans (SSPs), risk assessments, and security assessment reports (SARs).

• Conduct regular security audits and assessments to ensure compliance with industry standards and best practices.

   

• Provide security training and awareness programs for staff to promote a culture of security within the organization.
• Collaborate with IT and business units to implement security measures and ensure secure systems development and deployment.

Qualifications

• Bachelor's degree in Computer Science, Information Security, or a related field.  Master's degree preferred.
• Minimum of 5 years of experience in information security, with at least 3 years as an Information Systems Security Officer or similar role.
• Strong knowledge of security frameworks and standards such as NIST, ISO 27001, and CIS Controls.
• Hands-on experience with security technologies, including firewalls, IDS/IPS, SIEM, and endpoint protection.
• Professional security certifications such as CISSP, CISM, CISA, or equivalent are highly preferred.
• Qualified at the IAM Level II for the DoD Information Assurance Workforce, must possess one of the following certifications: CompTIA Security+ or higher.
• Extensive knowledge of NIST and DoD policies and procedures.
• Excellent analytical, problem-solving, and decision-making skills.
• Strong communication and interpersonal skills, with the ability to effectively communicate technical information to non-technical stakeholders.
• Ability to work independently and manage multiple tasks and projects simultaneously.